Database Users

ThrottleLock 0.3c security flaw

I loaded ThrottleLock 0.3c onto my Mogul today (since s2U2 is way to buggy right now on it) and I really like the concept and idea.
But I found a flaw in the application, the application name and the developer's name is in the lower left corner of the application when the lock is engaged.
I'm not against giving the developer credit, it is a VERY good app, but this flaw seems to defeat the point of having a challenge lock on your phone.
Since anybody can find/steal my phone, know what application is locking it (since its on the lock app) & who made it, run a Google search, easily end up on this forum or emailing the developer, and pretend to be the legit owner of a phone who simply forgot how his/her lock pattern.
Then all the nice, helpful, and trusting people here would tell them how to reset the pattern using a usb connector and a computer.

Tenchi4U said:
I loaded ThrottleLock 0.3c onto my Mogul today (since s2U2 is way to buggy right now on it) and I really like the concept and idea.
But I found a flaw in the application, the application name and the developer's name is in the lower left corner of the application when the lock is engaged.
I'm not against giving the developer credit, it is a VERY good app, but this flaw seems to defeat the point of having a challenge lock on your phone.
Since anybody can find/steal my phone, know what application is locking it (since its on the lock app) & who made it, run a Google search, easily end up on this forum or emailing the developer, and pretend to be the legit owner of a phone who simply forgot how his/her lock pattern.
Then all the nice, helpful, and trusting people here would tell them how to reset the pattern using a usb connector and a computer.
Click to expand...
Click to collapse
I don't really think the concept is to keep people out of the phone. I think it is to keep the buttons from not getting pressed. I don't think its a smart idea to bank your protection on a series of dots, or "slide to unlock" where there might be a few people in my office baffled, by "slide to unlock" it just does not seem like it will keep people out.
I think the reasoning for branding the software is because there are a lot of bad people out there that are trying to sell our awesome devs software. They need to mark it, we have almost lost many programs because of this data theft.

"security trough obscurity" is a very bad method. Throttle lock should be safe even if you know the program and if not, hiding the program name isn't the right method to get it safer

I'd suggest using some other locking program if your worried about security. Like the default windows pin one. Correct me if i'm wrong but i don't think throttle lock was made to secure the device but more for a new, more interactive/user friendly way to have a keyguard.
dwizzy130

This wasn't worth making a new thread for.
Don't post any further comments in this thread.
Continue here.

double post

Latest PhoneAlarm beta gives email notification for emails

yup..that's correct, I have my little notification LED flashing when I have an email now..
you need PhoneAlarm (which I simple cannot live without and is ALWAYS the very first thing I install on my device)
so..I'm sure this tweak will be appearing in cooked roms soon

Hooooray for Penguin (the developer) for jumping on this!

twisted-pixel said:
yup..that's correct, I have my little notification LED flashing when I have an email now..
you need PhoneAlarm (which I simple cannot live without and is ALWAYS the very first thing I install on my device)
so..I'm sure this tweak will be appearing in cooked roms soon
Click to expand...
Click to collapse
How does this integrate with the HTC Sense user interface?

thegios said:
How does this integrate with the HTC Sense user interface?
Click to expand...
Click to collapse
you have to run it in Host mode
I don't use Sense, so can't say how well it works though.

twisted-pixel said:
you have to run it in Host mode
I don't use Sense, so can't say how well it works though.
Click to expand...
Click to collapse
Host mode works great. To further enhance this, there is now a tweak on his forum to allow you to replace the network operators name with the current profile. Clicking on this will launch PA Host.
QUESTION:
Have you had to set "use broker" for alarms to get the email notification to work. Without this option set, i only get the notification when i wake up the device. I'm guessing its due to using a custom rom (pandora 1.3). Using the broker option does solve the issue.

twisted-pixel said:
you have to run it in Host mode
Click to expand...
Click to collapse
is this an option of the application?

thegios said:
is this an option of the application?
Click to expand...
Click to collapse
more like a stand alone way of running the app

thegios said:
is this an option of the application?
Click to expand...
Click to collapse
yes. Host mode is used when you do not have the today screen active - ie when running manila. Host mode will be enabled by default on the HD2 and an icon will appear in the top bar. This can be hidden and a shortcut used to open phonealarm if you prefer.
Its a great app with many options including data counter, call costs, automatic profile changes etc etc

ardsar said:
yes. Host mode is used when you do not have the today screen active - ie when running manila. Host mode will be enabled by default on the HD2 and an icon will appear in the top bar. This can be hidden and a shortcut used to open phonealarm if you prefer.
Its a great app with many options including data counter, call costs, automatic profile changes etc etc
Click to expand...
Click to collapse
Thanks, one more: will it work INSTEAD OF the WM alarms function or will it have it's own handler?
I mean: if I set an alarms in this app, will it be set also in the WM alarms or does the app handle alarms in a completely different way (and this latter case, should I disable WM default alarms?)

I was very interested in this app until I saw the price. Why is so much stuff so expensive for windows phones? I had the iphone before and hardly had to pay for anything I wanted, and if I did it would be less then £1.00

snerkler said:
I was very interested in this app until I saw the price. Why is so much stuff so expensive for windows phones? I had the iphone before and hardly had to pay for anything I wanted, and if I did it would be less then £1.00
Click to expand...
Click to collapse
then go back to iphone...

thegios said:
then go back to iphone...
Click to expand...
Click to collapse
I wasn't dissing the HD2, it was just a genuine question as to why everything costs so much on windows phones as I don't understand? If one platform can give so much for free, or very cheap why not another? Is it people trying to cash in, or is it down to something like the costs to develop the programs?

snerkler said:
I wasn't dissing the HD2, it was just a genuine question as to why everything costs so much on windows phones as I don't understand? If one platform can give so much for free, or very cheap why not another? Is it people trying to cash in, or is it down to something like the costs to develop the programs?
Click to expand...
Click to collapse
my guess: iphone apps are an hipe now so there are a lot more ppl downloading apps from apple store rather then wm apps, so developers can make more money by quantity rather than price...
In addition apple store cuts down a lot advertising costs as all iphone apps are in one single place, so developer does not need an extra effort (read: money) to advertise his app on too many websites/forums/etc)

thegios said:
my guess: iphone apps are an hipe now so there are a lot more ppl downloading apps from apple store rather then wm apps, so developers can make more money by quantity rather than price...
In addition apple store cuts down a lot advertising costs as all iphone apps are in one single place, so developer does not need an extra effort (read: money) to advertise his app on too many websites/forums/etc)
Click to expand...
Click to collapse
Ok, that makes sense. If that is the case then having a dedicated 'app' store should help bring the costs down. One day hopefully

thegios said:
Thanks, one more: will it work INSTEAD OF the WM alarms function or will it have it's own handler?
I mean: if I set an alarms in this app, will it be set also in the WM alarms or does the app handle alarms in a completely different way (and this latter case, should I disable WM default alarms?)
Click to expand...
Click to collapse
It is totally customisable. For instance you can select whether you want phonealarm to control email, sms, mms, im, missed calls etc notifcations or leave it to WM. Also it gives you the ability to set repeat alarms, again completely customisable for each alert. The alarm function is not tied to WM and therefore resolves many issues that others have faced.
There is a trial that can be downloaded - fully working for 14 days. Suggest you give it a test drive. It will take some time to become familiar with the many options. There are skins that can be used to make it look more flash - all the info is on the forum. The support from Bruce is excellent. I had an issue this morning with the latest beta and within 1 hour i had a fix for it!.

ardsar said:
It is totally customisable. For instance you can select whether you want phonealarm to control email, sms, mms, im, missed calls etc notifcations or leave it to WM. Also it gives you the ability to set repeat alarms, again completely customisable for each alert. The alarm function is not tied to WM and therefore resolves many issues that others have faced.
There is a trial that can be downloaded - fully working for 14 days. Suggest you give it a test drive. It will take some time to become familiar with the many options. There are skins that can be used to make it look more flash - all the info is on the forum. The support from Bruce is excellent. I had an issue this morning with the latest beta and within 1 hour i had a fix for it!.
Click to expand...
Click to collapse
I've read on a couple of forums that latest versions crash HD2: is this correct?

snerkler said:
Ok, that makes sense. If that is the case then having a dedicated 'app' store should help bring the costs down. One day hopefully
Click to expand...
Click to collapse
there is, but is simply sucks...
try OpnMarket
http://www.freewarepocketpc.net/ppc-download-opnmarket.html
similar to apple store for only freeware apps

For those who are interested in similar product, can try PhoneWeaver from SBSH or Phone Suite (or something like that) from SPB..

thegios said:
I've read on a couple of forums that latest versions crash HD2: is this correct?
Click to expand...
Click to collapse
I've never had any issues on my HD2.
Phone weaver doesn't have as many functions like call costs, data counter etc. i also found the profile options to be more limiting. Phonealarm gives u more for your money. However this is my opinion and others will have different views. try them and see ....

ardsar said:
...The alarm function is not tied to WM and therefore resolves many issues that others have faced.
Click to expand...
Click to collapse
Does this mean that if I set an alarm with PhoneAlarm at lets'say 8:30 on the manila main page the alarms box (on the right of to the date box, just below the clock/weather box) will display OFF instead of 8:30?

Why is there no SCREEN SHOT app in Android Market -- NONE except for rooted phones?

Is there some kind of technical limitation of Android that prevents this most rudimentary of features of a computing device with a screen?
I'm on my second Android phone (from Hero --> to new Desire) and after 5 years with Windows Mobile I not only have zero regrets, I just pity anyone still stuck on WM... but enough of that ... at least there are screen shot apps! I just don't get it at all. It can't be that nobody has asked for one. So, what is the limitation of Android that prevents something so simple as a screenshot to be generated?
Sign me,
Frustrated in San Francisco
Oh what the hell, while I am at it, I might as well show off svetius's newly available YOUTUBE embed code here at XDA -- which -- shhhhh!!!! --- it's a big secret, only I alone am supposed to know about it.
PHP:
[media=youtube]xxxxxxxxxx[/media]
where xxxxxxxxxx = the video file name in the URL after watch?v=

I don't think there is any technical problem, I think it just wasn't added to official API yet. Yes, I know it should.
And if you are in urgent need of doing some screenshots, then you could take quite awkward, but working for non-rooters, approach: take screenshots on your PC using Android SDK.

I agree it should be much easier to just take a simple screenshot. Where can we ask google to add this function?

DBBGBA said:
Where can we ask google to add this function?
Click to expand...
Click to collapse
You could star this issue:
http://code.google.com/p/android/issues/detail?id=6547

I don't know, wouldn't that be a pretty big security issue?
A screenshot app is good for nothing if you can only take screenshots of the app itself. So it has to have access to screen captures of any app.
Now I'd just write some service running in the background waiting for key presses and taking a picture every time. When you type in passwords, the default option is showing the letter for a small time.
That should be sufficient to get user passwords. I would not want software that can do this on my phone.

I know open home has a screenshot feature you enable by the camera button. Maybe someone can rip the code from there and make a separate app?

erronr said:
I know open home has a screenshot feature you enable by the camera button. Maybe someone can rip the code from there and make a separate app?
Click to expand...
Click to collapse
The home replacement apps only take screenshots of the home screen (OpenHome, dxTop).
You can easily use Droid Explorer on a Windows PC to do screenshots.

[Q] About forgot password (strange)

(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot

EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons

dibblebill said:
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons
Click to expand...
Click to collapse
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).

Rirere said:
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).
Click to expand...
Click to collapse
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App

dibblebill said:
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App
Click to expand...
Click to collapse
I mean, it's useful because if you flub a flash you can use a backup, but these recoveries are not secure and aren't designed to be.

EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:

bigmatty said:
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:
Click to expand...
Click to collapse
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.

Rirere said:
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.
Click to expand...
Click to collapse
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web

bigmatty said:
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web
Click to expand...
Click to collapse
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).

Rirere said:
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).
Click to expand...
Click to collapse
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...

bigmatty said:
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...
Click to expand...
Click to collapse
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.

Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
EDIT: Hmmm.... I see it requires "SMS" to install this on a device via Push - so I guess it NEEDS to be pre-loaded on a N10 if one wishes to use it to retrieve a lost N10, or even use it in this context! Now to decide if I install this or not...

bigmatty said:
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
Click to expand...
Click to collapse
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!

Rirere said:
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!
Click to expand...
Click to collapse
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?

bigmatty said:
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?
Click to expand...
Click to collapse
I like it a lot more, but I will admit I personally liked avast! better. Its uncertain future (plus a nice promotion) led me to jump ship to Cerberus. I'd have to play around with it a bit more to be sure though.

Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow

EX_RIVER said:
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow
Click to expand...
Click to collapse
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?

Rirere said:
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?
Click to expand...
Click to collapse
Mostly..........Photos and videos

EX_RIVER said:
Mostly..........Photos and videos
Click to expand...
Click to collapse
...do you have a Google+ account? Slash have you ever opened the app? If so, you might actually be in luck and your data should have been backed up to your Google+ (or PicasaWeb if you prefer).

ExtensibilityApp class in WP 8.1 Silverlight

Hi all,
If you've read the text that USED to exist here before, scratch that. Big Thanks to @Sunius1 for clarifying what I thought was a win. Due to this, I DID find something interesting in regards to the ExtensibilityApp class (Windows.Phone.System.LockscreenExtensibility.ExtensibilityApp). I happened to also find a hidden capability "ID_CAP_SHELL_DEVICE_LOCK_UI_API" (Seems to be a locked CAP because it only works on Emulator. I get a deployment error on my if I try including this capability). I suspected that these two worked together, but I wanted to make sure of this.
Before we get started, read through the documentation from this site: http://msdn.microsoft.com/en-us/lib...lockscreenextensibility.extensibilityapp.aspx.
We have the following methods:
BeginUnlock
EndUnlock
GetLockPinpadHeight
IsLockScreenApplicationRegistered
IsSystemOverlayApplicationRegistered
RaiseToastNotifications
RegisterLockScreenApplication
RegisterSystemOverlayApplication
UnregisterLockScreenApplication
UnregisterSystemOverlayApplication
EDIT: After the release of the Live Lock Screen app, my speculations about the ID_SHELL_CAP_DEVICE_UI_API capability and the ExtensibilityApp object were correct. Thanks to @jessenic for finding out a good bit of info on this with me.
It seems that in order to get this working, we have to add an Extension to the WMAppManifest.xml
<Extension ExtensionName="LockScreen_Application" ConsumerID="XXXXX" TaskID="_default" ExtraFile="Extensions\\LockAppExtension.xml" />
In the LockAppExtension.xml:
<?xml version="1.0"?>
<x:Extension xmlns:x="urn:LockApp">
<AppID>AppNameForLockScreen</AppID>
</x:Extension>
As usual, Microsoft doesn't really give us much in terms of documentation.. Probably because it isn't meant to be used by the normal developer Confirmed: For now we have to actually ask for permission in order to use the cap. As to whether we'll get that granted? Who knows....
All of these methods have no parameters at all, but I can almost guarantee this has to do with having an application that can control the lock screen.
This thread will be for efforts in breaking this open and seeing whether we can create lockscreen applications..
Homebrew Lockscreen Apps:
Lockscreen App by @-W_O_L_F-

There are actually two Windows.winmd files in Windows Phone SDK, one for Silverlight 8.1 apps and one for Jupiter 8.1 phone apps (located in C:\Program Files (x86)\Windows Phone Silverlight Kits\8.1\ and C:\Program Files (x86)\Windows Phone Kits\8.1\). There's only one the phone. And some APIs support only one app type (it's phone limitation it seems: faking .winmd file results in Platform::InvalidOperationException, saying you cannot use that API from this app type). That explains why the one on the phone has more APIs available than either of for single app type.
As for LockscreenExtensibility - it's documented, just not available for Jupiter apps:
http://msdn.microsoft.com/en-us/lib...ows.phone.system.lockscreenextensibility.aspx

Sunius1 said:
There are actually two Windows.winmd files in Windows Phone SDK, one for Silverlight 8.1 apps and one for Jupiter 8.1 phone apps (located in C:\Program Files (x86)\Windows Phone Silverlight Kits\8.1\ and C:\Program Files (x86)\Windows Phone Kits\8.1\). There's only one the phone. And some APIs support only one app type (it's phone limitation it seems: faking .winmd file results in Platform::InvalidOperationException, saying you cannot use that API from this app type). That explains why the one on the phone has more APIs available than either of for single app type.
As for LockscreenExtensibility - it's documented, just not available for Jupiter apps:
http://msdn.microsoft.com/en-us/lib...ows.phone.system.lockscreenextensibility.aspx
Click to expand...
Click to collapse
Well that is very good to know! Thanks for the clarification. The best part is that I was actually able to compile without receiving an error (somehow).

I found something that may be of use in order to get the LockscreenExtensibility working (I just tried on a Silverlight 8.1 app and got access denied).
<Capability Name= "ID_CAP_SHELL_DEVICE_LOCK_UI_API"/> <----. Can't be used OOTB
EDIT: I just tested this in the Emulator and it really IS the capability that the LockscreenExtensibility needs in order for it to work.

snickler said:
I found something that may be of use in order to get the LockscreenExtensibility working (I just tried on a Silverlight 8.1 app and got access denied).
<Capability Name= "ID_CAP_SHELL_DEVICE_LOCK_UI_API"/> <----. Can't be used OOTB
EDIT: I just tested this in the Emulator and it really IS the capability that the LockscreenExtensibility needs in order for it to work.
Click to expand...
Click to collapse
I assume this is the thing Rudy Hyun used to create the lockscreen app at Build?

TheInterframe said:
I assume this is the thing Rudy Hyun used to create the lockscreen app at Build?
Click to expand...
Click to collapse
I speculate that this is what he's using. I bet there's more going on that we have yet to figure out. It also could be that the base class EXISTS, but the full implementation isn't available yet. Who knows.

snickler said:
I speculate that this is what he's using. I bet there's more going on that we have yet to figure out. It also could be that the base class EXISTS, but the full implementation isn't available yet. Who knows.
Click to expand...
Click to collapse
Ah, Yes that makes sense. I wonder if there are any other "half-baked" API's in the SDK?
Edit: I Know it sounds stupid but honestly I think we should have a thread dedicated to finding odd API's (Just found one: Windows.Phone.System.SystemProtection, nothing terribly useful though)

TheInterframe said:
Ah, Yes that makes sense. I wonder if there are any other "half-baked" API's in the SDK?
Edit: I Know it sounds stupid but honestly I think we should have a thread dedicated to finding odd API's (Just found one: Windows.Phone.System.SystemProtection, nothing terribly useful though)
Click to expand...
Click to collapse
there are also some hidden APIs in the current SDK for 3D Touch-enabled Apps!
From WP Central:
Some of the features include APIs for gestures, side interactions and even heat maps.
Crazy stuff.
Believe it or not, some of these APIs for developers are in the current SDK, they're just not visible. What this mean though is developers will have access to this 3D Touch technology for their apps. It also means that Microsoft will have a small batch of third-party apps supporting this 3D Touch technology on launch day.
Click to expand...
Click to collapse
source: http://www.wpcentral.com/microsofts-next-flagship-windows-phone-november-3d-touch

Yea, even though those 3D touch APIs may be available, they're not particularly useful, as they require special hardware to work.

Sunius1 said:
Yea, even though those 3D touch APIs may be available, they're not particularly useful, as they require special hardware to work.
Click to expand...
Click to collapse
That is true. Sort of of a side question though, has anyone made a OEM account and looked over the API documentation there? There maybe some useful things we could learn about WP and maybe further a jailbreak for all WP devices....

TheInterframe said:
That is true. Sort of of a side question though, has anyone made a OEM account and looked over the API documentation there? There maybe some useful things we could learn about WP and maybe further a jailbreak for all WP devices....
Click to expand...
Click to collapse
API isn't much useful as long as you cant really use most of functions due to policies.

ultrashot said:
API isn't much useful as long as you cant really use most of functions due to policies.
Click to expand...
Click to collapse
Ah, Yes that makes sense....

http://www.wpcentral.com/joe-belfiore-announces-new-updates-sheds-details-lock-screen-app
Sounds like there will be a dev preview update to enable lockscreen functionality quite soon. Joe also mentioned keeping the lock screen in memory. So 512 MB devices won't get the functionality soon....

Good stuff. Another question: can apps show the action center? Because I want code an app to show notifications on lockscreen. Thanks

Marocco2 said:
Good stuff. Another question: can apps show the action center? Because I want code an app to show notifications on lockscreen. Thanks
Click to expand...
Click to collapse
something to force the volume/music control on the lock screen to automatically open would be really useful as well

Updated first post with some more data since the Live Lockscreen App debuted yesterday. There's more I didn't get into, but I want others to dig in and find out

I suppose we can only speculate how it works at this point, but if I had to guess, it goes like this:
1. You have 2 projects in your LockScreenApp solution, one for the application to register the lockscreen, and the second one for the actual lock screen application.
2. The former would use ExtensibilityApp APIs to register the the second one, coupled with the manifests so it's all "valid".
3. The second application is just a another app that is able to process input and draw whatever it wants on the screen. That would explain why there's a delay at it starting when you press lock screen button while the phone is sleeping (probably it's a time for .NET to startup? Direct3D app should be able to start much faster).
Although this is only speculation, I think this makes sense, because that's how background tasks work on Windows, at least. I wonder though, why Microsoft is not releasing the APIs to be used in public - are they afraid somebody will make a lockscreen application that will drain the battery fast or something?

Sunius1 said:
I suppose we can only speculate how it works at this point, but if I had to guess, it goes like this:
1. You have 2 projects in your LockScreenApp solution, one for the application to register the lockscreen, and the second one for the actual lock screen application.
2. The former would use ExtensibilityApp APIs to register the the second one, coupled with the manifests so it's all "valid".
3. The second application is just a another app that is able to process input and draw whatever it wants on the screen. That would explain why there's a delay at it starting when you press lock screen button while the phone is sleeping (probably it's a time for .NET to startup? Direct3D app should be able to start much faster).
Although this is only speculation, I think this makes sense, because that's how background tasks work on Windows, at least. I wonder though, why Microsoft is not releasing the APIs to be used in public - are they afraid somebody will make a lockscreen application that will drain the battery fast or something?
Click to expand...
Click to collapse
I don't think its that but most likely the fact that the API is un-optimized, some of the facts you stated (i.e. Slow start up, documentation is lacking) etc... The fact the OS needs to be updated to show a section telling the user what lock screen app has taken over (since the setting page doesn't now)
Edit: Remember what Joe said about keeping the lockscreen in memory and 512MB devices might not be supported for that reason? Yeah seems like they aren't doing that since you can see the resume time for the lo screen is wayyy to much

Sunius1 said:
I suppose we can only speculate how it works at this point, but if I had to guess, it goes like this:
1. You have 2 projects in your LockScreenApp solution, one for the application to register the lockscreen, and the second one for the actual lock screen application.
2. The former would use ExtensibilityApp APIs to register the the second one, coupled with the manifests so it's all "valid".
3. The second application is just a another app that is able to process input and draw whatever it wants on the screen. That would explain why there's a delay at it starting when you press lock screen button while the phone is sleeping (probably it's a time for .NET to startup? Direct3D app should be able to start much faster).
Although this is only speculation, I think this makes sense, because that's how background tasks work on Windows, at least. I wonder though, why Microsoft is not releasing the APIs to be used in public - are they afraid somebody will make a lockscreen application that will drain the battery fast or something?
Click to expand...
Click to collapse
You are correct. Two projects: One is the settings page, which is the main entrypoint of the app when it's opened from the start menu and the second one is the actual lockscreen app.
The settings page uses the ExtensibilityApp APIs to register the second one as a lock screen application. That second application is another 8.1 Silverlight app that uses a LockScreen_Bridge WinRT component that has native access to read what is shown on the lockscreen from the WP Settings item.
It then uses some storyboards to make it do different things as you're swiping up and down on the LayoutRoot grid. It does use a timer so that's where that little lag comes from.
The only background stuff it's doing is latching on to system events ("Start button being touched for example").
I can see where MS would be protective of this. They DID say that they would be releasing a public version of the API at some point. I'm hoping it's not one of the situations that leaves it public only when they've approved you to be able to use it.
It does suck that it's restricted to 8.1 Silverlight though. I could see some Music Apps wanting to take advantage of the lockscreen like this.

snickler said:
You are correct. Two projects: One is the settings page, which is the main entrypoint of the app when it's opened from the start menu and the second one is the actual lockscreen app.
The settings page uses the ExtensibilityApp APIs to register the second one as a lock screen application. That second application is another 8.1 Silverlight app that uses a LockScreen_Bridge WinRT component that has native access to read what is shown on the lockscreen from the WP Settings item.
It then uses some storyboards to make it do different things as you're swiping up and down on the LayoutRoot grid. It does use a timer so that's where that little lag comes from.
The only background stuff it's doing is latching on to system events ("Start button being touched for example").
I can see where MS would be protective of this. They DID say that they would be releasing a public version of the API at some point. I'm hoping it's not one of the situations that leaves it public only when they've approved you to be able to use it.
It does suck that it's restricted to 8.1 Silverlight though. I could see some Music Apps wanting to take advantage of the lockscreen like this.
Click to expand...
Click to collapse
Quite interesting...!
The API in itself is quite powerful, custom lockscreens with weather animations are possible! http://wmpoweruser.com/wp8-1-live-l...amazing-lock-screen-weather-animations-video/