New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[OTHER] Viewing password as user enters data in form #9689
Comments
You would have to override the input password type, change to text on click. Deleted...do not think this is a good idea. |
This is an interesting read regarding implementing the password reveal functionality. Some (most?) browsers support this functionality natively (Edge for example), but can be turned off by the user. This could result in some user friction if they've opted to disable this feature and you provide this functionality. Implementing this functionality when a browser natively supports it may also have some unexpected issues. |
If its built into browser, that is a good place for it, don't implement your own. |
NIST documentation recommends otherwise:
5.1.1.2 - Memorized Secret Verifiers |
That works for sighted users, They can ensure nobody is looking. For screen reader users you have to consider who is within hearing range if the user doesn't have headphones. You would need a technique that would have the screen reader read the characters individually (announcing upper or lower case) rather than trying to read the password as a word. Imagine trying to pronounce Sw0rDPl@y. |
This looks to be addressed in the gov.uk article
|
Is there a standard way of implementing a button to allow users to view the password they have entered into a form? Usually something with a little eye icon?
For example
The text was updated successfully, but these errors were encountered: