Issue 98807

Summary: Password field of default 'Log In' dialogue does not work with AutoFill in Safari
Product: Infrastructure Reporter: Graham Perrin <grahamperrin>
Component: Website general issuesAssignee: issues@infrastructure <issues>
Status: CLOSED NOT_AN_OOO_ISSUE QA Contact: issues@infrastructure <issues>
Severity: Trivial    
Priority: P4 CC: i2initiatives, issues
Version: current   
Target Milestone: ---   
Hardware: Mac   
OS: Mac OS X, all   
URL: http://www.openoffice.org/
Issue Type: DEFECT Latest Confirmation in: ---
Developer Difficulty: ---
Attachments:
Description Flags
preference to AutoFill none

Description Graham Perrin 2009-02-03 17:30:37 UTC 
Safari 3.2.1 (5525.27.1), Mac OS X 10.5.6, Intel. 

1. visit http://www.openoffice.org/

2. click Log In

3. begin typing Username

4. allow AutoFill to complete Username


= Expected =

Site should gain saved password from Mac OS X keychain, AutoFill should complete the Password field. 


= Bug =

Password field remains blank. 


= Workaround =

1. click Login _without_ entering a password

2. where the standard Log In dialogue seems to not draw a password from keychain, the failure screen 
succeeds

3. allow AutoFill to complete Username and Password

4. Log in


= Reproduction =

Behaviour is slightly different in WebKit nightly r40534, I'll review in r40535.
Comment 1 Graham Perrin 2009-02-03 17:40:28 UTC 
Same behaviour in WebKit nightly r40535.

http://lists.apple.com/archives/Web-dev/2008/Oct/threads.html#00007 includes a thread, 

> Writing web pages that allow Safari to remember login credentials


= See also =

http://dev.plone.org/plone/ticket/7373 

> … prevents 'Site login' interaction with Mac OS keychain
Comment 2 Graham Perrin 2009-02-03 17:58:59 UTC 
Created attachment 59868 [details]
preference to AutoFill
Comment 3 stx123 2009-02-06 07:33:19 UTC 
moving to website...
Comment 4 i2initiatives 2009-02-06 08:46:21 UTC 
Hi Graham,

From the thread you linked, it sounds like this is a Webkit bug. I know that the
form works with the remember password features in Firefox, IE and with Opera's
wand - unless there is a specific example of a fix for Safari/Webkit I'm afraid
there's not much I can do - someone else might know, so I'll bring this issue to
the attention of the website-dev mailing list.
Comment 5 Graham Perrin 2009-02-06 16:08:35 UTC 
Thanks for speedy response. 

https://bugs.webkit.org/show_bug.cgi?id=16027#c10 (resolved invalid in WebKit Bugzilla): 

> a security change in Safari 3. It's possible that Safari might one
> day find another way to address this kind of issue, but for now
> the best bet is for the site to be redesigned to have the
> username/password fields visible when the page loads.

Does that help (is that relevant to this issue 98807)?
Comment 6 i2initiatives 2009-02-06 20:32:57 UTC 
Making the form visible by default would make the header far too cluttered on
every single page - we don't want to nag people to log in all the time.

There are 4 possible alternatives that I can see (it could be a combination of 1
& 2, while 3 & 4 are undesirable IMO):

1) Clicking the yellow icon next to "You are not logged in" - this will always
redirect you to the standard log in page
2) Using JavaScript, detect if the browser is Safari/Webkit and set the log in
button to redirect to the login page instead of opening up the login area
3) Remove the login functionality altogether from the header and redirect
everyone to the standard log in page
4) Make the header functions visible by default
Comment 7 Rob Weir 2013-01-16 21:53:50 UTC 
Obsolete with move to Apache.