I have a web app that when I open it in chrome on my cellphone, it suggests generating password in the login page, like this.
The question is, how can I add some semantics to my html field that chrome just suggests strong password generation in registration page and not in login page.
See the autocomplete attribute.
Set it to current-password or new-password as applicable.
Related
Since some time ago, browsers will allow users to generate a secure password for the application, they are using.
This seems like a nice feature, but can have unwanted side effects, like the users cannot know his password, if prompted on another domain.
Is there a way to control, for which pages the generated password might be suitable?
Is there a way to tell the browser, that he's seeing a password reset or change for a specific domain?
Essentially, I'd like to allow the browser to autofill at login.contoso.com, when I originally set the password at account.contoso.com.
AFAIK in Edge/Chrome, if you want to autofill the password for a specific domain, you can "Add password" in password manager.
Edge: Settings --> Passwords --> Add password
Chrome: Settings --> Autofill --> Add
Also, if you have saved password in a subdomain like account.contoso.com, you will have an "autofill" dropdown menu (click the box to call) in another subdomain like login.contoso.com. Though it is not the exact "autofill".
While writing autocomplete in text field of email and password in login page, it is rendering or automatically putting email and passwords whenever page reloads
I haven't added functionality yet in login page. Only JSX part has been done now. I have uploaded whole code of login page in this screenshot.
The blue tint in the textfields suggests that your email and password have been saved to your browser and the browser is autofilling the email and password.
Try removing these credentials from your browser
I am trying to send a reset-password link to users email when they click forgot password in react-native app. The email is sent from Strapi using email template and includes the following code:
<p>click to reset password</p>
Reset password
The problem is that the link is not clickable in the email apps on either android nor ios. It just shows as text. However, when inspecting, the code in the email looks like:
<p>click to reset password</p>
Reset password
Is the problem the href url or is it a problem within the email providers that they don't support that kind of url?
This is a duplicate question and the solution is that "deep-links" are not widely supported in email providers. The solution is to use redirect using a normal link. For further reading see:
How to display iOS app's deep links on email as links
Let's say you have a site for saving your pets' credentials: you log in, then you can see your puppy's username/password and your kitten's username/password.
But in Firefox, if you choose to save your own logins just to get into the site, it will then auto-fill puppy's form and kitten's form with your credentials.
Chrome seems to behave correctly and Safari gives you the option (without automatically populating puppy/kitten's forms).
Is there something I can set on the forms so that browsers can differentiate them from the main site's login form?
Is there a way to limit the url of saved credentials in browsers?
For example, if I save a username and password for http://www.website.com/login can I make it so that the rest of the forms in the site don't use these details? http://www.website.com/members, http://www.website.com/admin etc...
I'm aware of the autocomplete attribute but I don't want to turn off autocomplete entirely. I would like it if the browser remembered the login details per form or url.
Nope, browsers simply remember details for a base domain (or subdomain). You can't set it to remember credentials for only specific pages. (Note that domain.com and www.domain.com are considered different domains).