New issue
Advanced search Search tips

Issue 773958 link

Starred by 1 user

Issue metadata

Status: Duplicate
Merged: issue 431618
Owner: ----
Closed: Jan 2018
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 3
Type: Bug

Blocking:
issue 774955



Sign in to add a comment

Password does not get saved for page with self-signed certificate

Reported by ferndrig...@gmail.com, Oct 12 2017

Issue description

Chrome Version: <From about:version: Google Chrome 61.0.3163.100 (Offizieller Build) (64-Bit) (cohort: Stable)>
Chrome OS Version: <From about:version: Platform Windows (10)>
Network info: <network, encryption type, router model (if known)>

Please specify Cr-* of the system to which this bug/feature applies (add
the label below).

Steps To Reproduce:
(1) Enter any FRITZ!Box router URL (IP:PORT)
(2) Enter user/pwd
(3) Log in

Expected Result:
User/pwd get saved

Actual Result:
Only user gets saved, pwd never gets saved

How frequently does this problem reproduce? (Always, sometimes, hard to
reproduce?)
Always

What is the impact to the user, and is there a workaround? If so, what is
it?
I need to store my pwd for this log-in separately, which is not optimal, since I now store all my passwords in Google Passwords (since it is very trustworthy)

Please provide any additional information below. Attach a screen shot or
log if possible.
Screenshot attached.

Possible reason for this outcome:
I assume the pwd does not get saved, because this router site is claimed as "not secure" because the HTTPS certificate is not verified by an official party, but rather by the router itself. But since this seems to be a common practice (and not really a security issue), Google should allow (on request) to save the pwd anyway.

So at the end, this might be a feature request with the following feature:
Allow users to save passwords from "unsecure" HTTPS sites upon request (for users who know what they are doing).

Thank you.


 
The router URL is a public (not local) one.
login.PNG
9.8 KB View Download
Components: UI>Browser>Passwords

Comment 4 by battre@chromium.org, Oct 16 2017

Blocking: 77955

Comment 5 by battre@chromium.org, Oct 16 2017

Summary: Password does not get saved for page with self-signed certificate (was: Password does not get saved)

Comment 6 by vabr@chromium.org, Oct 19 2017

Blocking: -77955 774955
Labels: Hotlist-Polish
Status: Available (was: Unconfirmed)
Thanks for the report. I'm afraid there is also another issue with storing passwords on Fritzbox:  bug 532198 .

As for the issue with self-signed certificates, our team starts to looking into ways to make password manager work without exposing users to any risks. I'm afraid there is no tracking bug for that yet.

(Also, fixing the reference to the meta-bug.)

Comment 7 by battre@chromium.org, Jan 26 2018

Mergedinto: 431618
Status: Duplicate (was: Available)

Sign in to add a comment