Starting in August, installing APKs from unverified developers will require a new procedure called Advanced Flow. It involves enabling developer mode, rebooting the device, and waiting 24 hours with biometric verification.
After that, you choose: allow the APK installation for 7 days or indefinitely. The procedure is a one-time process and applies to all versions of Android.
Will the 24-hour wait stop you from installing APKs outside the store?
My mom’s phone is filled with so much adware from the damn sponsored apps in Googleplay she can barely use the phone unless I wipe it every three months.
When I checked the security, it was still set to not allow unverified apps and yet…
If Google actually cared about security they ought to stop Samsung from automatically installing TEMU and Candy Crush in their random “updates”. It installs that shit whether or not you remove the check marks. The “updates” contain no further updates.
It’s nice that an American company will enforce a 24-hour cooling-off period for the installation of a few 1s and 0s on a device I already own.
They wouldn’t do this for the purchase of a firearm.
This biting satirical take is brought to you by a disillusioned Android user seriously thinking about switching to an iPhone. If a walled garden is inevitable I might as well go where most stuff gets developed for first.
I have to admit I’m in the same boat, ive been on android for 15 years, but if they take away Graphene Im just switching to iPhone, at least then I won’t get complaints from friends and family about lack of Imessage.
For myself I wouldn’t be going to Iphone, but I am going to make sure any phone I buy will have the option of installing LineageOS or another rom from now on.
It is still going to affect us indirectly. The problem is that Google is demanding developers to go through KYC even if they are not distributing their app through the Play Store. Not going through with it means nobody with a stock device will be able to install their app, unless they do that crazy workaround Google claims is going to implement.
This means open source app developers will be called to choose between doxing themselves to Google, or keep developing for us, the 0.01% who is on custom ROMs. It’s not hard to imagine that many will just decide to move on and invest their time on doing something else.
Right, honestly forgot about that. Not something I use personally, but hear a lot of buzz about. Anyhow, could a good thing be then to support companies like Fairphone, who sells their phones with e/OS/ already installed? I’ll try and recommend it to my friends, if that is the case.
GraphenOS is supported only by Pixel. So we’re waiting for a port to other devices! Although I think it’s impossible, since only Pixel has a security chip.
Do you have to go through this procedure for every APK or just once?
If it’s for every side loaded app, does this include updates of already installed APKs?
That would make the system actual more insecure
As far as I understand, this is done for every application installed. Every time. And it seems that the certificates are not unlimited and they will have to be renewed.
From what I’m reading it sounds like it is not per-app:
Once you confirm you understand the risks, you’re all set to install apps from unverified developers, with the option of enabling for 7 days or indefinitely. For safety, you’ll still see a warning that the app is from an unverified developer, but you can just tap “Install Anyway.”
Not that this makes it ok, this process is still something the vast majority of users will not do in practice and will kill the viability of apps with developers unwilling to show ID to Google.
Wanna give a source for that? Everything I read said that after the 24 hour scare screen, you could optionally enable third party installation permanently. Literally nothing about certificates expiring. Where are you even getting this from?
That’s what I’m actually afraid of
Hopefully Linux can soon step up and fill the gap.
On a site note:
I’ve pre-ordered the new jolla phone in hopes to have pretty much a Linux phone with Android app compatibility layer.
But since my pre-order I haven’t heard anything about it anymore and I can’t find a blog/news page providing any information about progress or something.
Maybe people in this thread are similarly inclined to Linux phones and have a link for me…?
I’ve already sent a mail to Jolla about that - but just today…
I pre ordered the new jolla phone, but since then I haven’t heard anything.
Hopefully this will give me a phone with Linux and Android app compatibility layer, until there is more competition in this sector
Lol of fucking course apple is a walled garden. This move literally is an apple idea getting copied to Android. If apple hadn’t set this shitty example, showing it can be gotten away with, maybe Google would not have.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
DROID DOES
Welcome to the Android community on Lemmy. Here you can participate in amazing discussions and events relating to all things Android.
5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.
6. Memes are not allowed to be posts, but are allowed in the comments.
7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.
8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.
If only the procedure was the same for their own store… there’s soo much crappy adware there.
My mom’s phone is filled with so much adware from the damn sponsored apps in Googleplay she can barely use the phone unless I wipe it every three months.
When I checked the security, it was still set to not allow unverified apps and yet…
If Google actually cared about security they ought to stop Samsung from automatically installing TEMU and Candy Crush in their random “updates”. It installs that shit whether or not you remove the check marks. The “updates” contain no further updates.
I am angry that this outcome makes me happy.
It’s nice that an American company will enforce a 24-hour cooling-off period for the installation of a few 1s and 0s on a device I already own.
They wouldn’t do this for the purchase of a firearm.
This biting satirical take is brought to you by a disillusioned Android user seriously thinking about switching to an iPhone. If a walled garden is inevitable I might as well go where most stuff gets developed for first.
The comment about the firearm comparison really got me. That is so fucking true.
A little more than 1/4 of states (14) have a mandatory waiting period for buying guns ranging from 3 days to 30 days.
That’s still 36 states too many without.
It seems that’s less true than we had thought.
I have to admit I’m in the same boat, ive been on android for 15 years, but if they take away Graphene Im just switching to iPhone, at least then I won’t get complaints from friends and family about lack of Imessage.
For myself I wouldn’t be going to Iphone, but I am going to make sure any phone I buy will have the option of installing LineageOS or another rom from now on.
That depends on the state. Some do require waiting periods for buying guns.
Do they require waiting times after you attached a flashlight or switched to a bigger magazine, though?
Because that is what Google is doing here - enacting limitations / hurdles for phones that were already sold.
PSA: GrapheneOS is not affected by this, one of many good reasons to use it.
It is still going to affect us indirectly. The problem is that Google is demanding developers to go through KYC even if they are not distributing their app through the Play Store. Not going through with it means nobody with a stock device will be able to install their app, unless they do that crazy workaround Google claims is going to implement.
This means open source app developers will be called to choose between doxing themselves to Google, or keep developing for us, the 0.01% who is on custom ROMs. It’s not hard to imagine that many will just decide to move on and invest their time on doing something else.
https://keepandroidopen.org/
Will other custom ROMs still allow for sideloading? Like PostmarketOS, e/OS/, LineageOS etc.?
Yes, custom ROMs are not affected, this is just Google bullshit.
Yes, and PostmarketOS isn’t even Android
Right, honestly forgot about that. Not something I use personally, but hear a lot of buzz about. Anyhow, could a good thing be then to support companies like Fairphone, who sells their phones with e/OS/ already installed? I’ll try and recommend it to my friends, if that is the case.
GraphenOS is supported only by Pixel. So we’re waiting for a port to other devices! Although I think it’s impossible, since only Pixel has a security chip.
https://www.androidauthority.com/grapheneos-motorola-partnership-announced-3645710/
Oh, that’s pretty cool. I think I’ll consider switching to GrapheneOS in the coming months.
Do you have to go through this procedure for every APK or just once?
If it’s for every side loaded app, does this include updates of already installed APKs? That would make the system actual more insecure
Just once. Then you can install whatever you want
As far as I understand, this is done for every application installed. Every time. And it seems that the certificates are not unlimited and they will have to be renewed.
A similar system is already present on iOS.
From what I’m reading it sounds like it is not per-app:
https://android-developers.googleblog.com/2026/03/android-developer-verification.html
Not that this makes it ok, this process is still something the vast majority of users will not do in practice and will kill the viability of apps with developers unwilling to show ID to Google.
Wanna give a source for that? Everything I read said that after the 24 hour scare screen, you could optionally enable third party installation permanently. Literally nothing about certificates expiring. Where are you even getting this from?
That’s what I’m actually afraid of
Hopefully Linux can soon step up and fill the gap.
On a site note:
I’ve pre-ordered the new jolla phone in hopes to have pretty much a Linux phone with Android app compatibility layer.
But since my pre-order I haven’t heard anything about it anymore and I can’t find a blog/news page providing any information about progress or something.
Maybe people in this thread are similarly inclined to Linux phones and have a link for me…?
I’ve already sent a mail to Jolla about that - but just today…
If it’s like existing hurdles, once, like enabling developer mode. I don’t think updates or subsequent apps will require more hoops.
I don’t think so either, but at the current level off stupidity all around, I would like to have something at face value
Time to bite the bullet and move the phone to Linux as well.
I pre ordered the new jolla phone, but since then I haven’t heard anything.
Hopefully this will give me a phone with Linux and Android app compatibility layer, until there is more competition in this sector
Or you just turn off system updates and keep using the flow you have now.
Would that not get rid of security updates as well?
Advanced flow sounds like a naturopathic prostate therapy.
Whelp, looks like I’m spending my PTO week installing a new OS in my pixel and trying to make bank/payment shit work.
“bUt aPpLE is a WaLLeD gArdeN!!”
Lol of fucking course apple is a walled garden. This move literally is an apple idea getting copied to Android. If apple hadn’t set this shitty example, showing it can be gotten away with, maybe Google would not have.
Yes, and android now too. Unless you have a device with an older rom.
It is. And still worse in this regard.
How many days does Apple make you wait?
Not even possible, there is no appstore like F-Droid on iOS.
Yes that was the point, thank you.