What to do with stubborn apps not wanting to support GOS?

SirWolf

Sorry for the highly theoretical question with not much specifics, but I hope it works out.

Some apps may be reluctant to support GrapheneOS, and whether the app works fully or for the most part, that may be luck too. The worst case is when such apps are an integral part of being able to use their services. E.g., a banking app on your phone may be required to log into the bank's website on your PC, with no other 2FA solutions allowed. So it is not just a mobile banking app, it's also an authenticator. This limits your platform freedom, because you will need a phone just for that. And if it refuses to run on anything else but stock Android, your freedom, your privacy, your phone's security is greatly affected.

Sure, you could try and do one of the following:

Talk to the app creators. They would respond anything to refuse your request like, for example, "based on our previous investigations and international trends, our bank has not identified any security risk that would have necessitated the development of applications for additional operating systems beyond the two most popular mobile operating systems." Some companies would add GrapheneOS support, and huge respect for them, but others not, not even if I tell them that GrapheneOS is the only non-standard AOSP-based phone that is worth supporting.
Switch to a different bank. Easy to say. Some banks need your personal local presence to do administrative things, and I may not live near a place where other banks actually do better service than the bank I am a customer of.

My worst nightmare is having to depend on an app that does not run on GOS. How do you deal with such problems, guys? What can we do to make our lives more private, less controlled, and more secure?

Ideally the following should be true:

Noone should depend on any mobile app at all just to be able to use any services.
Noone should depend on a smartphone either (I'm not saying I don't want to use one).
Websites alone should be enough and should be able to support any platform (see: Progressive Web Apps).
We should be able to decide whatever 2FA solution we want to use (within common sense, of course).

Sadly, I see a tendency that the world does not want to allow this kind of freedom. Eventually I may hit a point where no resistance works. I can only do so much. I love GrapheneOS, but I believe it's only a matter of time when I will have to get a regular Android phone too, and I won't be able to find an alternative solution that doesn't require it.

Your opinions and advices are welcomed.

basedFOSS

SirWolf Use a virtual device in Android Studio.

During 2 years of GOS I encountered one such app (Trade Republic Bank). The regristation could not be done on GOS with sandboxed G-Services so I used my PC and a virtual phone for setup, after that initial setup it worked like a charm on GOS.

Such cases are extremely rare and if they encounter it doesn't mean the whole app is broken

schweizer

This is rather theoretical. I use about 60 apps. 54 of those run fine without playservices. Only 6 go in a private space with play installed but not logged in.

Not a single one does not run on GOS.

The problem is not that apps would not run on GOS with the required permission. The problem is that there are many banks which mandate SMS as a second factor which is completely unsafe. Or you have governmental apps that share data with 600 companies. GOS is not able to solve those problems.

Nikoyay

If they don't also require SMS authentication, you could in theory carry around a second phone with you with stock Android and no SIM. Yes, it's very inconvenient, but it's an option.

Contacting the company doesn't do anything in 99% of the cases. Been there, tried it. They respond with somw corporate talk bullshit, if they respond at all, or they let you talk to their tech support who offer stupid advice like "re-download the app" or "factory reset your phone".

And as you mentioned, the third option is to not use such services. This is not always possible of course, but we do vote with our wallets. Supporting companies with shitty practices like that will not change anything. It will probably also amount to nothing, but at least you are making a statement that you will not stand for this. Be the change you want to see in others and all that jazz.

Sadly, there's not much else we can do. Yes, people shouldn't have to depend on a single app, or on their phone as a whole, but we are increasingly entering a dystopia where that is the norm and everyone has accepted that.

23Sha-ger

There are old, cheap and compact phones that you can use just for this purpose, no other accounts or activity.
What's absurd is that 6-7 year old Chinese phones still considered more secure than recent GOS.
I have an EOL Pixel 4a somewhere, for the rare conditions I need a "legit" stock OS for something.

Foggy

23Sha-ger Or use an older iPhone or iPad as your second device. Even ones no longer receiving OS updates sometimes receive occasional security updates for a few years. They can often be bought for cheap with cracked but still working screens.

Viewpoint0232

23Sha-ger

Yes, this. If the bank thinks some ancient Android 8 device is more secure, then they can get what they want.

brightjob4495

I'd like to make one pedantic "correction" to your hypothetical situation: there isn't such a thing as an app not supporting GOS. Apps that don't work on GOS don't do it because they proactively block GOS or non-google androids. Meaning, if the app runs in Android, it runs in GOS, unless the developer makes the extra work to forbid its usage in GOS.

As in what to do in such situations, this is my approach: When Revolut stopped people from doing the initial sign in on GOS, I cancelled my premium membership and left the account almost empty to only use it when travelling outside the eurozone (I'm pretty sure I cost them more money than whatever benefit they get from my usage). Even if that was resolved and I never was afected by it, it was an eye opening moment and I established the following "policy" for myself:

I should never depend on a service that can only be managed through a non-free app. This means no subscriptions that can only be managed through the app, no more money than what I'm willing to lose in such a service, and a service like that can't be the only non-physical communication method with someone important in my life.

It took some adaptation time, but once I got used to it, it's really easy to follow. I still use non-free apps, but I don't depend on them, so if any blocks GOS or starts doing things I dislike, I can simply stop using them.

W1zardK1ng

basedFOSS Can you explain the setup please?

SirWolf

Thanks, everyone, for the ideas and answers!