Under Windows, it is possible to directly access the default mail client from various context menus, like right clicking a file -> Send To -> Mail recipient.
This is made possible by providing a dll that implements a set of functions from a Office SDK header (MAPI.h) and putting a path to that dll into the registry:
Tutanota Desktop should provide such a DLL to improve OS integration on Windows. A simple wrapper that passes the relevant information to a new Tutanota process via CLI arguments should be enough, since Tutanota currently handles all CLI arguments, even those of processes that were killed due to the single-instance lock.
The mapi header docs: https://docs.microsoft.com/en-us/windows/win32/api/mapi/
The Implementation used by Thunderbird: https://hg.mozilla.org/comm-central/file/tip/mailnews/mapi/mapiDll
Download of the header Sources: https://www.microsoft.com/en-us/download/details.aspx?id=12905
As a user i want to be able to access my mailbox when there is no or just a poor internet connection available (e.g. travelling). I need to have access to my emails, contacts and calendar entries so i can at least read the content.
After log in to my mailbox i currently have to wait each time in every view until the progress spinner is completed to see the content. I expect that the content that i have accessed before is visible right after login without any larger delays.
When i am online again or if i log in with an internet connection there should be a non blocking indicator that the content of my mailbox is synchronized with the server.
For detailed description and discussion see the wiki page for offline storage (/pages/viewpage.action?pageId=38898504 )
As a user of the Tutanota mobile or desktop app i want to be able to protect my stored credentials with the PIN/fingerprint of my device. If i choose "Store credentials" from the login screen the app should display options of how to secure my stored credentials. The option should be used for all further stored credentials. The selection can later be changed in the settings.
Every time i need to access the stored credentials the app should ask for the chosen option.
We currently use the local storage of the web view to store the credentials. It is the same mechanism that is used for the web browser. We want to change the storage location to the secure storage of the device which is already used to store the device keys that are used to decrypt calendar event reminder notifications.
With this issue we will not automatically lock the application. We will protect how the saved credentials are stored on the device by encrypting them with a device key. The device key should be stored in the secure storage of the device. We will not have direct access to that key but instead we need to ask the system to decrypt the credentials.
When setting up the this for the first time the user should have the following options:
Every time user needs to access the credentials we will ask for authentication.This is the case when:
Together with @charlag @rosso-ptg @bedhub we discussed if it is acceptable to ask for authentication again upon delete or logout because it might be ask too often. We decided that it is acceptable for now.
We will do biometrics/pin protection for mobile apps only. For desktop clients we will store the key to decrypt credentials in the keychain of the system. Which usually will be unlocked when user logs in.
We decided that we will use intermediate key in encryption chain which can do multiple operations. This will allow us to do multiple operations on multiple credentials. Keeping it in memory for a short time has almost no effect on security but improves user experience a lot.
I have a linked FIDO U2F security key to Tutanota.
I expect to be able to use that token for 2FA in the android application when logging in.
Right now, the Sender Name is set at account level. If we happen to have an alias where we don't want to expose that name –for any reason(s)-, there is no way we can do that – or yes, there is: changing the account's Sender Name back and forth...really not an option.
This is one of the most important things that are currently missing in the service.
Gmail has conversation view.
RoundCube has had a ticket open on this for 9 years so who knows when they
will implement this, if ever. Please add conversation view so I can dump Gmail
As administrator I can create and delete shared team calendars. I can assign and remove users of my account to them without invitations. I can invite users outside my account with group invitations.
I want to put the Tutanota calendar to my homescreen.
I want to use my contacts from the dialer app
Allow grouping recipients to send an email to all of them.
As a Tutanota user i still want to be able to do certain write operation while i am using the Tutanota application in offline mode These action should get synchronized after i am online again. Such actions are:
Disposable e-mail addresses are a randomly generated string of characters that are used to create a unique alternate e-mail address:
The difference between regular e-mail aliases and disposable ones is that the latter are intended to be temporary, for instance, you can use them for a short-term purpose before deleting the address to prevent your real address from being sold and added to Spam lists.
description field (or something similar), along with the e-mail address itself is a nice-to-have in order to associate/know the service or Web site in question.
Disposable e-mail addresses are just for receiving e-mail – they should not be used to send e-mails.
It's important to emphasize that this is completely different from the usual disposable e-mail address services one can find out there.
I'm new in tutanota but the first thing I looked for in the UX is the ability to tag/label my mails.
It is a very simple and powerful feature, superior to folders as many tags could be applied to an email when only one folder could be associated with it.
I think you should consider this feature as it will dramatically enhance the user experience and it's relatively simple to implement.
As evidenced on Tutanota's own blog, the organization is pro-privacy and pro-Tor/VPN usage - and thank god for that!
In order to further protect Tor users (who by definition value privacy more), how about setting up an onion address to access the webmail at, in parallel to the clearnet site?
This approach is used by, among others, ProtonMail, ProPublica, The NYT, etc.
If feeling ambitious, why not make it a nextgen onion address? :)