What Operating System are you using?

You are basically requesting that the Chrome Password Manager be protected by some sort of Master Password, right?

( Issue 613477 )

Hi,

Iam using an Windows 7 Ultimate 32 bits 

You are basically requesting that the Chrome Password Manager be protected by some sort of Master Password, right?

I think it's something about that. If there is a master password (long password) to encrypt all data including passwords it is not required to access passwords saved in chrome://settings/passwords

Other info: I realized that even without logging in to Chrome it is possible to view passwords saved in chrome://settings/passwords

I believed logging into Google account this could be loaded (even without entering the long password) but even without logging the passwords are accessible

Do you have a Windows login password configured (e.g. when you restart your PC)? Are you promoted to enter that when unmasking a password on the Settings page?

The password is requested if there is one for this device. If not, direct access to the stored passwords

But I noticed additional behavior where this is not necessary:

- when passwords are saved Chrome offers the autocomplete login form > simply access the login page of sites that have passwords stored in Chrome and change the type of 'password' field to 'text'

Yup, it sounds like this is working as expected then.

As to the use of Developer Tools, yes, this is a well-understood issue, mentioned in 613477 and more prominently here: https://textslashplain.com/2017/10/16/stealing-your-own-password-is-not-a-vulnerability/

Agree with #6. 

Mark as work-as-intended.