Authenticator Plus generates 2-step verification codes which will protect your accounts with both your password and your phone / tablet.
With Authenticator Plus you can seamlessly sync and manage all your 2-step enabled accounts in phones / tablet / kindle.
Notable features:
* Seamlessly sync accounts across your phone, tablet and kindle
* Restore from backup to avoid being locked out if you upgrade or lose your device
* Strong 256-bit AES encryption, so even in rooted devices you accounts are safe
* Personalize as per you needs (Themes, Logos, group your most used account and more)
* battle.net accounts can be added
* Hardware based encryption key support, even rooted apps cannot access the encryption keys - http://help.authenticatorplus.com/hardware-backed-keys/
* Easily import from Google Authenticator
* Import / Export to WinAuth (Authenticator Plus -> Settings -> Backup & Restore -> Import from text file)
Detailed compare with Google Authenticator - http://compare.authenticatorplus.com/
Technical Details - http://design.authenticatorplus.com
Authenticator Plus in Press
I was super excited to find this application. It solves my biggest grievances with Google Authenticator, and does it in a way that is largely invisible to the user (until it matters!). -techThreads
Recommended by Wordpress Authenticator plugin - http://s.www.authenticatorplus.com/wp
NOTE : As a commitment to XDA users, where I have uploaded my first release, I can provide free trial version of the application on request to [email protected]
It's mind-blowing that Google's own Authenticator on its own Android platform lacks the feature to re-order the account entries, while the iOS version does support this.
And also mind-blowing that it lacks PIN control, any option to sync/ backup, and several of the other highly desirable (even necessary!) features which Mufri has built-in to the Authenticator Plus app.
I've also been pleased by Mufri's responsiveness and willingness to work to make the app have only the needed permissions. We've exchanged several detailed technical and philosophical messages; it's very nice to see yet another developer devoted to our community.
I can't make any claims about the security of the app as I'm not a developer (well, haven't been since twenty years ago) and I lack the tools, but I hope that others with more skills than I have will analyze the app and can confirm the app's health so the app can be established as a much better reference than Google's own minimally featured Authenticator, and that we can get Mufri lots of users!
Thanks Mufri,
-Jay
Requesting security analysis
libove said:
It's mind-blowing that Google's own Authenticator on its own Android platform lacks the feature to re-order the account entries, while the iOS version does support this.
And also mind-blowing that it lacks PIN control, any option to sync/ backup, and several of the other highly desirable (even necessary!) features which Mufri has built-in to the Authenticator Plus app.
I've also been pleased by Mufri's responsiveness and willingness to work to make the app have only the needed permissions. We've exchanged several detailed technical and philosophical messages; it's very nice to see yet another developer devoted to our community.
Click to expand...
Click to collapse
Thanks Jay for the review.
libove said:
I can't make any claims about the security of the app as I'm not a developer (well, haven't been since twenty years ago) and I lack the tools, but I hope that others with more skills than I have will analyze the app and can confirm the app's health so the app can be established as a much better reference than Google's own minimally featured Authenticator, and that we can get Mufri lots of users!
Thanks Mufri,
-Jay
Click to expand...
Click to collapse
I am open for the security related queries about Authenticator Plus, I myself use it daily and I would be happy to improve its security.
If anyone have questions kindly post your queries here or @ [email protected]
This APK is version 1.3
(Latest is 2.9.x, a lot of development has been done in this year as it seems!)
I downloaded the APK to try it out.
It first works when it is installed and I was able to import my accounts from the original Google Authenticator.
Then I closed the app.
I can open it again but the keyboard pops up saying "sign in" (where usually the "enter" button is).
Even when I enter the correct passphrase it shows only an empty app without the codes.
I can also install and add the import plugin but then I don't see the codes anymore.
Used on: CM 10.2 and CM11.
Very strange...
i just installed the app and i have some issues. first of all i would like the option to not choose a passphrase to open the app, but well thats not a big problem. after i choose a passphrase and set the app up and want to start it again it just shows me the header with the logo of the app but everything else is blank, there is no password field to type in the selected password and even if i type it in, without anything showing, it doesnt open the app. i can just use it once and thats it
also import from google authenticator doesnt work. it tells me no root or script not in xbin. well its all there. the problem is probably root, because the dialogue to grant root never shows up. I try to get it now manually granted but still that doesnt help if i can start the app only once :/
I am on a galaxy note 3. hope someone can help me...
Yes, attached APK was outdated, I have removed it now.
i see to get a blank web site when i visit http://authenticatorplus.com/ ?
devtools reports 404 error
GET https://www.authenticatorplus.com/js/jquery.cycle2.js.map 404 (Not Found)
Click to expand...
Click to collapse
That's weird, might be adblock or some other issues ...
you can try Google cache here, its a simple site, google cache displays well
http://j.mp/1tBGjhH
connectandroid said:
i see to get a blank web site when i visit http://authenticatorplus.com/ ?
devtools reports 404 error
Click to expand...
Click to collapse
Just FYI, I also get a blank page in Firefox with AdBlockPlus, but the page displays properly in an IE (InPrivate) session.
Thanks for the info, I couldn't reproduce this myself in various browsers, is https version working fine?
https://www.authenticatorplus.com/
I will check for cross platform browser tests.
oyam said:
Thanks for the info, I couldn't reproduce this myself in various browsers, is https version working fine?
https://www.authenticatorplus.com/
I will check for cross platform browser tests.
Click to expand...
Click to collapse
Ah, oops, my bad - had nothing to do with AdBlockPlus; I use NoScript, and hadn't enabled script on the authenticatorplus.com page. Works fine in both http:// and https://
Sorry.
Cool, thanks for the info, I will add a noscript info in site.
Compatibility with Pebble Smartwaches
Hi !
Has anyone tried to use Authenticator Plus with a Pebble smartwach, through Android Wear integration ?
