Hey there!
Announcing a new add-on, AnkiPassword!
I have been working on this add-on for a few months, and now i finally got the code done. It works like a charm! Try it, and protect your Anki from creeps!! There might be bugs, so be sure to comment on the add-on page itself. I will be sure to get back.
AnkiPassword - Protect your Anki from creeps​
- AnkiWeb
This is silly. No one needs this.
What’s the point of having password protection –
- when it’s in an add-on that can easily be disabled, or even deleted, from outside the app?
- when it only affects the app window, but all of your collection data is easily accessible in your
Anki2folder? - when you could just lock your device and have it be more secure?
Hey… it just for minimal access, like when someone shares a device or something. I know, it isn’t perfect, but still can come in handy!
If the password stops the app from opening, won’t that get in the way of multiple folks on the shared device using Anki?
There’s already a way to silo your collections from each other on a shared device (profiles, startup options, shortcuts). But if you can’t trust the person you’re sharing a device (and a user account?) with from doing something bad to your collection, you probably shouldn’t share a device with them.
IMO the password feature is useful for some Anki users. e.g. the number of iOS users who cannot afford to buy a laptop and AnkiMobile has been increasing recently, because the secondhand market for iPhones is expanding. They cannot download decks shared on AnkiWeb, nor can they add media files. One workaround for this problem is to share and use Anki on a laptop with family or friends (or school). So if you’re using a family laptop or no one else is using Anki a password can help protect your privacy, most users probably don’t like being monitored by their parents or friends.
Passwords in add-on files are not encrypted and can be decrypted but only advanced users are capable of doing so. In my experience typical add-on users cannot edit the meta.json file directly and it is difficult for them to manipulate configuration settings that lack a user interface, so the likelihood that non developers, such as the general public or students will be able to decrypt these passwords is relatively low. Typical Anki card data is not confidential and does not require strong security so this is sufficient if users are simply concerned about privacy.
Others, if I remember correctly the author of Ankimon is developing a tool to encrypt decks and school staff may be looking for ways to protect copyrighted decks using DRM, some add-ons also use paid APIs for TTS and card generation. So I think add-ons that use passwords are an interesting feature for these purposes and for basic protection. Since add-ons are open source, even if they aren’t directly related their encryption and password generation mechanisms can be used as a reference for development.