Bug #5468
closedRoot password being filled by Chrome, changing it on host edit
Description
"Recently" (last week or two?), Chrome has started filling in the root password field again on the host edit page, which means your host's new password becomes "changeme" or whatever you happen to have saved.
It appears this is a deliberate feature, even though we set autocomplete=off since #2607:
http://www.theregister.co.uk/2014/04/09/chrome_makes_new_password_grab_in_version_34/
http://www.techno360.in/how-to-enable-autocompleteoff-feature-in-chrome-34/
Updated by Dominic Cleal over 10 years ago
http://code.google.com/p/chromium/issues/detail?id=352347 is the main bug report, which while being depressing reading, does appear to be moving in the right direction.
Updated by Lukas Zapletal over 10 years ago
This is annoying and I wonder if we are able to get rid of this by adding some random suffix to the password field name.
Updated by Dominic Cleal over 10 years ago
I don't think it cares about the field name (e.g. it fills in a password from the user field into one called "root_pass"). Some say you can add hidden fields to have it fill those in instead, but eugh.
Updated by Dominic Cleal over 10 years ago
- Status changed from New to Ready For Testing
- Assignee set to Lukas Zapletal
- Target version set to 1.7.5
- Pull request https://github.com/theforeman/foreman/pull/1699 added
- Pull request deleted (
)
Updated by Anonymous over 10 years ago
- Target version changed from 1.7.5 to 1.7.4
Updated by Anonymous over 10 years ago
- Target version changed from 1.7.4 to 1.7.3
Updated by Shlomi Zadok over 10 years ago
- Assignee changed from Lukas Zapletal to Shlomi Zadok
Updated by Dominic Cleal over 10 years ago
- Pull request https://github.com/theforeman/foreman/pull/1761 added
- Pull request deleted (
https://github.com/theforeman/foreman/pull/1699)
Updated by Dominic Cleal about 10 years ago
- Target version changed from 1.7.3 to 1.7.2
Updated by Shlomi Zadok about 10 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset 19abc86f7f7416e0a2f437285f6679841b4d6dea.
Updated by Daniel Lobato Garcia about 10 years ago
- Translation missing: en.field_release set to 21