[coldpizza]

So the main complaint about SPP is that it screws password managers, but then there's this:

> Most password managers erase the clipboard as soon as they have pasted your password into the website, and some avoid the clipboard completely by typing in the password with a 'virtual keyboard' instead.

Isn't the latter approach much safer? If so, shouldn't it be the de facto standard since it prevents "clipboard stealing" and also removes the issue of not being able to paste content into an SPP form input?

[jhasse]

Allowing apps to create virtual keyboards with which they may manipulate all other apps might not be a good idea. That's why it won't work with Wayland for example.

[ben_jones]

I mean your password manager already has all your passwords. The argument can be made that you can trust the man who already has a knife to your throat.

[jhasse]

True, I trust my password manager. But having the ability to create virtual keyboards at all might be a risk for the apps I don't trust.