Reveal passwords permission bug

We have a team account and all our users have the permission "Reveal password" unchecked.

The users have all the write permissions, however, they can't create new items in the vault. And if they create them using the browser extension, this new items won't get synchronised to the team account and will only appear on their app.

The only way we have found to fix this is temporary give the users the permission back and then remove it again.


1Password Version: 6.5.1
Extension Version: Not Provided
OS Version: mac
Sync Type: Team

Comments

  • Hi @buzkall! Sorry about that. It is happening because the server declares the sync a failure due to permissions. So the client allows one thing, but the server denies it.

    The easiest workaround for now is to grant this user the Reveal Password permission, which will immediately allow those items to sync. Then, if you wish, you can remove the Reveal Password permission and that should be fine. However, anytime this user runs into this issue, you'll need to grant them Reveal Password permission, until we've resolved it on our side.

    Alternatively, you could remove the ability for these users to create items in these vaults, which would prevent this situation. Though, those users would not be able to create items if that's what you want them to be able to do. This actually lines up reasonably well from a permissions standpoint I think. If you allow these users to create items, the created the item and know the password for that particular item. By then saying they can't reveal the password, that's just sort of a conundrum, since they already possibly know it (at least the person who created it anyway).

    Hope that helps clear things up.

    ref: B5-1996

  • buzkall
    buzkall
    Community Member

    I agree that if the user can create a new password, he will know it... but in that case... what's the point in having a separated permission allowing him to create the item... and not letting him know that the rest of the team won't be seeing it?

    Are there any plans to solve this in a short period of time? At least warn the user, or the administrator that some items aren't being synchronised with the team?

  • AGAlumB
    AGAlumB
    1Password Alumni

    I don't have a time frame for you, but we're exploring different ways of improving this. Thanks for your feedback here!

This discussion has been closed.