398827 - Firefaox doesn't ask for general password to retrieve login/passwd after a resored session

Status: RESOLVED DUPLICATE of bug 345345

(Toolkit :: Password Manager, defect)

Description

[Marc]

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.8.1.7) Gecko/20070914 Firefox/2.0.0.7
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.8.1.7) Gecko/20070914 Firefox/2.0.0.7

I use a main password to store all my login/password in firefox.
When Firefox asks for a restore session after a crash (or not, see bug 342885), and if I aswer "yes" I do not need to enter my main password to access to my protected web sites. this happends only when I entered my main password before firefox crash or is not correctly terminated.


I saw there is an option to disable the restore session option. I think it's a work-around
To disable the crash recovery feature, set browser.sessionstore.resume_from_crash to false:

    * Type about:config in the Location Bar
    * Press Enter
    * Find browser.sessionstore.resume_from_crash
    * Double click to set it to false 

To completely disable all session saving behaviour, including the recording of session information, browser.sessionstore.enabled to false:

    * Type about:config in the Location Bar
    * Press Enter
    * Find browser.sessionstore.enabled
    * Double click to set it to false 



Reproducible: Always

Steps to Reproduce:
1. Configure a main password
2. Go to a web site and ask to forefox to store login/password
3. logon to the site using the main password to load log/passwd
4. Kill firefox using "process manager"
5. go to your web site. You are loggin without any problem and you have the same session as if you gave the main password

Comment 1

[Jo Hermans]

bug 345345 ?

Comment 2

[Marc]

Yes, it's the same case.
I'm sorry, i didn't find it before opening this case.

thanks