Closed Bug 213203 Opened 21 years ago Closed 20 years ago

Password Manager fails to logout 'completely'

Categories

(SeaMonkey :: Passwords & Permissions, enhancement)

Product:
SeaMonkey
Component:
Passwords & Permissions
Type:
enhancement
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 53488

People

(Reporter: sams.james, Assigned: dveditz)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624

This may be an extenstion of Bug 191868, depends on the perspective.  I contend
it warrants a different filing because a) I'm not limiting to POP3 accounts, b)
I recognize the behavior as being not the fault of the password manager as
implemented but suggest that code be added to change the implementation.  When a
user uses a Master Password with encryption, s/he is attempting to secure access
to the site's personal information just as much as s/he is attempting to secure
the username and password to that site.  Given that, logging out of the password
session (Tools -> Password Manager -> Log Out), should act as block to all of
that user's personal information.  Thus, Mozilla should automagically log out of
all pop3/imap accounts in addition to any pages that the user had to logon to
using the password manager.  

Logging out of the pop3/imag accounts should be a fairly easy task, logging out
of the other accounts would likely prove much more difficult.  Perhaps what
would make most sense would be to make a 'private cookies' file that stores the
cookies originating from a site that utilized the password manager and
encrypting that file.  Thus, when the user logs out, the website loses contact
with the cookie and the server would then log the user out on its own.  

I think the reproduction steps are obvious enough to not need extra clarification.

Reproducible: Always

Steps to Reproduce:
1.
2.
3.
baisc auth= bug 55181
Mailnews = bug 53488

*** This bug has been marked as a duplicate of 55181 ***
Status: UNCONFIRMED → RESOLVED
Closed: 21 years ago
Resolution: --- → DUPLICATE
This is not a duplicate of bug 55181, once mailnews grabs a password it doesn't
go back to the password manager. It cannot be fixed in password manager alone.
Status: RESOLVED → UNCONFIRMED
Resolution: DUPLICATE → ---
It *is* a dupe of the mailnews bug though.

*** This bug has been marked as a duplicate of 53488 ***
Status: UNCONFIRMED → RESOLVED
Closed: 21 years ago20 years ago
Resolution: --- → DUPLICATE
Product: Browser → Seamonkey
You need to log in before you can comment on or make changes to this bug.