Where did you install Firefox from? Help Mozilla uncover 3rd party websites that offer problematic Firefox installation by taking part in our campaign. There will be swag, and you'll be featured in our blog if you manage to report at least 10 valid reports!

Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

Learn More

话题已存档。 如果需要帮助请提出新问题。

Can I restrict the password autofill to the exact url / form (sub)domain

mt14
mt14
more options

I have different login forms on different sub domains so I always get a huge lists of different logins. and also I get my password for the basic auth from the web-server on my login form.

I also consider this as a security risk when different sub domains belong to different parties and I accidentally put my password into the wrong form.

Can I config Firefox the way that I get only passwords in the list that match the exact url or at least the (sub)domain?

Another Question As a Web-developer can I do something that my client don't experience such a mess (like giving the login form a special id so passwords are restricted do this particular form.

I have different login forms on different sub domains so I always get a huge lists of different logins. and also I get my password for the basic auth from the web-server on my login form. I also consider this as a security risk when different sub domains belong to different parties and I accidentally put my password into the wrong form. Can I config Firefox the way that I get only passwords in the list that match the exact url or at least the (sub)domain? Another Question As a Web-developer can I do something that my client don't experience such a mess (like giving the login form a special id so passwords are restricted do this particular form.

被采纳的解决方案

Could you test this out and see whether it works for you:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button accepting the risk.

More info on about:config: Configuration Editor for Firefox. The moderators would like us to remind you that changes made through this back door aren't fully supported and aren't guaranteed to continue working in the future.

(2) In the search box in the page, type or paste signon.includeOtherSubdomainsInLookup and pause while the list is filtered

(3) Double-click the preference to switch the value from true to false

Regarding the web dev side of it, I don't know whether the form ID is relevant at all. Possibly the name attributes of the username and password field could be a factor. If they are, and you write their values to hidden fields on form submit, then you could randomize those names.

定位到答案原位置 👍 1

所有回复 (1)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

选择的解决方案

Could you test this out and see whether it works for you:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button accepting the risk.

More info on about:config: Configuration Editor for Firefox. The moderators would like us to remind you that changes made through this back door aren't fully supported and aren't guaranteed to continue working in the future.

(2) In the search box in the page, type or paste signon.includeOtherSubdomainsInLookup and pause while the list is filtered

(3) Double-click the preference to switch the value from true to false

Regarding the web dev side of it, I don't know whether the form ID is relevant at all. Possibly the name attributes of the username and password field could be a factor. If they are, and you write their values to hidden fields on form submit, then you could randomize those names.

由jscher2000 - Support Volunteer于修改