Grkrz I agree with @"lbschenkel"
From what I read its tomato tomato. Though you would need yo manually check for updates. Also many of us here use GOS to get degoogled and for me this is the way. Otherwise a great part of it all will still be tied to Google, from my understanding. I have though read some stuff about Aurora being a nono as well. Hence the tomato tomato
Status of MitID app
Duckduck I was degoogled for over year or 2, I have just create google account lastely because I thought banking apps ,mobil Pay it would saifer to get from play store. Actually it was Ibschenkel that said he was downloading via play store and I have fallowed, as I thought that is the safest. So I think I will get back to aurora I guess.
- Edited
lbschenkel It's correct that the source is Google Play Store as Aurora basically acts as a proxy but I think there are some valid security concerns with aurora store related to lack of certificate pinning and lack of secure asset delivery. I haven't read too much into it so I don't really know how concerned one should be but I've seen it mentioned in here several times so I do actually think that @Grkrz do have a point.
If one have a user profile with GPS installed for banking apps I would probably advise them to log in to google > download the apps from the play store > log out again
I dont think logging out again will help with anything as the Google Play Apps will know which account previously logged in. Even clearing all storage for the Play apps or uninstalling and reinstalling them wont sever the link with the user account as the apps will see the same ANDROID ID which is unique per user profile and app signing key. Google no doubt store that on their servers.
trilogy6202 if you are worried about somehow getting served a malicious version of an app it is possible to check the apk signature fingerprint of either the apk or an installed app to check its a genuine version.
see https://discuss.grapheneos.org/d/2133-question-about-the-install-available-apps-feature-for-user-profiles/17
7 days later
matchboxbananasynergy Can you try out 3.0.5 and report here if it works (and in which GOS version)?
- Edited
lbschenkel Works fine (launching, gets me to the setup screen). Version 3.0.5 (versionCode 78) on GrapheneOS build 2023041100 (Pixel 6).
Let me know if you need anything else.
P.S. If you want, I can put your GitHub Gist's link in the OP so that people can find it easier.
I updated it and I can confirm that it works for me as well.
matchboxbananasynergy: yes, I would appreciate if you could put a link to the gist.
lbschenkel yes, I would appreciate if you could put a link to the gist.
Done.
5 days later
New version: 3.0.6. Somebody willing to test it and report the results?
- Edited
lbschenkel New version: 3.0.6. Somebody willing to test it and report the results?
Works. Launches, gets to setup screen. 2023041100 Pixel 6.
Upgraded it and confirmed that it works with GrapheneOS 2023041100. Updated gist.
5 days later
FYI: updated GrapheneOS to 2023042900 and MitID still works.
9 days later
FYI: MitID kept working with GrapheneOS 2023050100 and 2023050500.
Its starting to become unproblematic :) hope i didnt jinx
8 days later
Upgraded GrapheneOS to 2023051600 (couldn't wait to try out Contact Scopes) and MitID didn't complain.
17 days later
Hi. New Graphene user here.
Just got my Pixel 6a. MitID works fine.
Mobilepay however, does not. Hope not I'm hijacking the thread, but is MP not working now? Says "Teknisk fejl" when I try to activate and is sent to MitID for authentication.
Owg Not a MobilePay user, so I can't help you. But I suggest opening a new topic.