Talk:Toolkit:Password Manager

From MozillaWiki
Jump to: navigation, search

Just OSX?

Gnome has a keyring manager as well, I'd be glad if Firefox supports it so passwords are shared between Epiphany, Firefox and any other programs that use it. Also, the current UI is horrible. See bug #595128. Why not stick to the notification bar? If it ain't broke, don't fix it!

Comment

Why should it matter whether Firefox is the default browser? IMHO, the keychain should be used for the UN/PW store regardless of the default browser. What's the down side to having a UN/PW store common to several browsers? --Esta 00:48, 17 February 2005 (PST)

Integration of stored passwords

Wouldn't it be nice to integrate the stored passwords much more in the browser to the bookmarks for a faster browser experience? I think a lot of pages with passwords are just to log in - they have no more use. And this log in could be completely automated with an option for doing so on the bookmark for the page. E.g. a bookmark for page http(s)://login.xyz.com should have something like a drop down menu with the option to

i) Open the bookmark itself (by simply clicking on it)

ii) Directly log in to it (by clicking on the login name in the dropdown menu)

that kind of login could be very fast because the browser don't need to load the hole page and it even don't need to render it fully. By clicking on "ii)" the user would be directly forwarded to the secure area after the login. It's just an idea, but I think it would be very useful, simple to use, and fast!

--Mirago 07:54, 8 June 2005 (PST)

Comment

Please mind that using the OS Keyring is not safe, at least not for the case of windows protected storage. How_Browsers_store_Passwords --Marcedo (talk) 05:11, 18 August 2013 (PDT)

Comment

If you forget your password for the manager it would be good if there was an option to clear all passwords and change the main password. --Brkwtzandrew 19:29, 6 November 2005 (PST)

Manage passwords per page?

Instead of the domain name, the full path should be stored. E.g. for a website "http://www.phpbb.com/forum/index.php?c=3", the stored location should be "www.phpbb.com/forum/index.php" instead of just "www.phpbb.com".

Why?

Example: A forum like phpBB uses the same field names for different purposes. If you want to edit other users in the administration panel, currently Firefox will overwrite the user name and password with the login info of the admin. Very annoying.

Admittedly in this case it could be resolved by the developers of the forum, but I think there are situations where you don't want or can force different name fields for each website hosted on the same domain.

--Pizzahut 12:51, 27 March 2006 (PST)

I would very much like this feature, It works with IE, it is very hard to manage users once you have saved one user/password for a site.

--Mortenb 01:58, 16 November 2006 (PST)

This seems like a great idea. However, it seems best if it works very much like AdBlock, where you can type in a URL entirely or use the "*" to indicate anything in this directory. Because while this feature would be a nice option, if it were the only option it would become annoying very quickly on sites where the URL includes a PHP token.

--Gotr 16:10, 21 June 2007 (PDT)


Closing

When the pop up box comes to choose whether to remember or never for this site and the stuff like that. When you press the red 'X' (close button) on the pop up menu the page should not load since a decision has not been made.

Password manager UI

I would welcome something like fitting the dialog into top yellow bar (maybe like the popup blocker notification one), while just affecting focus of the page not the whole rendering. Idea:

  1. url is entered
  2. the page loads (normally the focus would have gone to login input)
  3. firefox shows small top bar with master passwd input and changes focus to this input
  4. user inserts master password and after pressing enter the focus goes to prefilled (data from passwd manager) login input where one more enter press toggles sending login data to server

similarly with remembering login data dialog:

  1. user enters data to login page and submits them
  2. new page (logged-in user) loads
  3. the top bar with remeber login and passwd dialog shows up with focus on it - passwd manager has remembered the login data from previous login page and if now the user choose remeber, then it's written into passwd database(doesn't matter of which kind) and dialog disappears
  4. if nothing is selected on the dialog,then user can browse page without worrying the dialog unless he wants - means no modal dialog behaviour
  5. if user haven't choosen an option and reloaded the page, the remember login data dialog disappears and comes back not until user enters login credentials second time in future.. By my opinion the remember option "not now" is the most often choosen one, so this should be the default option when no user decision is made - means no action is performed in context of password manager

some other people share similar ideas - look at: improving Firefox password saving by mykzilla - there are also images of possible real passwd manager UI like:

Save-password-bar-707169.png.jpg

--Petrtom 02:20, 5 July 2007 (PDT)

Editing Existing Credentials

Does anyone agree that it would be useful to be able edit a particular (individual) login/pass pair, and be able to make slight modifications without having to delete an invalid entry, and revisit the website to be able to store a valid login? I think this would be a good, and very useful feature. --HobbesPDX 1430, 5 August 2008 (PDT)

Automatic generation of an users master Key

Id like to propose an enhancement regarding an automatic generation of the master key during initial installations of Firefox.

This master key is currently and by default an empty String, which leads to the case where an attack on the credential storage is eased by providing this empty string.

Additional to that, Firefox could ask the User to provide an external storage used for data recovery.

--Marcedo (talk) 05:11, 18 August 2013 (PDT)