Univention Bugzilla – Bug 50846
Reset password module - do not allow Form AutoFill for password
Last modified: 2020-03-24 11:56:10 CET
By default, most browsers will store text that a user entered in a form field and will try to autofill forms or at least offer the previously entered texts later on. This should be prevented for the password field. Otherwise the browser will suggest passwords that have been entered before (e.g. passwords of other students) +++ This bug was initially created as a clone of Bug #47646 +++ This is based on customer feedback: Currently, if a teacher/school-admin uses the "Passwords (students/teachers)" module, the password is shown in clear text and readable for everyone looking at the screen. Suggested improvement: Mask the entered password (********), but also add an option to toggle between visible and masked. Android/iOS-Frameworks usually use an eye icon for this.