I'll get an Pebble Time in May and hope it will work with it, that's why I'm asking for a clue
Interesting, I never heard of anyone tried it, let me know how it goes .
Store site order in cloud sync?
I use Authenticator Plus with cloud sync via Google Drive.
It seems that the order in which I have the accounts in Authenticator Plus does NOT get sync'd to the cloud (or, if it does get sync'd up, then when the sites are imported back down from the cloud, the order is not maintained).
Can the author comment please?
thanks,
Jay
from last release(3.3.5), app shows more details about sync status in Settings -> Cloud -> last sync status and let me know, what's the last status.
Also please contact [email protected] for faster response.
oyam said:
Interesting, I never heard of anyone tried it, let me know how it goes .
Click to expand...
Click to collapse
Pebble don't get it working through Android Wear, I think a layer is missing, maybe like an "emulator" (not the way Google implemented it) that can send other things but notifications to Pebble (it's the only thing supported for now).
Anyway, IMO for Authenticator Plus it will requires an Pebble OS app and a modification to makes it work as a companion.
Hi,
I would like to add a Battle.net account but the app fails to connect to battle.net server, is this something you can fix ?
edit : and do you think you can add Steam support in future release ?
Same problem with the battle.net server. No matter if I try it at home or at work or via LTE.
Since the Blizzard battle.net Authenticator works and I can access the battle.net site without any problem I suspect a problem with the Authenticator+ App. Syncing time with battle.net is also not working btw (in the settings)
Is the app working in 6.0? If Yes, could u send me a trial?
Dear all,
First, a big thanks to the communauty ot provide such great jobs. We really enjoy this !
Now, a quick question about restricted accounts use and their possible consequences regarding applications:
I've got a ASUS Tranformer 101 device.
I've followed the procedure provided in this thread (http://forum.xda-developers.com/showthread.php?t=2392087) to install the KatKiss rom 4.3 provided by Timduru which works really well. :good:
Context description:
I am the defaut account (admin I guess ?) for the tablet.
I've got two (lovely) children.
Each one have a Restricted account. Those restricted accounts have permissions to see onyl specific (games) applications.
Now, using my (admin) account, if I try to launch any application -> it works fine.
If I switch to one of the two restricted accounts, I can see and launch those 'shared' applications, but, for SOME of them, I observe the following behaviors:
Error encountered:
-> [Error message shown on the screen immediately after launch complaing about a "license verification error"]:
Example of applications impacted:
Grimm's Snow White (https://play.google.com/store/apps/details?id=com.storytoys.GrimmsSnowWhite.GooglePlay&hl=en)
Grimm's Sleeping Beauty (https://play.google.com/store/apps/details?id=com.storytoys.GrimmsSleepingBeauty.GooglePlay&hl=en)
(For what matter I've already sent an email regarding this behavior to the editor "Story toys" and I'm waiting for an answer on their side ...)
-> Application launched but nothing is clickable on the screen:
Example of applications impacted:
Lep's World 2 (https://play.google.com/store/apps/details?id=at.ner.lepsWorld2&hl=en)
This Could Hurt Free (https://play.google.com/store/apps/details?id=com.chillingo.thiscouldhurtfree.android.row&hl=en)
-> Application which works fine using a restricted account:
4 in a Row Multiplayer (https://play.google.com/store/apps/details?id=org.pjf.fourinarow&hl=en)
Glow Hockey (https://play.google.com/store/apps/details?id=com.natenai.glowhockey&hl=en)
Hence, does someone already faced these issues ? Is it related to the applications themsleve not being designed to run in a restricted account environment or is it related to the current state of the rom ? (android 4.3)
Thanks you for shedding some light on these questions.
If it is not the best place to post this question could you please redirect me to the right place ? (knowing I can not post into DEV forums yet).
regards,
Are all the multi user accounts using the main Google id, as this can cause problems with some apps which check with Google Play Store at run time to see if the current user has the valid Google id associated with his profile.
Theziggy said:
Are all the multi user accounts using the main Google id, as this can cause problems with some apps which check with Google Play Store at run time to see if the current user has the valid Google id associated with his profile.
Click to expand...
Click to collapse
Thanks you Theziggy for your quick answer.
Regarding the use of the GoogleID, I don't know how to check this. Do you have a procedure ?
However, I confirm those applications have been installed, using my account, directly from the GooglePlay store. (noTitanium Backup recovery attempt or anything else).
In the meantime, I've received an answer from Story Toys (editor of "White Snow' and "Sleeping Beauty" saying their development team is aware of an issue with restricted accounts and they are working on this subject.)
Hence it seems the source of the problem is per application ? Maybe, depending of what the application attempts with the account data, this might work or fail in a restricted account context (as you've pointed in your answer Theziggy).
Regards,
Hello every body, I have been provided a solution regarding my problem with the "Story toys" applications licensing and usage of restricted accounts.
The editor kindly provided me this step by step a mini-guide (kudo to them for providing the solution !) which solved my issue.
I put it below hoping it can help others people in the same or similar context:
1. Delete the app from the device
2. Turn off the device, wait a moment, then turn the device back on again
3. Ensure you have a working internet connection
4. Clear the cache and data of both the Google Play store app and the download manager. Here's how:
- Visit Menu > Settings > Applications > Manage applications
- Tab over to All
- Select the Google Play store app, and then tap Clear data and Clear cache.
- Then, select Download manager and tap Clear data and Clear cache.
5. Ensure you are logged in to Google Play with the same account you used to make the purchase.
6. Download the app and launch it straight away using the restricted account.
Once the app has been launched from the restricted account with the wifi/internet connection still running, you can then turn the wifi off again and the license won't be re-checked for another year.
Hope it helps,
Regards,
I have also been investigating a similar setup for a tablet used by kids, and looking into whether to create separate users or the restricted profile users. The one downside of using restricted users seems to be that I believe it is still a shared install of the app/game, so all users share the same user data. What this means is that all of those users would share the same game progress (i.e., levels completed, achievements, points/coins collected, etc.). Is that what your experience has been?
