hi all,
so far passbolt is awesome but one small problem
lets say multiple users use the same pc and web browser (trusted device) to log in/out passbolt as one department do shifts and got use of one device only
lets say user A signs out and user B signs in it obiously asks for the recovery key for user B
but
when user A signs in again it asks for a recovery key again to log in the same trusted device, why is this, is this normal and any way to change this
thanks,
rob
Hello @robert.wild, thanks for your kind words.
When it comes to multiple users for a single computer, even though that’s not something I would recommend but if that’s mandatory here, here is how you could improve the authentication to avoid too many account recoveries.
I will be using browser profiles, for example on Google Chrome I will set multiple profiles for these multiple users e.g. profilA === user1, profileB === user2 etc. Each of these profiles would will have their own browser extension configured, so only the passphrase will be required on each login. It’s also a good habit to manually logout when sharing a computer 
After that, it depends on how much secure you want to be, from my own perspective, I would say that if I had someone else accessing my computer I would rather “lose some time” to perform an account recovery each time, rather than having my settings saved on another profile which is accessible, let’s say that if I forget to close the window of my own profile before leaving and that I have set the session to until I logout , that the extension is still able to reach the API e.g. the computer is not locked out or shutting down, then it’s a risk issue.
thanks @antony ive been researching on here and thats what people said just use browser profiles as then everyone gets there own extension to log in passbolt with via the API
is that correct?
will passbolt extensions be able to handle different users in the future?
thanks,
rob
If its the same profile its the same user, so I think this “handle different users in the future” is a moot question.
Better still, if you don’t want to switch profiles, each user can have its own windows user dekstop (login) and then it will be separate. Just create a user in windows for each one and you are done.
