1324394 - Allow origins to be edited in the Password Manager

Status: ASSIGNED

(Firefox :: about:logins, enhancement, P3)

Description

[Peter Wu]

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:50.0) Gecko/20100101 Firefox/50.0
Build ID: 20161213204721

Steps to reproduce:

1. Open a website (say https://secure.example.com), login and remember credentials
2. Revisit website. For some reason it always redirects to https://example.com now.
3. Open the Password Manager.
4. Search for the host example.com, find secure.example.com
5. Right-click on the row.


Actual results:

Only the "Edit username" and "Edit password" options are shown.


Expected results:

Additionally, the "Edit host" option should be available.

Comment 1

[Matthew N. [:MattN]]

Mass removing [skyline] and [passwords:management] from about:logins bugs which are no longer useful.

Comment 2

[Rizwan S]

Can I work to fix this bug ?

Comment 3

[Matthew N. [:MattN]]

I wouldn't recommend it since it's unconfirmed how/if we want to do this since users could easily make edits that stop logins from being saved.

Comment 5

[Martin]

(In reply to Matthew N. [:MattN] from comment #3)

I wouldn't recommend it since it's unconfirmed how/if we want to do this since users could easily make edits that stop logins from being saved.
Please do take into account that not all users are as "dumb" as suggested by this comment of yours.

In fact, I'd love to see this bug implemented to fix Firefox's wrong behavior of not recognizing that a login for "subdomain1.example.net" probably applies for "subdomain2.example.net" and/or even "example.net".
So, if @Rizwan S wants to fix this, I highly vote for letting him do so - previous bugs (back when GitHub issues were used instead of Bugzilla) suggested it should be implemented ASAP.

Comment 6

[Martin]

Can't edit my comment, so replying again with the correct comment content:

(In reply to Matthew N. [:MattN] from comment #3)

I wouldn't recommend it since it's unconfirmed how/if we want to do this since users could easily make edits that stop logins from being saved.

Please do take into account that not all users are as "dumb" as suggested by this comment of yours.

In fact, I'd love to see this bug implemented to fix Firefox's wrong behavior of not recognizing that a login for subdomain1.example.net probably applies for subdomain2.example.net and/or even example.net.
So, if Rizwan S (can't mention him via @Rizwan S, probably due to a Bugzilla bug) wants to fix this, I highly vote for letting him do so - previous bugs (back when GitHub issues were used instead of Bugzilla) suggested it should be implemented ASAP.

Comment 8

[Matthew N. [:MattN]]

We were trying to make a simple password manager for mainstream users, not target the same market as third-party password managers with advanced UX and bells and whistles. Editing the origin can cause passwords to no longer fill and most people wouldn't need to do that so that's why we didn't do it yet. The other issue is that users cannot edit the formActionOrigin or httpRealm so editing the origin isn't necessarily going to fix their problems.

If there is good validation and the UX doesn't tempt users to edit it when they shouldn't then supporting this is fine but we'll need to figure out how to handle formActionOrigin and httpRealm too.

Comment 9

[Johannes]

(In reply to Matthew N. [:MattN] from comment #3)

I wouldn't recommend it since it's unconfirmed how/if we want to do this since users could easily make edits that stop logins from being saved.

How could editing already saved logins “stop logins from being saved”? Did you mean stop logins filled out automatically?

You could add an extra option on top of the about:logins page where the user have to actively activate the ability to edit the URL, maybe with a warning shown that it might stop logins filled automatically

I reactivated an old router and gave it an IP address in the current IP net. When entering the login data, Firefox asked to update the stored login data. By that I recognized I used an IP address I already had in use for my second router. So now I would like to change the saved URL in about:logins. Please make this function available!

Comment 10

[ragimeg698]

The key to copy links is broken. It was removed without a replacement in 88. The tens, maybe hundreds of millions of people who rely on the ability to copy links have had to find solutions outside of Firefox.

Copying links is a core function of a web browser. It is completely unreasonable that this function should be removed. Millions of people use hotkeys. It is an absolutely normal, absolutely acceptable way to interface with a computer.

A "replacement" key that is not physically usable is not a replacement. The function has been removed from Firefox and not replaced.

Since my legitimate reports about this critical bug are being removed, I'm leaving comments on other people's bugs.

Comment 11

[Mp Thakor]

Thanks For sharing Information Dear.
Complete Open site https://videostatus.pro

Comment 12

[kubbugrep]

Please make website adress with URL or IP-address editable. Editing this field is no more "dangerous" for users than any if the other fields.

