Open Bug 1166440 Opened 7 years ago Updated 2 years ago

duplicate username entries in the password manager when using runescape.com

Categories

(Toolkit :: Password Manager: Site Compatibility, defect, P3)

41 Branch
defect

Tracking

()

Tracking Status
firefox41 --- affected

People

(Reporter: kjozwiak, Unassigned)

References

(Depends on 1 open bug, )

Details

(Whiteboard: [depends on realms])

Attachments

(1 file)

Thanks to Nicholas for pointing out this in bug # 1165568 and his One and Done feedback!! I decided to create a new bug relating to the multiple entries as bug # 1165568 describes an SSL issue which I haven't managed to reproduce yet.

When you're logging into the runescape.com website, you can get into a situation where you can have three duplicate usernames for the same domain in the password manager. If someone decides to change their password, only one of the entries are updated. This could confuse users when they try logging in and end up getting an error indicating the password was incorrect. As far as the user is concerned, they've already updated their password.

STR:

- visit http://runescape.com and select "Sign in / Join" at the top right corner (save an entry into the password manager)
- visit http://www.runescape.com and select "Sign in / Join" at the top right corner (save an entry into the password manager)
- visit https://secure.runescape.com and select "Sign in / Join" at the top right corner (save an entry into the password manager)

You'll end up with three different entries as shown in the image I've attached. Changing the password would only update one of those entries.
Attached image multipleAccounts.png
This depends on bug 1120684.
Depends on: 1120684
Whiteboard: [depends on realms]
Component: Password Manager → Password Manager: Site Compatibility
Priority: -- → P3
You need to log in before you can comment on or make changes to this bug.