Bug #92293
closedUnexpected reload of backend login page deletes already typed information
100%
Description
How to reproduce¶
- Simulate slow network connection and no cache (not required, but makes it more easy to reproduce)
- Load the TYPO3 backend login page
- Start typing a username directly when the login form is available
- the login page is reloaded and the already typed information is lost
Possible solutions¶
If the referrer is not set yet, the form should not be writable to prevent users to start typing before the reload.
Alternative: If there already is text inside the login form (a key pressed) before the redirect, the redirect should not be performed.
This behavior was introduced by https://typo3.org/security/advisory/typo3-core-sa-2020-006 (TYPO3 versions 9.5.17 or 10.4.2)
Updated by Gerrit Code Review almost 3 years ago
- Status changed from Accepted to Under Review
Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/69336
Updated by Gerrit Code Review almost 3 years ago
Patch set 1 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/69352
Updated by Gerrit Code Review almost 3 years ago
Patch set 2 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/69352
Updated by Gerrit Code Review almost 3 years ago
Patch set 3 for branch 10.4 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/69352
Updated by Oliver Hader almost 3 years ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100
Applied in changeset 08116b2fcb5ee860ead20f5830cc6a241f099ec9.
Updated by Gerrit Code Review almost 3 years ago
- Status changed from Resolved to Under Review
Patch set 1 for branch 9.5 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/69353
Updated by Oliver Hader almost 3 years ago
- Status changed from Under Review to Resolved
Applied in changeset 0a27a12796e66f19366453c42dad95679307de42.