Wallet - Google Pay

bam

flawedworld Note that other features of Google Wallet work fine, it's just NFC payments which won't work since we are not certified by Google.

What those features are? Would I be able to add virtual cards from the app?
It requires to handle notification from the app, even if the request was issued from the site.

bam

bam Would I be able to add virtual cards from the app?

So I gave it a try and installed it along with the dependencies (Google Services, etc.).
It behaves strange - I wasn't able to make use of it.

First, I couldn't install it from Google Play - got "Can't install Google Wallet" error. Okay, maybe it's because of my region, so I installed it with Aptoide.
That didn't give much - on the first run, the app showed permission request pop-up, but disappeared immediately (crashed?). On the second run, it just shows me a button to add Transit pass/Loyality card/Gift card nonsense, that's all.
Not even my debit cards there.
What's worse, the app doesn't show notifications when trying to add virtual cards from Google Pay site, even if I added missing Notifications permissions manually.

Any help?

mvennik

fph in the Netherlands NN Bank (Nationale Nederlanden) still has its own NFC payment app which works on GOS most of the times, some terminals however don't accept them.

Novalissoide

bam yesterday
Sandboxed Google Play Services, and Sandboxed Google Play Store was updated to 254730035, today they're at Beta in your Apps app, they look a bit reworked. Might be worth a try if some further compatibility has been gained.

bam

bam What's worse, the app doesn't show notifications when trying to add virtual cards from Google Pay site, even if I added missing Notifications permissions manually.

That worked on stock OS, so no virtual cards on GOS, I guess.
That's what people already talked about non-functional NFC in Google Wallet here.

bam

Novalissoide What are my steps then to do it?

W1zardK1ng

gusgorman https://github.com/SeineEloquenz/fosswallet

RobotChickens

MetropleX if bypassing the checks is possible, why can't that choice to do so be placed in my hands? Wouldn't a disclaimer explaining the situation be enough for people who don't understand? My college campus requires that I either use their Google wallet pass or pay for a physical one which I don't have money for at the moment. This requires me to carry around an old Samsung phone signed into my Google account for the verified wallet. I am really reluctant to do so because of the un-revokable permissions Google has. Is "misleading users" really all that's holding this feature back?

de0u

RobotChickens Is "misleading users" really all that's holding this feature back?

No.

As explained earlier in the thread, if the GrapheneOS project deployed that kind of spoofing into 300,000 devices then Google would notice and block.

RobotChickens My college campus requires that I either use their Google wallet pass or pay for a physical one which I don't have money for at the moment.

It is unfortunate that they have made that decision. Perhaps a faculty member who is sympathetic to security and privacy concerns, or perhaps the student government, might lobby to adjust that policy.

Novalissoide

MetropleX No GPay/Wallet cannot be made to work on GrapheneOS and is a limitation in so far as Google Pay/Wallet requiring full SafetyNet compliance

I've somehow missed this sentence until now. 🫣

Will stop trying that path with users. 😮‍💨🫢

RobotChickens

de0u
The school can't control authentication for the app like that. It's up to the developers because eacounts is used by a lot of campuses nation wide. It wouldn't be a decision for my school, it would be a decision for all of them.

Also, adding a toggle in developer options doesn't mean that every single person with graphiene would enable it? Absolutely not 300k devices. The only people actually enabling it and "spoofing" their phones would be the ones who don't yet use graphiene for this very reason. (Or people like me who are using it but with compromise)

shirubax

nazar-pc
There are many banking apps that do require Google Pay (to install them since they are on the play store), but do not use Google Wallet. Most Japanese credit cards, in fact use the iD standard, and many implement that directly and don't require Google Wallet. Being on the play store and requiring Google Wallet are quite different things.

de0u

RobotChickens The school can't control authentication for the app like that. It's up to the developers because eacounts is used by a lot of campuses nation wide. It wouldn't be a decision for my school, it would be a decision for all of them.

Almost certainly using eAccounts was a decision within the school's control. Any given school may have limited leverage in terms of asking eAccounts to support more payment methods, but if enough schools ask for it (or threaten to switch) then the company might make changes, since that is technically possible.

RobotChickens Also, adding a toggle in developer options doesn't mean that every single person with graphiene would enable it? Absolutely not 300k devices. The only people actually enabling it and "spoofing" their phones would be the ones who don't yet use graphiene for this very reason. (Or people like me who are using it but with compromise)

My understanding is that the GrapheneOS project has decided, using their best judgment, not to pursue spoofing old device models (other8026). Because the GrapheneOS project is open-source, people who do wish to pursue spoofing old device models could build their own forks. That might go well, or it might go poorly, but all indications are that the GrapheneOS project does not intend to run the experiment. I suspect it would be more productive to pursue a private GrapheneOS fork with device-model spoofing than it would be to try to convince the team that they have misunderstood the technical issues, costs, and benefits. Please note that I do not speak for the GrapheneOS project.

Jaylun

Google Wallet requires device certification and hardware-backed attestation for NFC/contactless payments. Even if you install Google Play services and Wallet inside a shelter/work profile, GrapheneOS doesn’t pass Google’s certification model the same way stock Android does. Because of that, tap-to-pay gets blocked with the “doesn’t meet security standards” message. So nothing is misconfigured on your side it’s just how Google enforces payment security at the OS level. If anyone wants a general explanation of how certified environments are required for native wallet integrations, this overview on native wallets & secure ticketing systems explains the broader concept well. Most banking apps work fine on GrapheneOS only NFC payments via Google Wallet are restricted.

« Previous Page