Changing the password does not work properly on macOS/Safari #27885
Labels
Comments
CarlSchwan
added a commit
to CarlSchwan/server
that referenced
this issue
Jul 13, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu>
|
Hi svdwal, Edit: wrong link |
CarlSchwan
added a commit
to CarlSchwan/server
that referenced
this issue
Jul 13, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu>
CarlSchwan
added a commit
to CarlSchwan/server
that referenced
this issue
Jul 13, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu>
npmbuildbot-nextcloud bot
pushed a commit
to CarlSchwan/server
that referenced
this issue
Jul 13, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Signed-off-by: npmbuildbot-nextcloud[bot] <npmbuildbot-nextcloud[bot]@users.noreply.github.com>
CarlSchwan
added a commit
to CarlSchwan/server
that referenced
this issue
Jul 14, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Signed-off-by: npmbuildbot-nextcloud[bot] <npmbuildbot-nextcloud[bot]@users.noreply.github.com> Co-authored-by: Pytal <24800714+Pytal@users.noreply.github.com>
szaimen
pushed a commit
to CarlSchwan/server
that referenced
this issue
Jul 14, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Co-Authored-By: Julien Veyssier <eneiluj@posteo.net> Co-Authored-By: Pytal <24800714+Pytal@users.noreply.github.com>
npmbuildbot-nextcloud bot
pushed a commit
to CarlSchwan/server
that referenced
this issue
Jul 14, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Co-Authored-By: Julien Veyssier <eneiluj@posteo.net> Co-Authored-By: Pytal <24800714+Pytal@users.noreply.github.com> Signed-off-by: npmbuildbot-nextcloud[bot] <npmbuildbot-nextcloud[bot]@users.noreply.github.com>
szaimen
pushed a commit
to CarlSchwan/server
that referenced
this issue
Jul 14, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Co-Authored-By: Julien Veyssier <eneiluj@posteo.net> Co-Authored-By: Pytal <24800714+Pytal@users.noreply.github.com>
artonge
pushed a commit
that referenced
this issue
Jul 19, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close #27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Co-Authored-By: Julien Veyssier <eneiluj@posteo.net> Co-Authored-By: Pytal <24800714+Pytal@users.noreply.github.com>
CarlSchwan
added a commit
to CarlSchwan/server
that referenced
this issue
Oct 22, 2021
Using autocomplete="current-password" and autocomplete="new-password" will help browser with integrated password managers to generate safe password for the users. See https://developer.apple.com/documentation/security/password_autofill/enabling_password_autofill_on_an_html_input_element and https://developer.mozilla.org/en-US/docs/Web/HTML/Element/Input/password#allowing_autocomplete. Also unify autocapitalize="none" autocorrect="off" behavior in a few other places for password input fields. Close nextcloud#27885 Signed-off-by: Carl Schwan <carl@carlschwan.eu> Co-Authored-By: Julien Veyssier <eneiluj@posteo.net> Co-Authored-By: Pytal <24800714+Pytal@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In particular, Safari enters a new, strong password in the old password field. This makes it impossible to change to a new, automatically generated strong password that is immediately kept safe in the macOS keychain.
Generally, websites use three fields, the first one the old password and the next two the new passwords (which must be identical). I urge you to adopt that pattern as well, or instrument the password fields so Safari can work its password convenience magic properly.
The text was updated successfully, but these errors were encountered: