recently I found out that airtel app installed in secure folder with given no permissions can access the otp generated outside the secure folder .If it has an access to apps outside my secure folder ,what's the use of secure folder .
I do get it you can hide things from people who use your phone by enabling and keeping things in here but we expect that apps that are inside the folder should not be able to access the apps outside this folder .
Also isn't it dangerous that even if I had given no permission to airtel app ,it was able to access my messaging app .
Hmm ,let me see this documentation BTW it does not happen with WhatsApp .While you fill up ur phone number and wait for otp while it ask for permissions and u don't give any of those .WhatsApp will not be able to read ur otp automatically .Looks good on WhatsApp side. BTW Thanks for the documentation page . 🙂
I guess it depends on whether developers want to use the api or not. In China for example where phones don't have google play services they have to resort to using sms permission
