Bug #87303

Disable autocomplete for login forms

Added by Oliver Hader 26 days ago. Updated 8 days ago.

Status:
New
Priority:
Should have
Assignee:
-
Category:
Security
Target version:
-
Start date:
2018-12-27
Due date:
% Done:

0%

TYPO3 Version:
8
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

In order to apply strong security defaults it is suggested to disable autocomplete of login forms.

References:

History

#1 Updated by Stefanos Karasavvidis 11 days ago

It can be argued that forcing users to remember their passwords leads to simple and easily guessable passwords.

Power users will use a password manager anyway. And for normal users, IMHO it's better to let them use their browsers autocomplete instead of "forcing" them to use everywhere 12345.

#2 Updated by Oliver Hader 8 days ago

  • Assignee deleted (Oliver Hader)

Also available in: Atom PDF