[Feature]: Require PIN for payments for transfers made with Manual Setup flow #2298

catch-21 · 2024-10-09T06:08:40Z

Describe the problem

With 'Require PIN for payments' enabled, only regular payments are protected. Now we have the option to send onchain to any LN node (not just Blocktank), it is possible for a malicious actor to use their own LN node to extract funds from the bitkit wallet because this action it not PIN protected.

Describe the solution

It would be good to protect the payment step of the Manual Setup flow with the PIN/Biometric when this setting is enabled. Alternatively, we could add an separate toggle but that is adding to complexity.

Additional context

No response

catch-21 added enhancement New feature or request feature request A user has an idea for the app labels Oct 9, 2024

catch-21 changed the title ~~[Feature]: Require PIN for payments cover transfers with Manual Setup~~ [Feature]: Require PIN for payments for transfers made with Manual Setup flow Oct 9, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Feature]: Require PIN for payments for transfers made with Manual Setup flow #2298

[Feature]: Require PIN for payments for transfers made with Manual Setup flow #2298

catch-21 commented Oct 9, 2024

[Feature]: Require PIN for payments for transfers made with Manual Setup flow #2298

[Feature]: Require PIN for payments for transfers made with Manual Setup flow #2298

Comments

catch-21 commented Oct 9, 2024

Describe the problem

Describe the solution

Additional context