Hi, I would like to clarify what ADP really means in relation to Bear and its upcoming Web access.
I have had ADP enabled since it became available. Both on my iPhone and Mac.
Now, for Bear Web, the beta intro post says that ADP needs to be disabled otherwise my access will not work. But my Bear Web is working, syncing and looks fully usable.
That said, I’m scared to use Bear Web because I don’t want to lose my data, so I’m looking for clarification how this is all supposed to be working, whether I’m doing something anomalous or potentially dangerous and what really is the requirement or recommendation towards ADP.
Update: I’ve checked the Web app and it seems like the web interface broke for me after all, when I click on notes, they show up empty, and it kind of screws up the notes in my desktop/mobile app, so I’ve gotten to a sort of broken state. Not sure if this is because of ADP or because of using the 2.4 beta which includes sync breaking changes.
I want to mention that bear web does work for me with ADP if I sign in on a machine that’s logged in to my icloud account using say, firefox.
/edit just randomly tried again using firefox on linux and it worked. I’m using bear web with ADP enabled. It did take a few tries before working however.
Alright here’s the trick. Not sure exactly which step is working but..
Sign in to icloud on a browser, open the notes app, you’ll get a pop up on your phone asking if you want to grant icloud web temporary access to your data. click yes.
Keep a laptop nearby, turned on and signed in to your icloud account.
Open a second tab, log in to bear. Respond to MFA prompt on the laptop/desktop, when you get the 6 digit code wait 30 seconds before entering it. And hopefully that works.
I have no idea why this works but it does. I can create, edit and delete notes now on linux. If I shutdown my companion laptop I can still work in bear so maybe that step isn’t necessary at all.
Actually not the case - Bear stores notes in CloudKit (which is separate from iCloud Drive). ADP does apply to all apple native services, but CloudKit requires a toggle in the database, which is why Bear doesn’t currently have ADP support in its public releases.
The 2.4 Beta has the ADP toggle available, but notes will only become ADP encrypted after toggling the feature, and then either editing an existing note, or creating a new one (all untouched will remain not encrypted by ADP).
Sounds like you haven’t updated to the new beta + toggled ADP then either, so I guess the only difference between your situation and mine is the TOTP vs. Passkey.
Anyone else with ADP enabled on their Apple account, using TOTP for 2FA, able to test this solution as well?
No worries the 2.4 beta enables ADP support within bear, but that is still not supported in bear web at this stage (I believe I saw a comment mentioning support possible after the full release of both though)
Given that Apple is able to allow temporary web access to ADP encrypted data in the web app (e.g. Apple Notes) is there an API that you’re able to consume to allow for similar behaviour?
I assume there are just so many edge cases with this haha. We can only hope we get something good in June!
the 2.4 beta enables ADP support within bear, but that is still not supported in bear web at this stage (I believe I saw a comment mentioning support possible after the full release of both though)