Non-working sites #1358
Comments
|
Not sure if it's a not-working site, or rather a feature request: |
We don't want to fill any hidden password fields. |
Ok, thanks. Guess that makes sense. Still, there's no way I now can auto-fill-and-submit on this site. |
|
I'm having a problem accessing the CUPS (common unix printing system) admin page on a Fedora Linux system. The URL is https://localhost:631/admin and I've tried specifying this in KeePassXC both with and without the admin part of the URL. When I browse to this page, there is no initial request for a password, and that is the expected behavior:
Then, when I click on an action, like "Add Printer", a login box pops up, but KeyPassXC-Browser doesn't appear to notice it, perhaps because the URL stays the same:
If I attempt to "Choose custom login fields", that tool is shown behind the login box, and there doesn't appear to be any way to select the user name and password fields:
This is not the only URL with this problem. I also see it on a Raspberry Pi running the "pi-star" Ham radio software. From the pi-star Dashboard page (no password needed), if I click on "Configuration", a login box pops up, the URL doesn't change, and KeyPassXC-Browser doesn't notice the login box. Is there a way to make this sort of thing work? Incidentally, when I was using the built-in Firefox password system, it was able to fill in the credentials on these login boxes. |
|
@stevefalco Can you use the Web Inspector to check how that dialog is inserted to the page? |
|
Ok, here is what the admin page shows before clicking "Add Printer". I've highlighted the entry for "Add Printer":
Once I click "Add Printer", the Inspector becomes blank!
I've never used the inspector before, so I'm probably doing something wrong. Please give me some more "newbie" instructions and I'll get you whatever data you need. :-) |
Are you sure that is not a HTTP Basic Auth dialog? |
That was my thinking also, based on the screenshot (and a touch of memory from using CUPS a long while ago). Maybe we should file a request against CUPS if they could move to an integrated log-in mechanism instead? |
HTTP Basic Auth should still work, but for now you can only fill credentials from the extension toolbar icon. |
|
I don't know enough about http. How would I test to see if this is a basic auth dialog? I'm not sure what you mean by "for now you can only fill credentials from the extension toolbar icon". There is a "Redetect login fields" button when I click on the extension icon, but the button doesn't do anything for this dialog - here is what it looks like after clicking "Redetect login fields" :
I noticed that the KeePassXC app has browser integration settings "Use this entry only with HTTP Basic Auth" and "Do not use this entry with HTTP Basic Auth". Should I select either of those? Lastly, is there a way to turn on debugging to see what, if anything, is passed to the extension? |
|
The new Synology login page (on v7 OS) makes KeepassXC-browser unusable. In this version, contrary to v6, they adopted a JS-based form where v6 was a plain old HTML form. So this starts with a form with 1 input for the username:
and you have to click to the next arrow to reveal the password
But, somehow, they decided to do something I've never seen in webdev before. They just reuse the same
It takes the value |
|
Regarding my issues from a week or two ago with a CUPS URL and a Pi-Star ham radio URL, it turns out these sites are using basic auth. I turned on the keepassxc-browser setting "Automatically fill in HTTP Basic Auth dialogs and submit them" and now both URLs work properly. So keepassxc-browser doesn't even detect the login/password fields when that setting is off, but does auto-fill/auto-submit the information when that setting is on. In fact, when the setting is on, I don't even see the normal login screen - I see a little popup from keepassxc-browser instead. Is that the expected behavior? |
Yes :) There's already an alternative implementation that shows a proper dialog on the page for HTTP Basic Auth but it's still under work. |
|
Thank You, I will try it. |
|
I can't get login fields detected for Bask Bank.
