sofriendly / 2fhey Goto Github PK

Just curious, why was 2fhey forked from ohtipi into this new repo?

SoFriendly appears affiliated somehow with Yac-team but it's unclear.

A short answer would be helpful for more comfort granting full disk permissions. Thank you and love the app!

As we know, with macOS Sonoma, we are able to copy verification codes from Mail.app as well. I suggest implementing it.

Message from AMEX India:

Your Amex SafeKey One-Time Password for INR 1234.00 is 672643. Valid for 10 mins for Card ending xxxxx. Never share this password.

Instead of copying the actual one-time password (672643) in the message, the application copies the amount located immediately after "INR" i.e 1234.

Please let me know if you need any other details.

Hi,
I've been thinking about how we handle OTP parsing. Currently, we maintain so many regex patterns.
What if we leverage OpenAI's new function calls instead?
This would eliminate maintaining the config all together.

Here's a sample snippet I wrote in TypeScript it's pretty accurate and parsed the most complex OTP on the 1st run.
Execution time averages at around 1.5s from my trial runs.

When I get a text now, the Apple/MacOS notifications show up as either the phone number or "Maybe: Person Name" and do not seem to be sync'd with my contacts list anymore.

The 2FHey1.0.3.dmg file's app's CFBundleShortVersionString is 1.0.1.

If the dock position on screen is set to left, the 2FHey popup appears behind the dock, making it near impossible to see.

One idea for a solution for this would be to allow the user to pick which corner to use for the popup. Or possibly have some sort of indication through the menu bar icon rather than a pop-up.

M1 2020 Macbook Pro, overlay of popup does not display on top of Microsoft Edge. I can still paste as normal but the popup is not visable.

On macOS when I receive a code from Twitter in the form:
Twitter login code: 851324442

2FHey does not sync when the code arrives in Messages.
I click Resync and 2FHey does not detect the code.

I tried to get this to work locally but could not.

IMHO you should get the project in a state where I can successfully run the tests stored in /2fhey/2FHeyTests/TwoFHeyTests.swift right after cloning the repo locally and opening the .xcodeproj file in Xcode.

As it stands now I get this when trying to run the tests:

Xcode is also complaining about "No such module 'TwoFHey'" in the same file.

Shouldn't it be menu bar only?

I just purchased 2FHey today, installed it, but doesn't seem to do anything when I click on the app in the applications folder. The app has a crossed-out symbol on app icon.

I am running MacOS 10.15.7 (19H1922) Catalina

Using chrome on Monterey (21F79) on the recent MacBook Pro.
Popup is showing in the wrong coordinates and behind the Chrome window.

This happened with GEICO: Your verification code is: 052045. It expires in 10 minutes. Please do not reply to this message., where there are no letters in the actual code. Not sure if it would have happened with instances where there are letters in the code, such as the examples below. (All messages/codes here are old/expired.)

GEICO: Your verification code is: 696487. It expires in 10 minutes. Please do not reply to this message.
GEICO: Your verification code is: 0ACE2A. It expires in 10 minutes. Please do not reply to this message.
GEICO: Your verification code is: 1F812F. It expires in 10 minutes. Please do not reply to this message.
GEICO: Your verification code is: 655A5F. It expires in 10 minutes. Please do not reply to this message.

For example following message contains verification code 700185. Apple message can correct parse it while 2fhey detect "是" as the code (which means 'is' in Chinese)

【知乎】你的验证码是 700185，此验证码用于登录知乎或重置密码。10 分钟内有效。

Most verification codes in Chinese are sequences of 5-7 digits. The 2fa message can be detected with keyword "验证码". It will be great to have Chinese support as in China 2fa code message is much more frequently used.

Only noticed since I thought it was stylistic as first ("soooorrrryyy" vibes). But might be good to fix considering you're asking for full disk permissions haha.

Cheers on the app!

why not support macOS Big Sur 11.6

OTP gets copied but no window gets displayed, the windows sometimes only appear during next reboot with the last code. Also, how to add templates?

As I noticed in my PR from yesterday, #59, it looks like too many things specific to my local environment are included in the PR.
I assume we should improve what's in the .gitignore file to avoid this.

SMS comes from 868722, 2fhey replied with 'FRAUD'

USAA FRAUD PREVENTION ALERT: USAA will never contact you for this code, don't share it: ######. Call 800-531-8722 if you gave it to anyone. Reply HELP for help.

Very often right after using the 2FA code I proceed to delete the text. I am wondering if that's a feature we can add to this awesome app.

I am a developer and can help out with the implementation if you are able to provide a bit of guidance. For example, would this even be possible with the APIs available? If so, what UX would you prefer? etc.

What were the security considerations kept in mind while creating this app? Does it access the internet and possibly leak codes to attackers?

When I receive an actual verification code SMS, the "Copied to Clipboard" message doesn't show (but the code is still copied to the clipboard), but when I message myself (either with iMessage or SMS), receiving the message shows the popup.

I'm on macOS 13.3.0 and 2FHey 1.0.3.

I have only tried 2FHey with one case and does not seem to work at all. Example messages. A sensitive name is replaces with XX-XXXX below. The part replaced contains only upper case latin characters instead of the 'X':

729565
Enter this verification code when prompted by XX-XXXX FS to complete your sign in verification.

956810
Enter this verification code when prompted by XX-XXXX FS to complete your sign in verification.

956810
Enter this verification code when prompted by XX-XXXX FS to complete your sign in verification.

182770
Enter this verification code when prompted by XX-XXXX FS to complete your sign in verification.

The messages are sent through various sources, but mostly from "Microsoft" (it concerns access to a SharePoint):

Hey 2fhey team,

Big fan of your autofill application, improves my workflow and a game changer 🙌!
However I did have a question regarding future updates and features.
I noticed on your site it mentioned.

No we currently don't support automatic updates. However 2FHey was built specifically to work from a remote code recognition list so that it doesn't need to be updated as often.

So I'm wondering how future support will be handled moving forward.
Will a new update be available on our gumroad library?
or will an integrated update service be something in the works for this application.

Hello!

Thanks so much for making this app. I purchased it the moment I read the description.

I use the Orion browser. 2fhey works great, but I don't see any type of notification whenever a 2FA code is copied to my clipboard.

It looks like there is some popup based on the marketing material for this app, but it hasn't ever worked for me.

Would it be possible to send a desktop notification whenever a code is copied to the clipboard? I would find that immensely helpful!

Some application cannot be recognized via 2FHey in China, so I want to add the rules in "AppConfig.json". But when I visit to the content of 2FHey, there isn't any config file. Could you tell me how to do?

I purchased your app (I love it), and my MacUpdater app shows me an update (v1.1). How do I install that? I've closed and opened the app and have yet to get a response, and I don't see an option in any of the dropdowns or dialog boxes. Can you help point me in the right direction?

Previous versions only showed up in menu bar, the latest one is showing up on the dock and I can't hide it.

Hi - love the app, thanks for making it!

I have a small request - is it possible to put in a preference to hide/not display the pop up that appears in the bottom right corner with the code in?

I ask as I am a lecturer and I often record my lectures. If I have to record and use something that requires two factor, the number can appear on the screen and therefore the recording, which is not ideal - I have to prevent others seeing this code for my compliance with the terms for signing into my work portal, for instance.

Thanks!
Ryan

Running Somona and using Chrome. Yes, I've followed the setup steps and retried multiple times.

Previously, 2FHey ran solely in the menu bar, but in 1.2 the dock icon is also running (at least on my macOS 14.4). As all PMs do, I wish I could help instead of just filing an issue, but c'est la vie 🙃

Version 1.3: This text incorrectly captured "1100", part of the phone number, as a code.

Hi David, Appt reminder:
Fri Apr 5, 9:00 AM
Please call us at (608)833-1100 if you have any questions. We look forward to seeing you.
First Choice Dental - West
Reply unsub to unsubscribe

Is it possible to hide the 2FHey menu bar icon?

Guys, if you want us to do a PR to the AppConfig.json file to add new message formats (e.g., #19 ), that's not very testable, is it? What with the different flavors of regex parsers and stuff, it'd be a lot safer and more robust if we could test a new entry for a while before committing.

May I suggest that the app look for a local copy (in ~/Library/Preferences or whatever) and let its contents overlay the Github one. This sort of setup would also let us help fix entries that are broken, and patch them on our own. (Looking at the existing list, it's very US-English so there are probably thousands of possible additions in other languages.)

Looking at the code real quick, it appears (in ParserConfigManager) you're downloading the AppConfig file to ~/Library/Application Support/com.sofriendly.2fhey/2fheyConfiguration.json -- but that doesn't exist on mine, and if I create it and put junk in it, doesn't bother the application any. (I'm not a Swift dev, so this is guesswork.) Maybe if you tell us what is going on there, we could already have most of what's requested here. (Ideally add it to the README?) Thanks!

2FHey Version 1.3

You can only get :

【阿里云盘】验证码：567773。此验证码只用于进行短信登录，15分钟内有效

So I installed the app, its authorised but doesnt work correctly.

1. GMAIL - OTA = Failed to capture code

2. Vodafone UK - OTA = failed to capture code

3. Amazon UK - OTA = Worked (as expected).

So 2 failed. How can I get this software to work.

Diirge says on github, so guys please help?

Hello,

When I receive 2FA codes from the following senders they won't get picked up:
8001:
Use this verification code 868658 to accept your 150.51€ transaction at Vimexx. Don't share this code with anyone; our employees will never ask for the code.

19728460903:
Use this verification code 224765 to accept your 19.00€ transaction at WP OVERNIGHT BV. Don't share this code with anyone; our employees will never ask for the code.

It will hover pick up this from our wordle group (it will pickup 1027 for example):
Woordle 1027 4/6

⬜🟨⬜⬜⬜
⬜⬜🟨⬜⬜
🟨⬜⬜🟨🟨
🟩🟩🟩🟩🟩

These from my bank are not being picked up:

OTP to AMEND A STANDING ORDER of GBP 318.00 to 600921 & 71018727. Please call us if this wasn't you. NEVER share this code, not even with Cater Allen staff 600383

OTP to MAKE A NEW PAYMENT of GBP 9,441.29 to 083210 & 12001039. Please call us if this wasn't you. NEVER share this code, not even with Cater Allen staff 445900

Loving it otherwise of course.

Ditch all the HTML in the onboarding and make sure it's possible to exit the onboarding window. If we can also improve the logic for detecting permissions and not showing when both permissions are granted that would be great too. Right now it's possible to get stuck in an endless loop of onboarding and restarting.

I wanted to request a feature if possible!

It would be awesome if once the code is copied to the clipboard it could mark the message as read, so it clears from Notification Center and such.

Perhaps the logic is, once copied, wait 1min, then mark as read? Perhaps it is a setting people could enable/disable?

Please add support for the following message:

From ***: For your payment of $2000.00 to ***** your OnlineCode is 415064. If you did not request this payment, call us on ******.