-
Notifications
You must be signed in to change notification settings - Fork 425
Killing the app will bypass the lockpin if onlyBackgroundTimeout is true #99
Comments
Hello @wesjpaul Thank you |
Hi @OlivierG13 We are using version 1.9.4
|
@wesjpaul That way the onActivityPaused() is not calling setLastActiveMillis() |
@OlivierG13 I'll see if I can put together a demo project sometime today. |
@wesjpaul Thank you for your help :) |
@OlivierG13 |
@OlivierG13
EDIT: I have also been able to reproduce the problem in the demo app if I add these two settings to the CustomApplication.java class. lockManager.getAppLock().setTimeout(1 * 30 * 1000); |
Damn. It's maybe a particularity of the OnePlus, or of 6.x :( Would you be able to do that change on the library and do a pull request? |
@wesjpaul |
@OlivierG13 Just tested it on a Galaxy S3 running 4.3 and the problem persists. If I have some time today I will look into a solution. |
@wesjpaul |
Condition:
Killing the app while the lockscreen is visible will reset the timer allowing the user to reopen the app and bypass the lockscreen.
I have narrowed this down to AppLockImpl.java line 382 where setLastActiveMillis() is set if onlyBackgroundTimeout is true during onActivityPaused(). Since onActivityPaused() is called when the LockScreen is displayed this will trigger the setLastActiveMillis(). When the app is killed and relaunched the LockManager thinks the app had previously been unlocked and allows entry.
The text was updated successfully, but these errors were encountered: