Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

html password field - disable the password manager

Tags:

html

passwords

autocomplete

I need to allow users to change their password and as such I have 2 fields on a form:

  1. enter your new password
  2. re-enter your new password (values for field 1 and 2 must match)

To keep the operation private for the user, the obvious choice to use is input type="password" field - which is what I am trying to do.

However, browser password managers keep offering to auto-fill the fields, an activity which simply makes no sense in this context.

In fact, in my opinion, the practice is actively insecure, because it increases the likelihood that people will choose passwords "similar" to what they currently have, by accepting what is offered by the password manager and making minor adjustments. (just a quick note that there's no need to mention that safeguards to ensure difference can be put in place as I'm aware of this - thanks)

I have already done a lot of research to try to disable the password managers, including:

  • autocomplete="off/new-password/rubbish value" (for both form and type="password" fields, separately and at the same time)
  • using javascript to change the field from type="text" to type="password" on focus
  • inserting hidden password fields prior to the password field on the form
  • removing name and id from the field

But, while some approaches work partially, nothing works consistently.

The only thing that I can find to do that seems to have shot at succeeding is using a type="text" and displaying circles by using a dummy "password" font.

However, this approach feels like I am fighting the browsers, and I just cannot credit that there is no easy way to enter "hidden" text without having the password manager involved.

Additional notes:

  • I have already tried everything on How to prevent a browser from storing password and none of the solutions offered work reliably.
  • Mozilla has a whole explanation of how to do it here ...which doesn't work.

Hence this question. Is there possibly any password guru out there who knows how to disable the password managers when entering hidden text? Thanks!

like image 393
Pancho Avatar asked Sep 15 '17 14:09

Pancho

People also ask

How do I turn off password suggestions in HTML?

Method 1: One of the known methods is to use autocomplete attribute to prevent browser to remember the password. In the input field, if we define autocomplete=”off” then many times the input value is not remembered by the browser.

How do you prevent users from saving passwords in browsers?

Set the following policies: Disable the policy Enable AutoFill for addresses. Disable the policy Enable AutoFill for credit cards. Under "Password manager and protection," disable the policy Enable saving passwords to the password manager.

How do I remove input field suggestions?

Use the <input> tag with autocomplete attribute. Set the autocomplete attribute to value “off”.

1 Answers

Try to remove "name" attributes from the inputs

like image 140
SubjectDelta Avatar answered Nov 15 '22 05:11

SubjectDelta
Sign in to Comment

Related questions

Bootstrap bottom align button inside .form-group
2D Transform Transition dosen't work with VW and VH Units in IE11
MediaElement.js Audio player - interesting wrapping on mobile
How can I improve this UI Search Selection Dropdown Semantically
Tablesaw headers not shown on mobile
(S)CSS architecture: alternative backgrounds styling
Dropdown bug, if clicked too quickly, options in dropdown remain visible
Reset all CSS for one element and its children
Vuejs shared radio component not checked on render
Bootstrap 4 - how to change collapse direction of nav?
Laravel 5.4 - drag drop not working
addClass on hover for multiple items
What is the difference between using extract-text-webpack-plugin and linking a merged CSS file in an HTML header?
How to make Angular 2 render HTML template after a promise in the component is resolved?
How can youtube autoplay video with audio on Safari?
Post login data to site with js
li does not disappear on routing to different html page in Angular, Why?
Convert a line of text generated in a javascript file into a clickable link in HTML
What is the parameter to use for event? how do i know?
IE11 - border-radius and box-shadow together cause problems

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!