|
|
@jibbers42 I have no good solution for this site. The input fields are inside Shadow DOM and the Improved Input Field Detection did not help. Also trying to fill manually from the context menu is interrupted by the page scripts that are trying to manipulate or check the input values. |
|
@varjolintu OK, thanks for having a look |
|
@varjolintu I guess I don't really know what Auto-Type is. I assumed it would auto fill in my user/pass without me doing anything, but I always need to click a field popup or use the extension icon. Is that all I would need to enable to try your suggestion? |
|
Auto-type is not browser extension. Please read the user guide for more information. |
You can try triggering the Global Auto-Type using the browser extension's context menu on the input field. |
Wow that worked great - I didn't know that menu item was there, thanks! |
|
Using the following: I go to https://www.icloud.com/ and click the keepassxc-browser icon in the 'Email or Phone Number' field and I get the following response: "Error! No logins found. https://idmsa.apple.com" I've added https://idmsa.apple.com to the URL field for the entry in KeepassXC, and I have also added https://www.icloud.com as an additional URL in the Browser Integration section for the entry, but no luck. Did I miss something? or is this a bug? |
I can replicate this reported issue at-will every single time using Edge. I even enabled for www.icloud.com via the KeePassXC browser extension, and it does not fix the issue:
|
|
@mrtoikka @TESTER-sec For me the automatic allowing of Cross-Origin iframes did the job. I'll add an automatic exception for that to the Predefined Sites feature. EDIT: I've noticed some bugs with PayPal's segmented 2FA and Patreon's login page also. Gonna fix those soon, so no need to report those. |
Any updates on this? |
|
@vbeffa Add |
I am unsure what you mean by "automatic allowing of Cross-Origin iframes." I had to manually add This is the same issue as I reported earlier in this thread for ADP login web pages: "Right-click -> Fill Password remains not functioning; I must copy the password via the KeePassX GUI and then manually paste the password" |
|
@TESTER-sec The URL for allowing Cross-Origin Iframes for Site Preferences is |
Understood. Because of I also tried various other configuration, such as enhanced field detection in the automatic exceptions, but the only thing that works (for me) is to copy the password from the KeePassXC GUI (Right-Click > Copy Password) and then paste it. Finally, for www.icloud.com this is the only configuration that works (for me) to make User ID fill possible (but no subsequent password fill):
|
|
@TESTER-sec For Shadow DOM every element must be checked on the page to find them first, and then parse each Shadow DOM element's content. It's very time-consuming and that is why it isn't enabled by default. I have found multiple pages that no longer work with the password fill, and I'm gonna provide a fix for all of them at the same time. EDIT: With iCloud the password is filled if you press the Username Icon again. |
Thank you. |
Actually, try this:
|
|
Just wanted to add a vote to Apple Login password fill no longer working. Username fill works without any issue, but when the password field is added to the form, KeepassXC refuses to fill it, even when explicitly choosing "Fill Password". Have tried the suggestions above, including adding a setting for follow cross-origin frames for https://idmsa.apple.com to no avail. This used to work (without that explicit setting), but has regressed recently. |
Already fixed for the next version (see #2351). Just wait for the release. Of course you can already add the option manually for Apple's login page. |
@varjolintu I added the option manually and it still does not work. |
|
|
|
Here is a screencast with KeepassXC debug logging turned on, maybe it can help: Screencast_20241016_111612.webm |
|
Ah, they've changed the login page to include two buttons. I gotta make a new exception for that. Thanks for the info. |
|
@rocketraman Those buttons are possibly only seen when you've set a passkey for your Apple login? Have you set up one? |
I have not configured a passkey for my Apple login because Apple's implementation works only with iOS devices (can't use KeepassXC or my Yubikey AFAIK). Perhaps it is using some other signal to display that button. I do have passkeys enabled elsewhere. And I do have a developer account. |
and others
Please report any non-working sites to this thread instead of creating a new issue.
Provide the following info when making a report:
Please note that sites that require credentials to be made are with lower priority.
Separately reported non-working sites:
#803 - Nextcloud timeout password prompt
#879 - Bank of the Philippine Islands: https://online.bpi.com.ph/portalserver/onlinebanking/sign-in
#1269 - Mailgun: https://login.mailgun.com/ (Needs an exception for the password field)
#2045 - https://ibank.bog.ge/
#2047 - Flatex: https://www.flatex.de
#2060 - Runtastic: https://www.runtastic.com/en/login
#2109 - Yahoo new password fill problem
The text was updated successfully, but these errors were encountered: