Closed Bug 140262 Opened 22 years ago Closed 22 years ago

context menu for <input type=password> should include paste

Categories

(SeaMonkey :: UI Design, defect)

Product:
SeaMonkey
Component:
UI Design
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: john.p.baker, Assigned: bugzilla)

References

(
URL
)

Details

(Whiteboard: [adt2 rtm],custrtm-)

Attachments

(1 file)

The fix.....
814 bytes, patch
Biesinger
: review+
bugzilla
: superreview+
asa
: approval+
Details | Diff | Splinter Review 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0rc1)
Gecko/20020424
BuildID:    2002042406



Reproducible: Always
Steps to Reproduce:
1. Copy some text to clipboard
2. Go to http://bugzilla.mozilla.org/query.cgi?GoAheadAndLogIn=1 (or say
http://www.talk21.com)
3. Right click in password field

Actual Results:  Get navigation context menu

Expected Results:  should get same menu as username field with copy and cut disabled
Confirmed, and to blake.
Assignee: rods → sgehani
Status: UNCONFIRMED → NEW
Component: HTML Form Controls → XP Apps
Ever confirmed: true
OS: Windows 2000 → All
QA Contact: tpreston → paw
Hardware: PC → All
Blake for real.  As a note, this is a one-line fix if we want to fix it.
Assignee: sgehani → blaker
Boris, are you saying "if we want to fix it in the 1.0 branch" or "if we want to
fix this at all" ?

I hope that there is no question about whether or not this should be fixed in
the trunk.  Many registration based websites will email users long random
character passwords when they register and often the intruction tell users to
copy and paste the password.  It would be bad if Mozilla did not allow them to
use the context menu to paste.  

Personally I can not think of any downside of allowing the paste option in the
context menu for both branch or trunk.
I meant "If we fix at all"....  I personally think it should be fixed (hence I
went to the trouble if making a patch), but some people have security issues
with allowing paste of passwords for some reason.....

While we're here, nominating for various things I think this should be fixed by.
 :) It's a trivial fix that makes password fields (which look just like text
fields) _act_ just like text fields when right-clicked.
Keywords: mozilla1.0, nsbeta1
qa --> sairuh@netscape.com
QA Contact: paw → sairuh
... and you can already paste into password fields - you just have to remember to
use Ctrl/V when you can't find Paste in the menu.
I understand why being able to Cut/Copy _from_ a password field could be
considered a security risk; however, I can not see how being able to Paste _to_
a password field could be a security risk.

If you are Pasting something then the data is already on your clipboard and is
easily accessible; what is the difference security-wise between pasting it from
the clipboard and manually viewing the clipboard and manually typing it in?


I really don't think a security concern is a good reason not to fix this. 
Particularly with regard to the notes above -- good points.  Pasting into and
also nonesense passwords that people are used to pasting in.  Plus, it is rather
unexpected behavior all security concerns aside.  Seriously.

Nav triage team: nsbeta1+, adt2 rtm
Keywords: nsbeta1nsbeta1+
Whiteboard: [adt2 rtm]
*** Bug 141899 has been marked as a duplicate of this bug. ***
Keywords: review
Comment on attachment 81149 [details] [diff] [review]
The fix.....

sr=blake
what about input type=file?
Attachment #81149 - Flags: superreview+
Input type=file is a little odd because we don't really have a way of
differentiating between the button and the textfield in it....  I'm not really
sure what we want to do there, and I'm loath to change our current behavior
without an explicit UI spec.
checked in on trunk.
Status: NEW → RESOLVED
Closed: 22 years ago
Keywords: adt1.0.0
Resolution: --- → FIXED
Comment on attachment 81149 [details] [diff] [review]
The fix.....

a=asa (on behalf of drivers) for checkin to the 1.0 branch
Attachment #81149 - Flags: approval+
Checked in on the branch.
Keywords: fixed1.0.0
vrfy'd fixed using 2002.05.06.0x-1.0.0 (branch, comm) bits on mac 10.1.4, linux
rh7.2 and win2k.
Keywords: verified1.0.0
posthumus adt1.0.0+
Keywords: adt1.0.0adt1.0.0+
Whiteboard: [adt2 rtm] → [adt2 rtm],custrtm-
...and vrfy'd fixed using 2002.06.10 comm trunk bits on linux rh7.2, win2k and
mac 10.1.5.
Status: RESOLVED → VERIFIED
Product: Core → Mozilla Application Suite
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: