Dashlane and Google Establish New Open Source API Project to Enable Simple, Secure App Logins for Android Users

Dashlane & Google - OpenYolo Graphic 2

Today, we’re very excited to announce a very special open-source project that we’re working on with Google to enhance and simplify your security! Dashlane and Google, along with other leading password managers are collaboratively developing “Open YOLO” (You Only Login Once)–an open API for App Developers that will give Android apps the ability to access passwords stored in your favorite password manager, and effortlessly and securely log you into those applications!

At Dashlane, we know that strong passwords are your first line of defense against harmful data breaches and cyber-attacks. As headlines continue to be flooded with news of colossal data breaches and user passwords sold on the Dark Web, Google has taken notice of the tens of millions of consumers and businesses turning to password managers not only to protect their passwords and personal data but also to perform fast, secure account login on various devices.

To stay one-step ahead of the market demand, Google and Dashlane are helping create a seamless, universally-acceptable Android app authentication solution to increase your online security.

Our Development team believes that open source security projects make it easier for users to protect themselves online by giving them simple security options that work on a variety of platforms.  Earlier this year, for example, Dashlane became the first password manager to support the FIDO Alliance’s Universal Second Factor (U2F) authentication standard.

Dashlane is spearheading the collaboration with other top password management companies, who will contribute their unique security and software development expertise to improve the design and implementation of this open API. We’re excited to cooperate on an open solution that puts the user’s experience first when they choose how to manage secure logins.

This project is the first big step towards making security simple and accessible for every user, on every device. In the future, we see this open API going beyond just Android devices, and becoming universally-implemented by apps and password managers across every platform and operating system. Ultimately, we look forward to expanding this collaborative project, so that it will benefit the entire security ecosystem as a whole.

We’ll have much more information for users and App Developers coming soon. Make sure to follow us on Twitter (@Dashlane) and “Like” our Facebook page for the latest updates on this open API.

  • Ryan G

    Wow that would be amazing I love utilizing Dashlane on the desktop but the Android app experience could be improved. With this system hopefully all I need is my fingerprint and I can login to my apps with ease.

    • Hey Ryan!

      The possibilities are endless with this API! As a password manager striving to create a “frictionless Internet”, we hope this project will add both convenience and security to the Android app experience. 🙂

      Stay tuned!

      Best,

      Malaika

  • Antonio S

    I could never willing use an API with the acronym “YOLO” in it.

    • Hi Antonio,

      We appreciate the feedback. Our team has deliberated on an official name for quite some time, but everyone really liked the name “Open YOLO” (You Only Login Once). I think Drake would even give his stamp of approval. 🙂

      Best,

      Malaika

      • Antonio S

        My joke aside, sounds like a wonderful tool, thanks much!

  • bufke

    What exactly does “open source API” mean here? Can I build a password app myself and use this without going through Dashlane?

    • Hi there!

      Good question! To answer your first question, “Open source API” here means that Android app developers will be able to access a public repository with code that will allow their app to communicate with a password manager to seamless login a user. Secondly, this announcement doesn’t mean you’ll be able to build a password app yourself. And finally, this is not limited to Dashlane’s Password Manager, and should be compatible with any password management solution of your choice.

      Hope this answers your question! 🙂

      Best,

      Malaika

      • bufke

        Thanks for the fast response Malaika! “this announcement doesn’t mean you’ll be able to build a password app yourself.”

        I happen to be building an open source password manager app right now actually. Does this mean I’d be able to use the api or is this limited to Dashlane’s partners? My password management solution preference would of course be my app 🙂

        • No problem! 🙂

          Hmm. I don’t want to give you the wrong answer, so let me check on that with the Android team. Mind if I shoot them an email and get back to you with their answer?

          -Malaika

          • bufke

            No problem – thanks for taking the time!

          • I’m back!

            According to our lead Android Developer, the answer is yes! Once Open YOLO is made public, you’ll be able to fully utilize and contribute to our API. Also, in regards to your password manager app, you’ll be able to be queried by Android apps which implement the API.

            Open YOLO will be made public once our Development team, Google, and other contributors deem it stable.

            Does this answer your question?

            -Malaika

          • bufke

            Great thanks! I’ll certainly check it out once it’s released.

          • You’re welcome! I’ll make sure to update this post as well when it’s public. 🙂

  • Still no Linux support for Dashlane, how is it a viable option for a password manager?

    • Hi Alexandre!

      I’m very sorry Linux support hasn’t come sooner. At the moment, our Development team is focused on making necessary improvements to our current platforms, but before supporting other platforms.

      Since many of our developers use Linux themselves, we’d love to support Linux in the future.