Comment 13

[Shane Hughes [:aminomancer]]

Since you can make a new login and enter the origin manually, I don't see a compelling reason not to allow editing the origin field of existing login items. You can already do this, just by a more convoluted series of steps: Make a new login with the preferred origin, enter the same password and username. Now delete the old login. Users who want to edit the origin of a login item will just end up doing this instead. Which is unfortunate, since this method is more tedious, requiring several more steps, and is more prone to errors. In the process of re-entering a username and password, there is a chance, however small, that the user enters the username/password wrong without realizing it, then deletes the old entry and loses the correct information. Since this process requires one to delete a login item, there's also the potential that the user will try to delete one login and end up accidentally deleting a different login. To just allow editing the origin field would reduce the risk of data loss, I think. I don't know anything about the logins page but I'll revisit this when I have some time to research it.

Comment 14

[lampoilman]

...Just my 2 cents...
I am unable to use PW manager for a specific site because that particular
site requires a specific URL suffix or it redirects to a different site

MADE UP EXAMPLE:
Firefox only allows " https://www.mysite.com"
I NEED URL to be " https://www.mysite.com/code22"

PW manager forbids use of any URL suffix ie: "/xxxxx"

Comment 15

[lampoilman]

(In reply to lampoilman from comment #14)

...Just my 2 cents...
I am unable to use PW manager for a specific site because that particular
site requires a specific URL subdirectory or it redirects to a different site

MADE UP EXAMPLE:
Firefox only allows " https://www.mysite.com"
I NEED URL to be " https://www.mysite.com/code22"

PW manager forbids use of any URL sub directories in the address ie: "/xxxxx"

Comment 16

[Shane Hughes [:aminomancer]]

Yeah this is definitely another reason it's important. I still use Bitwarden mainly because of redirects.

Comment 17

[Suzanne Shanks]

Here you know the process to refund Mcafee via Mozilla. So users need to follow some easy methods mentioned in the link and get the solution.

https://bit.ly/3GQsjJB

Comment 18

[jorge.moraleda]

A command line work-around: I used sed to replace the old name of an internal server with the new one in a couple of files called logins.json that I found inside the .mozilla configuration directory using find. I restarted firefox and everything worked as expected.

Comment 19

[Sergey Galich [:serg]]

(In reply to jorge.moraleda from comment #18)

A command line work-around: I used sed to replace the old name of an internal server with the new one in a couple of files called logins.json that I found inside the .mozilla configuration directory using find. I restarted firefox and everything worked as expected.

Just a bit of warning: this might not trigger sync properly, if you are using Firefox Account, you may have changes done only locally. We'll need to close bug 1752839 first to allow direct changes to logins.json.

Comment 20

[Thomas Vince]

As i understand this has been fixed in Firefox as stated at https://bugs.edge.launchpad.net/firefox/+bug/27867

T.vince
https://www.webtechmania.com/

Comment 21

[David Lex]

Steps to reproduce:

1. Open a website (say https://secure.example.com), login and remember credentials
2. Revisit website. For some reason it always redirects to https://example.com now.
3. Open the Password Manager.
4. Search for the host example.com, find secure.example.com
5. Right-click on the row.

Actual results:

Only the "Edit username" and "Edit password" options are shown.

Expected results:

Additionally, the "Edit host" option should be available.
@DAVID LEX
Personal Website - https://www.wikitechblog.com/

Comment 22

[george welster]

Sweet flavor in mouth commonly comes from ingesting sweet or ingesting soda. However, if a candy sensation regularly appears for your mouth without having any sugary ingredients, you have to care approximately this condition. It could be very critical so one can recognise the purpose why for this due to the fact it may be a sign of a health hassle. So, this article will help you find out about the reasons of sweet taste inside the mouth as well as solutions to this trouble.

What are the reasons of the candy taste in mouth?
Below are some commonplace medical conditions which make a contribution to a candy flavor within the mouth.

Diabetes-
Diabetes is one of the causes of a constant sweet taste for your mouth. It hinders the renal metabolism of insulin, affecting blood sugar tiers within the body. For this reason, the excessive levels of sugar in the blood bring about a ceaseless sweet flavor in the mouth.

According to another observe published in 2016, people with diabetes are usually much less touchy to a candy taste. It results in a craving for sugar intake which increases the condition of diabetes such as infection, cardiovascular accident, or weakened immune system.

Infections-
Various varieties of infections can make a contribution to a constant sweet flavor within the mouth. Scientists said that viruses and micro organism ought to have a bad impact on the nerves which results in some changes in tastes. For example, a bacterium known as Pseudomonas reasons Pseudomonas contamination which could purpose sinusitis collectively with modifications in flavor such as a candy flavor in the mouth.

According to a observe by using the National Institutes of Health posted on its website, humans affected by blocked sinuses because of inflammation have adjustments in flavor including a candy flavor inside the mouth.

Improper Diets-
Nutritionists showed that irrelevant diets with dietary deficiency could result in an uncommonly unpleasant sweet flavor. They researched a group of men who were served wrong diets for 60 days.

The consequences of the research showed that there has been eighty% of contributors on this study had a candy flavor in mouth while the rest had experienced modifications in taste along with a bitter taste, salty flavor, and fatty flavor.

Another current study also discovered that zinc, folic acid, and nutrition B deficiency prompted ordinary modifications in flavor.

Neurological Disorders-
Some neurological problems which includes epilepsy, Alzheimer’s disorder, or brain tumors can make contributions to a candy flavor in the mouth. A examine published in the Canadian Journal of Neuroscience Nursing confirmed that strokes and a couple of sclerosis ought to result in scent and flavor disorders.

Neurological problems impair the everyday functions of the gustatory nerve in sending alerts. So, we can not feel the sort of taste and scent except for buying a sweet flavor within the mouth.

Ketosis-
When the body needs excessive-fat content material for power manufacturing, the fat breakdown will result in the release of chemical compounds. The development is called ketones. Also, ketones produce a byproduct known as acetone that's chargeable for the smell or flavor in the mouth. Ketosis typically occurs when the extent of blood sugar and insulin within the body decreases and causes a candy flavor inside the mouth.

GERD-
GERD (gastroesophageal reflux disease) is as a result of a belly acid imbalance that pushes digestive enzymes from the belly back into the food pipe, throat, and voice field. The backflow is blamed for changes in flavor inclusive of a sweet flavor within the mouth. Gastroenterologists also confirmed that human beings with GERD normally appreciated to sip candy meals or soda liquids.

Cancer
Some sorts of most cancers, lung carcinoma, as an example, motive sodium depletion (hyponatremia) because of the unbalance of antidiuretic hormone secretion. The circumstance is known as Syndrome of Inappropriate Antidiuretic Hormone Secretion (SIADH) can trade someone’s sense of taste together with a regular candy taste in the mouth.

During Pregnancy
Lots of ladies enjoy modifications in flavor in the course of their pregnancy together with a sweet flavor inside the mouth. In early being pregnant, this unusual phenomenon occurs because of gastrointestinal modifications which includes acid reflux disorder.

As noted above, acid reflux disease is belly acid imbalance that ends in a sweet taste in mouth after a few acids glide again into the gut. It is expected that approximately 7 % of all pregnant ladies enjoy this circumstance.

Other chance factors blamed for a sweet flavor in mouth during being pregnant consist of:

The circle of relatives records of kind 2 diabetes.
Previous gestational diabetes.
Obesity.
Pre-Diabetes before being pregnant.
A preceding macrocosmic toddler over 10 pounds (four.5 kg).
Pregnancy at 25 years or older.
Frequently Asked Questions-
Conclusion
How to remove a sweet flavor in mouth
As noted above, a candy taste in mouth can be a signal of fitness problems. If you need to take away this situation, underneath is some recommendation for you:

Diabetes Treatment–

Medication is taken into consideration an obvious and effective remedy method to maintain proper blood sugar and insulin degrees. Proper diets additionally play an crucial part in enhancing diabetic symptoms and improving your overall health. People with diabetes must proportion their circumstance with a health practitioner to get higher consequences in minimizing their health issues as well as decreasing a sweet flavor in the mouth.

Antibiotics–

If you're suffering from sinusitis because of Pseudomonas contamination (sinusitis), antibiotics are considered the trusted remedy method. Depending on your modern circumstance, whilst there are various antibiotics in the marketplace, you must ask your health practitioner for suggestions and steerage.

Diet–

A sweet flavor in mouth can be the result of an fallacious regime; for example, having high sugary or acidic foods. It negatively affects the levels of insulin or blood sugar within the body and reasons the condition. Therefore, you must set up a balanced weight-reduction plan and not using a artificial sweeteners which includes soda or candies, which allow you to to dispose of a sweet flavor.

Oral Hygiene–

A sweet taste in mouth can come out of your awful oral hygiene habits. When small amounts of meals are left inside the mouth, it will produce a few acids which make your saliva flavor sweet the next day. Therefore, you have to brush your tooth often and thoroughly, specifically after having meals with excessive sugar content to avoid the situation.

Alternative Treatments

Depending at the circumstance of the sweet taste in mouth, the subsequent alternative remedies may additionally assist you lessen the consistent sweetness:

Antacids–

Consume greater lean protein, clean veggies, and culmination.
Reduce the consumption of sugar, processed foods, and unhealthy fats.
Probiotics dietary supplements consist of kimchi, kefir, sauerkraut, yogurt, and miso soup.

Insulin Therapy–

Digestion issues remedies.
Be sure to look your health practitioner if you are a person with diabetes or stricken by nerve damage.

Home remedies for sweet flavor in mouth

1. Honey.
2. Saltwater Gargle.
   Three. Baking Soda Gargle.
   Four. Humidifier

These selfmade treatments you could use to therapy candy taste in mouth.

A candy taste in mouth is not continually a signal of a fitness hassle. However, if there is no cause for this, the candy taste may be a symptom of a extreme scientific condition. Above are not unusual causes of the bizarre situation outlined as well as a few treatment methods recommended. We hope you'll discover the apparent reason on your sweet sensation and find the exceptional solution via traveling DotBeasts to eliminate this. @ read more https://itsmyownway.com/sweet-taste-in-mouth-causes-solutions/

Comment 23

[back.links1007@gmail.com]

Pinoy TV is a free entertainment platform that offers Filipinos all over the Globe a place to enjoy their favorite shows, from Dramas to Pinoy Tambayan.
Pinoy Tv is a great platform that refers to Filipinos and their culture within the Philippines and overseas Filipinos among Filipino Diasporas Pinoy channel .
Watch all your favorite pinoy TV shows online for free! Our website can provide you with free daily episodes of pinoy tambayan Lambingan TV channel!
Watch your favorite Pinoy Teleserye, Pinoy Tambayan, Pinoy Channel, Teleserye Replay , Pinoy Lambingan, and Pinoy TV Shows online for free On Pinoy TV.

Comment 24

[thanhtuyen7551]

This is a great thing for any internet user. I am very happy for this.
https://wordle-unlimited.co/ - https://wordlenyt.org/

Comment 25

[fatotaku]

In addition to this, I'd love for regex support on the edited URL.
In terms of collisions between regex entries and concrete entries, prioritize concrete entries.
Using lampoilman's example...

1. Save "https://www.mysite.com"
2. Edit it to be "https://www.mysite.com/code[0-9]{2}"
   Then it would work for all https://www.mysite.com/code00 -> https://www.mysite.com/code99, but not https://www.mysite.com/codeAA

Comment 26

[johnsonsellen]

Thank you very much for reproduced into a simple steps I used to do process from the long step-up!!!! which is quite time taking probably Now i can change without wasting of plenty of time to follow simple steps I would love to apply on through it

1. Save & Edit https://dolgeneraldgme.com/

I am sure it will absolutely work for me.

Best Regards

Johnsons

Comment 27

[mohammadn72]

Hi
how can i change web site url in password manager like this ?
https://fartakvision.com

Comment 28

[temadari]

I am unable to utilize my password manager for a particular website, as it requires me to include a specific URL suffix; otherwise, it redirects to a different page. For example, Firefox only allows for "https://www.bettafishinfo.com", yet I need the URL to be "https://www.mysite.com/code22". Unfortunately, the password manager will not accept a URL with a suffix, such as "/xxxxx".

Comment 29

[alishakihn]

I applied your post but it didn't work, is there any other way? Flappy Bird

Comment 30

[cctv gorontalo]

nice

https://cctvgorontalo.com/

Comment 31

[mynstromy]

I wouldn't suggest it since it's not a valid authentic and it is not confirmed how we want to do this since users could easily make edits that stop logins from being saved. https://mynstromy.com/

Comment 32

[John Veness]

How do we access the atlassian.net URL?

Comment 33

[Sergey Galich [:serg]]

(In reply to John Veness from comment #32)

How do we access the atlassian.net URL?

Hey John, to my knowledge there is no way at the moment, sorry. It's an internal system used for sprints planning.

Comment 34

[Megha21]

In addition to this, I'd love for regex support on the edited URL.
In terms of collisions between regex entries and concrete entries, prioritize concrete entries.
Using lampoilman's example.. https://mykohlscard.online/

Comment 35

[wali54789]

some websites are not loading in the Mozilla web browser. What should I do?
the website name is https://www.funflax.com

Comment 36

[cunningham5]

I just wanted to put my two cents in.
I like how bitwarden allows for multiple uri fields
maybe that could be a solution? I mean we arent going to have app resource uri but it could be useful when a user has one account that spans multiple domains, Microsoft for example.

Comment 37

[slot gacor]

Nice Information https://www.impact.upenn.edu/ebola_whats_next_and_how_can_i_help_liberia_case_example/

Comment 38

[mariasmith55516]

A fall detector and a panic button are common for personal safety systems. And <a href=" https://allswellalert.com/blog/why-a-panic-button-is-not-enough-five-cases-when-you-need-inactivity-monitoring-if-you-live-alone ">inactivity monitoring</a> is one to enhance the possibilities of unobtrusive monitoring. Your parents of senior age, or your loved-ones living alone won't be happy with too many phone calls or software constantly sharing their location. That's why an app with an inactivity monitoring feature may be your best choice. It alerts an emergency contact only in case of the phone is inactive longer than a pre-determined time. And GPS coordinates are also sent only in case of possible danger.

Comment 39

[james willliam]

Wordle is a simple game that requires players to guess a five-letter word within a certain number of guesses. The game provides feedback in the form of colored squares that indicate which letters in the guess are correct and in the correct position (green), correct but in the wrong position (yellow), or incorrect (gray). The goal is to guess the word in as few attempts as possible.

Comment 40

[ravi chauhan]

wordle is a very addictive game

Comment 41

[Micah [:mtigley] (she/her)]

Attachment: Bug 1324394 - Allow origins to be edited in about:logins. r=#credential-management-reviewers

Comment 42

[Micah [:mtigley] (she/her)]

Test setup:

1. On desktop, navigate to about:logins
2. Create a login entry for a website.
3. Edit the login. Change the value of the “Website address” field to another website
4. Save changes.

Test Scenarios (for Desktop/ iOS / Android) :

• Verify that changes to the login’s website address persists on Firefox desktop/ iOS/ Android.
• Verify that autofill no longer triggers for the old website.
• Verify that autofill for new website triggers.
• [Desktop only] If old website was breached, verify the alert is removed after changing the website value.

Comment 43

[Hani Yacoub, Desktop QA]

Attachment: Screen Recording 2024-01-10 at 15.08.49.mov

We finished testing on desktop, covering Windows 11, Ubuntu 20.04 and macOS 11.6.
We observed a couple of issues, I will mention them below and please let us know if we should log bugs for them.

In the video attached we discovered 2 issues:

1. Entering a website address without https:// and pressing “Enter” key while in edit mode will show “Please enter a URL” error. If I press “tab” key and then “Enter” key the password is saved. Not a regression, it's also reproducible on the latest Nightly.
2. Editing a website address and then trying to edit another website address will replace the website address with the previous one.

Another issue we observed that vulnerable passwords sign and notification aren’t being synced. Not a regression, it's also reproducible on the latest Nightly.

Thanks.

Comment 44

[Delia Pop]

Attachment: QA_Android.png

We’ve verified the above scenarios for Windows/Linux/Android and the expected results were obtained:

• The modified login in Desktop/Linux was correctly synced and displayed updated on Android; when deleted from Desktop, the login was no longer displayed on Android;
• On Android, the autofill prompt was not triggered for the old website;
• On Android, the autofill prompt was correctly triggered for the updated website and autofill worked as expected;
• Desktop, the warning icon displayed on the right side of the old login was removed after updating the login.

Tested using the received local builds on Desktop/Linux and the latest Fenix Nightly 123.0a1, Beta 122.0b7 and Release 121.0.1 builds on Android.

Tested with:

• Google Pixel 8 Pro (Android 14)
• Ubuntu 22.04 x64
• Windows 10 x64

Comment 45

[Micah [:mtigley] (she/her)]

(In reply to Hani Yacoub, Desktop QA from comment #43)

Thank you Hani! Yes, please file those discovered issues discovered in separate bugs.

Comment 46

[Alina Moldovan]

Validated the scenarios below using the following env:
FF versions: Windows (provided build), iOS v121.2 (37524)
Device: iPhone 14+ (16.0.3)

Scenarios:

1. Create new Login on Windows; the data was correctly synced on iOS
2. Update the login data on Windows (Website, username and password); the data was correctly synced on iOS
3. Confirming that autofill no longer triggers for the old website. Using "open and fill" option from password details the updated website opens.

Comment 47

[Micah [:mtigley] (she/her)]

(In reply to Hani Yacoub, Desktop QA from comment #43)

Another issue we observed that vulnerable passwords sign and notification aren’t being synced. Not a regression, it's also reproducible on the latest Nightly.

To clarify, do you mean if the user updates a breached/vulnerable login the notification is removed for the login currently updated but the notification still appears after syncing on another device?

I wasn't able to find a bug for this, did you happen to file a separate issue for it?

Comment 48

[Hani Yacoub, Desktop QA]

I had difficulties yesterday to find some clear steps on how to reproduce the bug easily.
I managed today to log bug 1874397 for the vulnerable passwords issue.