Navigation Menu

Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Suggested change to increase the security of the login form. #231

Closed
wants to merge 1 commit into from
Closed

Suggested change to increase the security of the login form. #231

wants to merge 1 commit into from

Conversation

amashinchi
Copy link

No description provided.

@halfdan
Copy link
Member

halfdan commented Feb 25, 2014

I'm :+1 for this!

@mattab
Copy link
Member

mattab commented Feb 25, 2014

Thanks for the suggestion! it makes 100% sense for the password reminder fields and is in fact a must for these.

For the first one though, I'm not convinced. There seems to be a lot of people arguing against this measure as it breaks the usability of password managers. So I will push the last two autocomplete=off and not first one.

For more info on the pros/cons see: https://startpage.com/do/search?q=autocomplete%3Doff%20security

mattab added a commit that referenced this pull request Feb 25, 2014
@mattab
Fixes PR #231 Adding autocomplete=off to the password reset form so t…
970eeff 
…hat the password are not auto-completed there.

did not add it to main password field as to not break the password manager /browser functionnality.
@mattab mattab closed this Feb 25, 2014
tehnotronic added a commit to matomo-org/plugin-LoginLdap that referenced this pull request Feb 25, 2014
@tehnotronic
Fixes matomo-org/matomo#231 Adding autocomplete=off to the password r…
58a375c 
…eset form so that the password are not auto-completed there.
@mattab mattab mentioned this pull request Sep 30, 2014
Closed
@mattab
Copy link
Member

mattab commented Sep 30, 2014

FYI: because this is actually a great feature request that could be done as a config setting i've reopened an issue for it: New config setting to set autocomplete=off to password fields in Piwik #6347

Feel free to suggest pull request 👍

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@amashinchi @halfdan @mattab