I’m picking up a new Google Pixel and want to put GrapheneOS on it. Heard about Graphene since before their splits at CopperHead, but I havent had the chance the try the OS out. So I searched around and GrapheneOS allowed Google Play sandbox.
Does this function similar to a “Private Space” on newer Android or “Secure Folder” on Samsung? So I can enjoy the Graphene stuff but whenever I need Google Play specific apps, I use the sandbox environment?
Mostly, I will be using bank apps under the sandbox. Are there problems with OTP in this environment? In Samsung’s Secure Folder, my bank app will have problems sending OTP unless I send it outside, i.e. out of Secure Folder.
While you can setup a second profile to put the Google services into, I don’t recommend it.
The version of Google Services on GrapheneOS thinks it has root, but it does not.
So there’s no dramatic need to setup a second profile, unless you want it for other reasons.
I personally think the second profile feature is one of the things people think they want/need from GrapheneOS, but really are happier without.
(Sure it’s safer, but GrapheneOS is already so much better than other mobile OSes - and I hate to see someone quit GrapheneOS just because they didn’t like the optional profiles.)
An exception I have seen is for apps mandated for a job. I’m happy to bury that stuff deep.
The opposite happened for me. Separating out Google services to another profile made me realize how little I need to interact with Google Play Services to use my phone on a daily basis.