The alternative is to setup separate users and install the app for each user. It doesn't actually take up more space (the actual app files are only saved once for each user install), but each user has its own app data.
I have also been investigating a similar setup for a tablet used by kids, and looking into whether to create separate users or the restricted profile users. The one downside of using restricted users seems to be that I believe it is still a shared install of the app/game, so all users share the same user data. What this means is that all of those users would share the same game progress (i.e., levels completed, achievements, points/coins collected, etc.). Is that what your experience has been?
Click to expand...
Click to collapse
Good question, I've done a quick test using the game "Jewel Saga" and switched between the two restricted profiles. I confirm that, at least with this game (I did do perform other tests), each restricted account get its own progress and settings saved properly (Ej.: music on/off, level reached, number of stars earned per level ... ) .
As I said, this is just one test quickly performed on one application. So maybe the user experience varies regarding how applications handles data save with retricted profiles ?
Anyway, as long as my kids are not complaining, I'm fine
The alternative is to setup separate users and install the app for each user. It doesn't actually take up more space (the actual app files are only saved once for each user install), but each user has its own app data.
Click to expand...
Click to collapse
Good to know, thanks for the tip !
Has anyone managed to get lep's world 1 or 2 working in a restricted profile?
The developer doesn't seem interested in fixing the apps to allow it.
Lep's world 3 seems to work, despite the game spitting messages to the contrary
...why do I post this? Actually, I hoped to achieve less battery drainage without Google's well known tendency to permanently collect and transmit data. However, my initial observations don't prove extended battery life but I'm going to continue tracking the battery drainage and will eventually edit the respective post in this thread. At least, I'm already definitely able to state that I've less wakelocks, alarms, and running services than before. Furthermore, some of these crazy, weird indicated *alarms* and *launch* are gone.
Additionally, I'm monitoring the below mentioned microG-treads and recognise that quite a lot of people obviously have problems to get microG to run (honestly, as me too about six months ago, when I first attempted). Thus, I take the oportunity to provide my procedure how I've got microG to perform its desired duties.
If you're really interested into microG I suggest to read @Shadow53's post here.
By going "GApps free" I was able to achieve one of my decisive points to protect my own centre of gravity. However, monitoring the related microG threads I realised quite a few people have other motives for GApps free devices and seem not to have impediments for sharing and exchanging information with Google, obviously neither my personal way nor my consensus. For completeness, I like to share some of the other opinions to enable everyone to make up an own mind. Please find some posts here, here, or here. Additionally, @ale5000 provided a comparision between GApps and microG here.
It doesn't require bravery but only the strong will to get rid of all the useless Google services and activities despite the fact that I already succeeded in not selling my private data to Google at all by the use of some tools, policies, and procedures. Just to make it more clearly, I don't and don't want to use any of the applications provided by Google (except the Google Play Store (PS) for a very specific reason described below). I'm convinced there're alternatives to each of the Google applications around, which are respecting my privacy concerns and aren't necessarily so enormously blown up. Some aren't for free but I'm happy to support a developer and the development in regard to an excellent application; some of the applications you need to pay for on Google PS you get for free in same quality and "update level" e.g. at F-Droid.
Please allow me to mention a few of the applications I use but forgive me for not providing links to them; a simple web search will show you the way.
Email: "K-9 Mail R2Mail2" in conjunction with "OpenKeychain"; Browser: "Slimperiance", "Orfox" together with "Orbot"; Maps & Navigation: "OsmAnd~"; SMS/MMS: "chompSMS" and "Silence" (but no WiFi or mobile data access); Weather: "Avia Weather", "Das Wetter in Deutschland", "WarnWetter", "WetterOnline"; Messenger: "Conversations" in conjunction with a XMPP-Jabber-account; Camera: the ROM inherent one; Contacts: ROM inherent but synchronised via home-WiFi with PC via "MyPhoneExplorer"; Calendar: as for contacts before; Music: "VLC" (but no WiFi or mobile data access); Launcher: "Nova"; PDF-reader: "Xodo Docs PDF Viewer" (Remark: I personally don't require the capability to open any Microsoft Office or Open Office file types on my phone).
If you think I forgot something just ask!
You might now ask yourself why I didn't just live without Google but moved to the microG project instead? I require following capabilities:
Fixing of the current location of my device both using GPS and/or WiFi or Mobile Data.
GCM Push Notifications.
Access to the Google PS, especially to have access to my paid applications, donations, and to beta programs of some applications I like.
Some of my preferred applications must have an indication that (a kind of) Google Play Services is available on the device in order to correctly function or even to be positively installed.
EDIT (2017-05-02): In regard to the use of the Magisk module "NanoMod" please refer to post #14!
First, I'm extremely happy with my "GAppsless" system - running smoothly without any problems and all functionalities I desired! I don't have benchmarks but personally I've the impression my current ROM is performing faster, smoother, simply better than with Gapps.
To achieve a location fix runs perfectly in all three modes (including energy saving mode just by WiFi or mobile network) and definitely much faster than with GApps; GCM push notifications work; BlankStore ran as advertised, all installed apps were indicated and available updates, download of apps or updates without problems, and as advertised paid apps or beta versions were not available. Latter was the one and only reason why I installed the Google PS as the only Google application. For the procedure please see below.
Installation was quite easily accomplished by simply following the OP of [APP] microG GmsCore - lightweight free software clone of Google Play Services by @MaR-V-iN.
First, I ensured I'd both the Titanium Backup (TB) APK file and the TB Pro-Key APK file on my external storage the booted into recovery (in my case TWRP). I create a NANDROID backup by TWRP and then clean flashed my favourite ROM (in my case: Resurrection Remix® by @rodman01) i.e. wiped /dalvik, /cache, /system and /data (including internal storage - my Titanium backup is on external storage), factory reset. Flashed my favourite kernel, followed by flashing of Chainfire's SuperSU v2.76 (this is by my information the latest SuperSU by Chainfire himself. I refuse to go for the CCMT SuperSU v2.78, and I've issues with my kernel control application if I e.g. use phh's systemless SuperUser).
There no need any more to flash the Xposed framework through TWRP since @rovo89's version 3.1.1 of the XposedInstaller (this is true for my GT-I9305 and might be different to other devices/ROMs). In my case, the Xposed framework is absolutely necessary as my ROM does not support signature faking and I had to use the respective FakeGapps APK. Due to @Primokorn I became aware there are other tools like Needle or Tingle (just search for them) to get signature spoofing for Nougat (until we have Xposed).
Reboot into system.
Remark: Quoted from MaR-V-iN's above linked thread: "...You need a 4/5/6 ROM that is GAPPS-free. Either don't install them or remove them, if your ROM ships them. Please note that microG GmsCore might run on a cleaned stock ROM, but it might also brick it or cause random bugs. Be aware that only latest Android versions (4.4+) are regularly tested and thus prioritized over older versions when issues occur..."
Completed my desired initial ROM setup and installed the TB APK and the Pro-Key APK. Made the necessary TB setup especially the location of my backups. Restored XposedInstaller and all initially required applications via TB but definitely include F-Droid and the application with a root explorer of your desire, I'm personally using SD Maid - System cleaning tool by @Dark3n (all others were restored after installation of microG). Please do not restore or install any application, which require GCM push notifications, before having installed microG! Performed the setup for all restored applications. Installed the Xposed framework via XposedInstaller. Reboot. Installed the FakeGapps APK and activated it in Xposed. Reboot.
I followed this procedure (http://forum.xda-developers.com/showpost.php?p=42983611&postcount=306), downloaded the "android-checkin-1.0.jar" and "bla.bat" and generated an Android ID for my Google PS account. Please be advised about this information I received from @pupsidze: "Accounts created online does NOT work with this. I have registered an account via friend's phone and it worked like a charm..." This obviously means you must use an account that was formerly created through the Google PS on an Android device.
I downloaded following APKs on PC and moved them to my external storage:
microG Services Core
microG Services Framework Proxy
UnifiedNlp APK (This tool works for me; however, if you have problems there're two others available at this [URL="http://forum.xda-developers.com/android/apps-games/app-g-unifiednlp-floss-wi-fi-cell-tower-t2991544"]UnifiedNlp - FLOSS Wi-Fi- and cell-tower-based geolocation thread by @MaR-V-iN as well as a link to a respective Xposed module). @Primokorn made me aware that you don't need to install UnifiedNlp.apk since it's already included into microG.
BlankStore Attention, you must manually grant "storage permissions" (thanks to @Primokorn
Install all of the above, then move into F-Droid to download the backends for UnifiedNlp as indicated in the above mentioned UnifiedNlp thread and install them. I'm personally using the two following backends: "LocalGsmNlpBackend" and "NominatimNlpBackend".
Follow step no. 4 of the installation instructions in the OP of [APP] microG GmsCore - lightweight free software clone of Google Play Services by @MaR-V-iN. For the setup of the "LocalGsmNlpBackend", I'm using the database of "Mozilla Location Service" because the download of the OpenCellID database quite often broke down. Please be aware that the download takes quite a few time due to the size of the database (only do via WiFi!!!), and choose before the areas you interested in in order not to "overload" your storage! At this point, I rebooted then went in "BlankStore" or as it appeared as "Android Market" on my app list.
When you open "Android Market" the first time, it requires you to enter the credentials of your Google account. Enter your Google email address, Google password and the Android ID you generated earlier. If everything worked as advertised all your already installed applications should appear in the "Android Market" after you hit "installed apps".
I suggest to now run the self check in the microG settings. Before you do, ensure that location is enabled in the ROM settings otherwise you want get a tick mark in the last row of the check. If any other tick mark is missing just recheck your settings and especially if all permissions are granted.
When I was at the point to restore my remaining applications via TB, I wasn't initially able to restore 6 out of my about 100-ish applications; a new installation of these applications failed, too. Just by accident, I checked the homepage of one of these apps (Öffi) and realised that one of its requirements was to have a pre-installed Maps Library v1; however, they also offered an AOSP version, which was running without GApps but microG. This was for me the first indication not to have Maps Library v1 but only v2 installed.
I discovered (again) @MaR-V-iN's NOGAPPS Project (NetworkLocation, MapsAPI, Blank Store) thread, downloaded and flashed the Maps API Flashable Zip. All resistant applications were installable afterwards and are running properly.
Conclusion: If some apps can't be installed it's most likely due to missing Maps Library v1.
Last but not least, I manually installed Google PS by downloading its latest version from apkmirror.com and renamed it to Phonesky.apk. (EDIT (2017-03-25): Please be aware that @ale5000 recomments here to use version 5.1.11. Personally, I use the method described here for purchases in Google PS.) Then I created a folder called Phonesky via my root explorer in /system/priv-app/ and set its permissions to "755 (rwxr-xr-x)". I move the renamed Phonesky.apk into this folder and change its permissions to "644 (rw-r--r--)". Rebooted and was done.
After the reboot, I noticed the following:
The formerly "Android Market" (BlankStore) was no longer available in the app list but a "Play Store".
A Google account was available under ROM settings => Accounts; however, synchronisation was automatically disabled.
Via Google PS, my Google account was accessible including all purchases I did.
At "My Apps & Games" no apps were indicated under "installed apps", under "all apps" all my installed apps were shown and the ones not installed but downloaded in the past. No "beta" tab was shown.
In my "donation apps" (e.g. Amplify) the donation was again indicated.
I went to my Google account on Google Play Store (on my PC) and walked my way through all of my applications by clicking on "install" despite the indication that it was already installed. Obviously the applications apk's were again "beamed" to my device (and installed (???) again occasionally with a timely delay of about an hour). However, eventually the Play Store on the phone indicated all applications now also under "installed apps", if applicable updates were provided, the tab "beta" was created and I was back into all beta programs I had formerly joined. Play Store runs exactly the same as before when I had Gapps installed.
Meanwhile I experienced that Play Store automatically synchronises all my apps by itself i.e. I learnt to be patient.
Please advise if you believe I missed something or in case of any question! Be aware, I took my time to conduct all of the above; didn't do it in a single step i.e. I was running more or less two operating systems on my device simultaneously and switch back and forth. Now, I'm only (and will only be) staying on my "GAppsless" ROM!
P.S. Before you install one of the "directly linked" apk-files recheck if it's the current version!
CREDITS: To everybody who I mentioned in this OP or the subsequent posts. If I forgot someone I apologise. Please let me know in this case or if you want to be more prominently given credit; I'm happy to immediately follow such a request!
EDIT (2017-04-14): Please find a more brief procedure below at post #8.
Off topic comments are allowed as long they are generally related to the overall topic, are in the general interest of the followers of this thread and add value to the thread. The ultimate decision rests with me as the OP!
Hi @noc.jfcbs, did you get your Google Play Store app auto-updated?
@bam80: Negative, gratefully no Google Play Store auto-update!
I personally assume that functionality comes with Google Play Services that aren't installed obviously. I don't know (and I'm not going to try) if the Play Store auto-updates if I grant permission for auto-updates in the Play Store settings.
Occasionally, I manually check for new Play Store versions, and XDA labs also indicates when updates are available. However, I already realised that not all new versions are compatible with my device running on RR v5.7.4 Sammy. And as long as my current Play Store version works why should I replace it?
Never had problems with newest Play Store versions. I just thought that if Play Services were responsible for the update, now microg should take its place. Sadly, this functionality seems do not implemented. Had never needed to update Play Store by hand. Thanks for answer, though
Play Store has its own update services, hence the reason it still updates itself w/out Play Services. Sadly it doesn't have a setting to not do so. The do not auto update setting applies to apps installed from the store.
On one of my microG ROMs the Play Store kept updating itself which was getting quite annoying. Especially since I was using a TBO Clear version. Blocked the two services responsible and all is good. That's a KitKat ROM with a 7.6.x Play Store. Operating fine despite a new "need to update Google Services" notification.
On a regular GApped ROM that is using an older themed Play Store that I like it also kept getting updated. Blocked the services there and no updates since.
In some cases and for some folks, blocking the services after the fact might mess up the store a bit (nothing shows up in My Apps). Clearing cache and data usually fixes that.
On crDroid Nougat where I had to start over from scratch, due to ROM rebase, I blocked the services early on before activating Google account and running the store. All good there also.
The two services are shown in the screenshot from MyAndroidTools.
LG G3 D851, PAC-MAN LP ROM, MultiROM, Tapatalk 4.9.5
@marcdw: Thanks very much for the thorough explanation. In deed really helpful. However, my Play Store didn't auto-update despite both services been enabled. Anyhow, I disabled them too.
It's funny how that works sometimes. My main ROM, PAC-MAN LP that I've been running forever, also didn't update. No blocked services or anything. Just never did. That was cool. Other ROMs would update at the drop of a hat though.
LG G3 D851, OctOS Nougat ROM, MultiROM, Tapatalk 4.9.5
Just recently, about three weeks ago, we decided to also go for GApps-free on my wife's device (a Samsung GT-i9305, too).
I'd like to more briefly explain the procedure I used.
I clean flashed the ROM of my wife's desire (certainly a GApps-free one) and the desired kernel. Installed XposedInstaller 3.1.1 and through it the Xposed framework, followed by the FakeGapps Xposed module. Activation and reboot.
Please be aware that we're using the same Google account on both devices. At no point during the procedure, I had to generate an Android ID by "android-checkin-1.0.jar" and "bla.bat".
Downloaded following APK's in its latest versions from here and installed them in this order:
microG Services Core
microG Services Framework Proxy
BlankStore
Downloaded and installed F-Droid. In turn, I downloaded and installed following backends from F-Droid:
LocalGsmNlpBackend
NominatimNlpBackend
Configured the backends to my desire. For the setup of the "LocalGsmNlpBackend", I used the database of "Mozilla Location Service", selected the countries of my desire and downloaded the database (takes quite a while; suggest to only proceed via WiFi).
From apkmirror.com, downloaded (but did not install) "Google Play Store 7.5.08.M-all [0] [PR] 146162341" (personally best experiences with this version; some later version even don't install on our devices). Renamed the play store download to Phonesky.apk. Via my root explorer, I created a folder called Phonesky in /system/priv-app/ and set its permissions to "755 (rwxr-xr-x)". I move the renamed Phonesky.apk into this folder and change its permissions to "644 (rw-r--r--)". Rebooted.
Downloaded Maps API Flashable Zip from NOGAPPS Project (NetworkLocation, MapsAPI, Blank Store) and booted into TWRP. Flashed the zip, back into system.
Created a (our) Google account in the ROM settings.
Ensure that all applications mentioned above had their necessary permissions (e.g. location, storage etc.). Opened Google Play Store the first time to check its functionality and to modify its settings. Run the "self check" in the microG settings to confirm all items are tick-marked.
While writing this post, I realised that the Play Store was auto-updated to "Google Play Store 7.6.08.N-all [0] [PR] 149245622"! This is weird as I have the respective services disable via MyAndroidTools (see attached screenshot). I need to dig closer into this.
I tried to do the same with my S4 I9505. I started with flashing Optimized LineageOS 7.1.2 from here. I followed your instructions carefully. After flashing MapsAPI I tried to add the Google account in Settings - Account - Add Account - Google. The only thing that happens is a message 'One short moment...' and it waits forever until I hit the back button. Do you have an idea what's going wrong?
MichaelZR said:
I tried to do the same with my S4 I9505. I started with flashing Optimized LineageOS 7.1.2 from here. I followed your instructions carefully. After flashing MapsAPI I tried to add the Google account in Settings - Account - Add Account - Google. The only thing that happens is a message 'One short moment...' and it waits forever until I hit the back button. Do you have an idea what's going wrong?
Click to expand...
Click to collapse
I had that issue too and still haven't got things working but I was able to create the account during play store installation. It might work, if all else is good.
elv1503 said:
I had that issue too and still haven't got things working but I was able to create the account during play store installation. It might work, if all else is good.
Click to expand...
Click to collapse
MichaelZR said:
I tried to do the same with my S4 I9505. I started with flashing Optimized LineageOS 7.1.2 from here. I followed your instructions carefully. After flashing MapsAPI I tried to add the Google account in Settings - Account - Add Account - Google. The only thing that happens is a message 'One short moment...' and it waits forever until I hit the back button. Do you have an idea what's going wrong?
Click to expand...
Click to collapse
I never tried to go for GApps-free on a "Nougat"-device. My favourite ROM (Ressurection Remix for the i9305) does not support signature spoofing i.e. I still require the Xposed framework (for the FakeGapps module but also for other very important things to me). I personally continue to stick with Marshmellow or to be more precisely with RR v5.7.4 (besides some trials I made with RR v5.8.x without any personal or confidential data on the device).
Does the ROM you mentioned (Optimized LineageOS 7.1.2) supports signature spoofing? Due to the issue you described I personally doubt - and in turn my personal procedure won't worked. If my assumption is correct you might use tools like Needle or Tingle (just search for them) to get signature spoofing for Nougat.
Does the microG self-test provide any information if signature spoofing is available (please see screenshots)?
noc.jfcbs said:
I never tried to go for GApps-free on a "Nougat"-device. My favourite ROM (Ressurection Remix for the i9305) does not support signature spoofing i.e. I still require the Xposed framework (for the FakeGapps module but also for other very important things to me). I personally continue to stick with Marshmellow or to be more precisely with RR v5.7.4 (besides some trials I made with RR v5.8.x without any personal or confidential data on the device).
Does the ROM you mentioned (Optimized LineageOS 7.1.2) supports signature spoofing? Due to the issue you described I personally doubt - and in turn my personal procedure won't worked. If my assumption is correct you might use other tools like Needle or Tingle (just search for them) to get signature spoofing for Nougat.
Does the microG self-test provide any information if signature spoofing is available (please see screenshots)?
Click to expand...
Click to collapse
Yes there is a self test. It does show everything is OK for google play but I haven't been able to get play running. I'm going to try the market route but I need android I'd. I tried a couple of google apo versions.
elv1503 said:
Yes there is a self test. It does show everything is OK for google play but I haven't been able to get play running. I'm going to try the market route but I need android I'd. I tried a couple of google apo versions.
Click to expand...
Click to collapse
Please check the last three pages of post in this microG thread. Might be helpful for problems of "Nougat" guys. As I said I'm still on MM (for very good reasons, but I know everybody converted to Nougat and will to "O" soon for even better reasons).
Resurrection Remix "Nougat" v5.8.3 is now GApps-free
Thanks to the really powerful and easy to use NanoMod Magisk module by @Setialpha powered by Magisk by @topjohnwu I was able to create a GApps-free system on my Samsung GT-i9305 running Resurrection Remix RR-N-v5.8.3 by @rodman01 (RR-i9305 official thread). Excluding download times, the following complete procedure took me less than one hour this morning, and - if interested - I'd like to share the way I used with you.
However, before I continue I need to address my very best compliments to rodman01 for such a superb ROM, to topjohnwu for the systemless root as it was the basis for going GApps free, and to Setialpha for this fantastic module, which made it so easy and fast to achieve a GApps-free device. Three times :good::good::good: and thanks very much to all of you for excellent jobs well done!
As you certainly know RR doesn't come with signature spoofing by itself, which is a prerequisite to go GApps-free with the help of microG by @MaR-V-iN. Thanks very much to MaR-V-iN for allowing me/us to abandon Google from my/our devices. Without Google, not only privacy is much better protected, the device itself runs much smoother and faster. As long as Xposed was available i.e. up to Marshmellow, signature spoofing could be achieve for RR via a Xposed module but for Nougat, no Xposed available (yet???). For this reason I stayed on RR-M till I found Setialpha's thread as he provides an easy-to-use tool to achieve signature spoofing on RR-N as long as use use the Magisk su-binary. However, as mentioned in the OP there've been other tools available to get the spoofing but not as easy to use.
Before you continue to follow me through my procedure, I'd like you to thoroughly read the OPs of all linked threads with their invaluable information.
Download the following files via the links given in above mentioned threads and save them to your device (I used my external SD):
Latest Resurrection Remix RR-N-v5.8.x
Latest Magisk and the MagiskManager.apk (link to XDA-thread see above).
EDIT (2017-04-30): Latest NanoMod-microG NanoMod-6.1.20170421.zip and NanoMod-patcher NanoMod-patcher-6.1.20170421.zip from here. Please be aware that there are two additional, more specific NanoMod-zips available. Use them on your own descretion; I personally like all the functionalities that come with the "overall/general" NanoMod module. EDIT (2017-04-30): My device had really severe battery drainage with the "overall" module. Battery drainage with the microG-module is not a factor at all. And I personally realised that I don't have any need for the additional things comming with the overall module. Reported my battery drainage issue together with a logcat to the dev.
If desired - mapsapi.flashable.zip from here (you only need that if you're using applications that require Maps Library v1. You won't be able to install any of those apps (or restore a TB backup) before Maps Library v1 has been flashed). EDIT (2017-04-30): No requirement to do so. Maps v1 is coming with the NanoMod module. Just ensure that /data/.nanomod-setup shows nanomod.mapsv1=1 as described in the OP of the Nanomod-thread.