      Again, sorry for the delay, but I sincerely hope you choose Dashlane as your go-to password manager. 🙂

      Best,

      Malaika

  • I notice that you mention other password manager companies are involved with this – I wonder if you could Enpass a nudge as they have been really good in the last year at keeping up with the latest features, like TOTP, Android Wear Support and Fingerprint support. I think they would be a really good choice for feedback on the API or even helping to shape it.

    • Hi Andy!

      Great suggestion! Although I don’t have an official list of the companies we’re collaborating with, it would be fantastic to work with Enpass and any company willing to contribute their time and expertise to this project. 🙂

      -Malaika

  • shrinathv

    This is great news. I know you’ve tried to have a solution to auto-login into apps on Android now, but it’s a little hit and miss. I’d love to see this baked into the app itself.

    • Hi there!

      Thank you! This is super exciting for us. But you made a great point! Auto-login with Android apps can be a bit hit or miss, but hopefully, this project will solve that problem, and be universally implemented for a majority of password managers and Android apps. 🙂

      -Malaika

  • lulumilk

    That’s great!! i love Dashlane app! i use Dashlane with my Android smartphone and Windows computer.

    • Thank you for supporting us! 🙂

      • lulumilk

        You’re welcome! i hope we will develop something for Smartwatches too 🙂

  • Iiss Ssii

    Interesting.

    Are there API docs anywhere?

    Also, is there a mechanism for one app to inject new creds for another app? For example, app A changed the user’s password on service S. It wants to inject the new password for S into the Android vault, so the user doesn’t have to. Is that possible? Roadmap?

    • Hi there!

      To answer your first question, since the API is not fully stable yet, the API docs are not published publicly yet. However, I’ll make sure to update this post with those materials when they are available.

      I’ll also check with our Android development team for a better answer for your second question. I just sent them an email and I’ll make sure to share their reply.

      Thanks for asking these great questions!

      Malaika

      • Hi liss!

        I asked the Android team about your second question! In short, the answer is that the first version of this API will not have a mechanism for one app to inject new credentials for another app. However, there’s always the possibility of having it in future versions. 🙂

        I hope this helps answer your question!

        Best,

        Malaika

  • IJK

    The article is almost content-free – most of it is just fluff and marketspeak. Based on it, the only conclusion is that Dashlane and Google are pushing vaporware here.

    • Hi IJK,

      Thanks for the feedback. Our developers have been working on this project for months and we’re extremely proud of the work they’ve done, and wanted to share the news with the world as soon as we possibly could. 🙂

      As I briefly mention in another comment below, developers at Dashlane, Google, and other collaborating password managers want to be 100% sure that this API is stable before making it available to the public. As soon as it’s ready, I’ll make sure to update this post with more information.

      Best,

      Malaika

  • Craig Laparo

    It should be “YOLIO” since “log in” should not be a single word when used as a verb.

    • Hi Craig,

      Thanks for your input! Maybe we’ll change the name in future versions, but for now, the OpenYOLO name has grown on us 🙂 .

      Thanks,

      Malaika

  • Thomas Bohn

    Does this mean I could access my passwords from Chrome for any website (if Chrome supports this API)?

    • Hi Thomas!

      Great question! If Chrome supports OpenYOLO–which it may or may not do in the future–then yes, an app using this APIwould be able to access your credentials from Chrome.

      I hope this helps!

      Best,

      Malaika

  • Gareth Davies

    How is this different to logging in with Google login?

    • Hi Gareth!

      This is pretty different from logging in with Google login. The simple answer is that this API will allow users that use password managers and to access Chrome in the same way, however it would allow users with password managers to have Smartlock access those password managers.

      I hope this answers your question! 😉

      Best,

      Malaika

  • Karan Valecha

    Reading this article I am excited to use it as my password manager… Downloading it right now… And would love to contribute u guys in any way I can…

    • Hi Karan!

      I’m super happy you’re excited about this, and we’d love to have you contribute to this project! We’re still waiting on a stable version to published, but I’ll make sure to update this post with all of that information as soon as possible.

      Can’t wait to see your contributions! 🙂

      Best,

      Malaika

  • streetweeters

    Awesome, anything I can do to help please let me know. The new frontier of IoT. I am in. Where can beta be obtained?

    • Hi there! My sincerest apologies for the delayed response. The beta version hasn’t been released yet. Since it’s a collaborative effort between Dashlane, Google, and a host of other password management contributors, there’s no set release date at this time.

      However, when we have more information about a public release, I’ll make sure to update you personally. 🙂

      Best,

      Malaika

  • Joe

    When will this be available to the public?

    • Hi Joe!

      Quite frankly, we don’t know yet. Since this is a collaborative effort between Dashlane, Google, and several other password management collaborators, we don’t have a solid release date at this time.

      However, as soon as I have more information about a potential release date, I’ll make sure to follow up with you about that information. 🙂

      Sorry about the delay in the meantime!

      Best,

      Malaika