What Quick Login is and how it works on idb365
Quick Login is a convenience feature that reduces friction on repeat visits. After your initial login with email and password, idb365 encrypts and stores a session token on your device. On your next visit, the app or browser recognizes the stored token and grants access without requiring you to re-enter credentials. If your token has expired—which happens after a period of inactivity you can configure (typically 7 to 30 days)—you are prompted to log in again for security.
Biometric authentication (fingerprint or face ID) is an optional layer on top of Quick Login. If enabled, you unlock your idb365 session using your device's biometric sensor rather than a PIN or swipe pattern. This adds an extra security step without slowing down access. The biometric data itself is never transmitted to our servers; your device handles the comparison between your fingerprint and the stored reference, then reports only a yes-or-no result to idb365.
Quick Login is optional and device-specific
Quick Login tokens are stored locally on your device. If you log out, clear app data, or uninstall the app, the token is deleted and you must log in again with credentials.
Setting up Quick Login on Android and iOS
On Android, open the idb365 app and tap your account icon (usually in the top-right corner). Navigate to Settings or Security settings and toggle "Quick Login" on. You will be asked to enter your password one more time to confirm. After confirmation, the next time you close and reopen the app, you can access your account using Quick Login. If your device supports biometric authentication (most modern Android phones do), you will see an option to enable fingerprint or face unlock alongside Quick Login.
On iOS, the process is similar. Open the idb365 app, tap your account icon, go to Settings, and enable Quick Login. iOS will prompt you to authorize using Face ID or Touch ID if those features are enabled on your device. Once confirmed, subsequent app launches use your biometric or Quick Login session instead of credentials.
-
Open idb365 and log in normally
Enter your email and password if this is your first session on this device.
-
Navigate to Security or Settings
Tap your account menu and locate the security or session settings tab.
-
Enable Quick Login
Toggle the switch and confirm by entering your password again.
-
Optionally enable biometric unlock
If offered, allow the app to use your fingerprint or face ID for additional security.
Session expiry and automatic logout
By default, Quick Login sessions expire after 14 days of inactivity on that device. You can customize this window in Settings, choosing from 7 days, 14 days, 30 days, or "never expire" (not recommended for shared devices). When your session expires, you are logged out automatically and prompted to enter credentials again on your next visit.
Automatic logout occurs even if the app is still installed and the device is powered on. This protects your account if your phone is lost or stolen—after the expiry window, the token becomes invalid and an attacker cannot use it to access your idb365 balance or payment methods.
Security considerations for Quick Login
Quick Login is secure as long as your device itself is secure. The session token is encrypted on your phone using the device's secure storage (Android Keystore or iOS Keychain), making it difficult for malware or attackers to extract without your biometric or device unlock code. However, if someone gains physical access to your unlocked device, they can open idb365 and view your balance or initiate transactions.
To mitigate this risk, we recommend enabling biometric authentication alongside Quick Login. This way, even if your device is unlocked, an attacker cannot access idb365 without your fingerprint or face. Alternatively, you can disable Quick Login on shared devices and always log in manually with credentials.
Accessing payment methods and account features after Quick Login
Once logged in via Quick Login, you have full access to your idb365 account, including your balance, transaction history, and all payment features. If you wish to initiate a deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a bank virtual account (mobile banking, local payment, online payment, e-wallet), Quick Login does not require additional authentication—your session already confirms your identity.
However, for sensitive operations like withdrawals or changing your registered payment methods, idb365 may prompt you for an additional verification step (such as an SMS code or email confirmation) even if you are logged in via Quick Login. This extra layer protects against unauthorized account changes if your device is compromised.
Troubleshooting Quick Login issues
Issue: Quick Login does not appear as an option. This occurs if your device does not meet minimum security requirements (such as Android 8.0 or later, or iOS 12.0 or later). Update your device and try again. Alternatively, your account may not have completed identity verification; verify your phone number and national ID in account settings before enabling Quick Login.
Issue: Biometric unlock fails repeatedly. If your fingerprint or face recognition fails several times, idb365 falls back to password login for that session. This is a security feature to prevent brute-force attacks. After you log in with your password, you can retry biometric setup. If the problem persists, check that your device's biometric sensor is working correctly (test it with other apps) and that you have enrolled your biometric in your device settings.
Issue: Quick Login token expired and I cannot log in. This happens if your session has timed out due to inactivity. Log in manually using your email and password. If you have forgotten your password, use the "Forgot Password" link on the login screen to receive a reset email. Once you reset your password and log in, you can re-enable Quick Login.
Issue: I switched devices and Quick Login is not recognized. Quick Login tokens are device-specific; they do not sync between phones. On your new device, log in with credentials and set up Quick Login from scratch. Your old device's token remains valid until it expires, but it cannot be transferred.
Lost or stolen device with Quick Login enabled
Contact our support team immediately. We can remotely invalidate all sessions associated with your account, rendering Quick Login tokens useless even if your device is compromised. Response times are typically within one business day.
Managing multiple devices and Quick Login sessions
You can enable Quick Login on multiple devices—your Android phone, tablet, and iOS devices. Each device stores its own encrypted session token. If you access idb365 from a device in Jakarta in the morning and then from a device in Surabaya in the afternoon, both sessions are active simultaneously until one expires or you manually log out.
To view all active sessions and manage them, go to Settings → Active Sessions (or Sessions) on any device. This page lists all devices currently logged into your idb365 account, along with their location and last-access time. You can remotely log out of any session by tapping "Remove" next to it. This is useful if you have lost a device or suspect unauthorized access.
