Open
Bug 300002
Opened 19 years ago
Updated 2 years ago
UI for logging out of sites using HTTP authentication/phishing attack preventer
Categories
(Firefox :: Menus, enhancement)
Firefox
Menus
Tracking
()
UNCONFIRMED
People
(Reporter: aguertin+bugzilla, Unassigned)
References
(Depends on 1 open bug, )
Details
Bug 55181 gave the ability to log out of all sites using HTTP authentication, Bug 260839 (in Core: Networking) is about making it possible for just one site, this bug is about having a good UI for doing so. I described at http://dolphinling.net/firefox/httpauthui what I think is a good UI for logging out of websites using HTTP authentication. I've gotten a few positive comments on it, so I'm hoping it can get into Firefox. A short description (a more detailed one is in the link above): When someone logs into a website using HTTP auth, the username is displayed in the right side of the address bar, in some visually distinct way (like having a box around it). When this box is clicked (or right clicked, or tabbed to + enter for accessibility) a menu is displayed, with an option to log out. This is intuitive and discoverable but not intrusive, and hopefully therefore good UI. It also has the added benefit that it can help prevent phishing attacks of the form http://www.somebank.com@evilphishingsite.net/, since www.somebank.com is moved away and all that's displayed in the normal location for URLs is http://evilphishingsite.net/. P.S. Please no comments about 300000th bug. It's a legitimate bug and discussion should be on topic. As gerv said (http://weblogs.mozillazine.org/gerv/archives/007616.html) "Let's party somewhere more fun :-)"
Updated•16 years ago
|
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•