If you like (as I did) create an update.zip by Titanium Backup. I saved that on my external SD, too.
Boot into recovery (I'm using TWRP 3.0.2-1) and follow this procedure:
Before you continue to do anything, create a NANDROID backup of your running system!
Wipe dalvik, cache, system, data (I did not wipe internal data or external SD).
Flash RR-N-v5.8.x.
Flash Magiskzip.
Reboot into system (Remark: The initial reboot might take a while i.e. grab a coffee; all follow-on reboots are slightly longer during the initial boot phase probably due to the revised boot.img but after that phase boot is really fast).
Install the MagiskManager.apk and start it. At that point, MagiskManager stated that Magisk v12 is installed but no root available. Here, I simply re-started the phone and afterwards, MagiskManager also indicated root to be available.
Re-start into recovery.
Flash NanoMod (or the module you desire) and NanoMod-patcher. Do not flash mapsapi.flashable.zip, yet - at least didn't later on work for me.
Flashed my TB-update.zip
Reboot into system and commence to setup your device with the initial ROM configuration that enables you to proceed (e.g. WiFi/mobile data setup, location enabled (I used "high"/GPS & data), required permissions granted to the microG applications and the connected backends etc.)
At this point I went into the microG settings and conducted the first self test to see how many marks were checked and what I still missed. If a check mark regarding a lacking permission is missing, just tick on it, and a dialog is going to open to grant this permission (later with the backends, it might also be a statusbar notification). For me I wanted achieve first the "location ability" i.e. I didn't care yet about the Google Play Store.
I maintained in the microG settings and setup my backends. My settings for the backends can be retrieved from the screenshots. Please be aware that the download of a GSM Location Services´database can take a while (my phone still had one from end of March available).
Re-check if in the self-test all marks are ticked, now.
By use of the app "GPS Test", conducted such a test. This was an unbelievable experience as such many satellites were recognised immediately after the start of the app and granting of location permissions, and just after 3 - 5 seconds I had the first fix.
Re-started into TWRP.
Flashed mapsapi.flashable.zip
Rebooted into system.
In the ROM settings, created my Google account without any problems. Immediate connection to the respective Google servers; user account and password were accepted without any problems.
Opened Google Play Store from the app drawer. Play Store immediate connected to my account. Made the necessary modification to the play store settings, and as you can see on the screen shot, all my apps are shown including beta's and the purchased ones.
Continued to further setup my system, but microG was done at that point, and my system was GApps-free except for the play store.
Thanks again to rodman01, topjohnwu, Setialpha, and MaR-V-i!:good:
EDIT (2017-06-10): Recommendation
In order to achieve after the clean flash of a ROM exactly the desired installation of microG (or anything else that is provided by one on the NanoMod modules, I suggest to create a so called ".nanomod-setup"-file with the values in accordance the OP of the NanoMod thread (see Alter Installation part) and your preferences. Although the OP mentions different possibilities, my personal pratice is to create this file once and have it on the extSD. I do the clean flash of the ROM and if required Magisk, and boot into system. I copy .nanomod-setup to /data, boot back into TWRP and flash my NanoMod-modules.
Mine e.g. looks like this:
Code:
nanomod.play=1
nanomod.reinstall=1
nanomod.mapsv1=1
nanomod.overlay=0
EDIT (2017-06-22): A few more details regarding the .nanomod-setup file are available in this post.
EDIT (2017-09-17): In case of "NLP issue", missing the bottom two tickmarks in the microG settings self-test or the unability to get a location from GSM cells/WiFi please check also post #48.
EDIT (2017-10-31): With the current version (v14.x) of Nanomod, installation is now even more easy. A setup-wizard to create the desired .nanomod-setup file is now available; it simply has to be flashed before any other Nanomod-zip is flashed. The new patcher can now be flashed immediately after flashing of the full module, the microG-module and/or the F-Droid-module; the patcher doesn't require a reboot into system anymore after the flash of the other modules. If Nanomod recognises Magisk Nanomod automatically gets installed as Magisk module unless you "tell" the setup-wizard differently.
@noc.jfcbs
Great write-up. One question though: seems you have abandoned XPrivacy as of now. Any privacy protecting measures taken from your side to replace XPrivacy? I am also tempted to switch to Nougat, but lack of XPrivacy is holding me back.
Portgas D. Ace said:
@noc.jfcbs
Great write-up. One question though: seems you have abandoned XPrivacy as of now. Any privacy protecting measures taken from your side to replace XPrivacy? I am also tempted to switch to Nougat, but lack of XPrivacy is holding me back.
Click to expand...
Click to collapse
For quite a while I had the same restraints but I knew at some point I'd balance the advantages of XPrivacy (which isn't obviously any further developed) for privacy considerations with the non-availability of security patches for earlier custom ROMs. Anyhow, I want to use custom ROMs, and I fully do understand that the great teams and single-players who port open sources codes for our devices don't have the capability to focus on later versions; might be different for companies like Microsoft or Google with their genuine products.
So, I tried to analyse the situation and to assess the most likely but also the worst case situation. My personal assessment was that the advantages of having latest security patches available takes precedence over faking privacy related information. Nonetheless, I'm convinced to protect a suitable level of privacy by other means:
Stay GApps-free and don't allow calls to Mountain View by elemination of the phone boothes.
I don't use any of the email-, messenger-, chat-, or browser-application (etc.) coming from Google, Facebook and similar companies but R2Mail2 (K9-Mail is nearly as good but simply doesn't provide for S/MIME only for PGP), Conversations, Silence, Slimperience etc.
Installation only of applications that are open-source or at least have a good reputation using intensive web-search. This includes that the country of origin must be clearly identified and verifiable.
Due to the lack of XPrivacy and AppOpsXposed intensive use of the ROM capabilities to grant permissions and privacy settings.
WiFi and mobile data, both set to use unsuspicious DNS-servers.
Clear and restrictive permissions to access the world wide web by the different means via AFWall+.
Last but not least to check the network activities behind the firewall via NetworkLog.
No upload or synchronisation of personal data or any file to or with "the cloud". Synchronisation and backups locally done with my PC.
Only maintain personal data but no confidential ones on the cellular device. Passwords or user names are not saved on the device at all.
Localisation is only enabled when definitely required.
Use of an extremely privacy related email-provider. I use Posteo.de who are in my personal mind simply the very best for just 1€ per month. Their help section additionally provides great advice on tools for contacts, calendar synchronisation etc.
Actually, I'd love if Xposed occasionally becomes available for Nougat and further on to enable me the further utilisation of XPrivacy and others. But meanwhile, I think all mentioned above is the best I can do as I do want to use a Nougat-based ROM.
I was happy about your question, and I'd be even more glad about any further suggestion or recommendation.
@noc.jfcbs
Clearly some good thoughts you have stated here, which I really appreciate. Xposed in general should only be used with a lot of caution as it enables device manipulation on a far more advanced level than normal root methods. Your idea of investing time to get to know the module before installing it is absolutely reasonable and should be followed by anyone interested in the combination of privacy and Xposed.
The only thing bugging me is synchronization of calendar/contacts, which should be synchronized between all of my devices. As of now, I use Google services, but I am more than willing to put an end to this. I am currently thinking about using my private NAS to set up an OwnCloud server for this specific purpose or even invest some money in a Raspberry Pi who can host it (which would most likely be the better choice as my NAS should only be available in my local network without global network access).
If you are interested, I will write down some results in case this works out. But I am not sure if I will find the time in the next few months, as I am currently planning to start building a house for me and my family, thus not having enough time for this.
Portgas D. Ace said:
...
The only thing bugging me is synchronization of calendar/contacts, which should be synchronized between all of my devices. As of now, I use Google services, but I am more than willing to put an end to this. I am currently thinking about using my private NAS to set up an OwnCloud server for this specific purpose or even invest some money in a Raspberry Pi who can host it (which would most likely be the better choice as my NAS should only be available in my local network without global network access).
If you are interested, I will write down some results in case this works out. But I am not sure if I will find the time in the next few months, as I am currently planning to start building a house for me and my family, thus not having enough time for this.
Click to expand...
Click to collapse
Your plans sound great: Plant a tree, father a child, build a house...:good: I wish you and your family all the best.
If interested please allow me to explain how I synchronise my calendar and contacts:
My cell phone with my two notebooks via the MyPhoneExplorer (MPE) application on the Android device and an MPE client on the Windows notebooks. Using this tool now with full satisfaction for years. At home, I synchronise via WiFi when all devices are booked in; on tour, I only synch those devices I've with me and only via USB cable.
My (main) notebook (only that as I only have a license for one PC; however, that's sufficient for my purposes) synchronises with my posteo.de-email-acount via the tool iCal4OL. It's a pity, the developer cancelled the purchase of licenses to new customers but still supports old ones and updates the product. The tool works great. If you check how posteo.de has implemented privacy and security, I believe it's the actually best company in Germany or probably in the world. You do not need to provide any personal details for registration, even the yearly fee of 12 € can be paid in cash by mail if you want. The account has implemented multiple, first class and up-to-date security features. And their help and FAQ sections are fantastic providing great recommendations about usable tools, encryption for the account but also emails and so on.
My wife's Android device synchronises calendar and contact by the help of CalDAV and CardDAV. Also fantastic and every cent worth. Additionally, she also uses MPE with her notebook.
Raspberry Pi is certainly an excellent choice. Read some quite interesting articles in the Kuketz IT-Security Blog.
noc.jfcbs said:
Buddy, you made me shy... But thanks for the laurel wreath...
I know neither Nexus nor your ROM but I certainly know the ROM must be totally GApps free before even installing microG. If you don't find a GApps-free ROM of your desire there are ways to completely remove GApps from your device; personally I deem them to be a bit complicated, but... Details are in the OP of the microG thread you certainly know. Additionally, signature spoofing is a prerequisite. Unless your ROM already supports that you've to go either with Xposed and its respective "fake GApps" module or to use Magisk as the SU binary and NanoMod as a Magisk module. As Xposed is not available for Nougat, Magisk and NanoMod are my personal choice despite a few other tools available to achieve signature spoofing on Nougat.
In this thread, I tried to explain why and how I went for GApps free. Initially, this occured on Resurrection Remix (RR) v5.7.4 i.e. Marshmellow. Meanwhile, I migrated to RR v.5.8.3 i.e. Nougat, and in this post I described how I used Magisk and NanoMod to go GApps free even without Xposed.
Just to reiterate: My personal major intention for going GApps-free has been to leave everything of Google behind (except the Play Store) for privacy reasons and respect. Certainly, I'd accept any other benefit coming with that. However, after a quite long "GApps-free" period, I cannot confirm that battery endurance has really enhanced but I can confirm that at least my personal device and my wife's one are running much smoother and quite often faster than during their GApps-times.
Please advice in case of further questions; however, I suggest to use my above linked thread for that as I'm not monitoring this thread for obvious reasons.
Click to expand...
Click to collapse
I just pretty much searched through /system for anything with Google in it ?
It worked, and I now have microG. I also then used an Xposed module (InstallerOpt) like you suggested (Magisk won't work with a locked bootloader). Thanks for the help!
PorygonZRocks said:
I just pretty much searched through /system for anything with Google in it ?
It worked, and I now have microG. I also then used an Xposed module (InstallerOpt) like you suggested (Magisk won't work with a locked bootloader). Thanks for the help!
Click to expand...
Click to collapse
Glad that you worked it out. No need to post a thanks! ...just hit the "Thanks"-button...