For sites using third party URL's for storing login accounts, how does Firefox select between saved logins with the same URL and username?
I'm starting to notice that some sites are using third party URL's (such as www.microsoftonline.com) for storing login account data. In saved passwords, Firefox stores the URL, username and password. Plenty of sites require that the username be an email address. If two such sites use the same URL, the saved password data would contain duplicate URL/username pairs. it doesn't seem possible that Firefox could retrieve the correct password in such cases. Is there a workaround?
All Replies (3)
Firefox will only store one username and password combination for a specific domain. Firefox would otherwise ask to update the stored password if the usere name is the same and the password is different. I don't know whether current Firefox releases can differentiate between sub domains of the same top level domain and whether it makes a difference if the submit URL is different.
If Firefox shows suggestions if you use the "Fill username/password" item in the right-click context menu then this means that Firefox treats these as belonging to this domain.
This confirms what I suspected. As more sites use third party services for username/password storage and retrieval, the utility of Firefox's saved password scheme will decrease. Hopefully, the developers will recognize this and come up with a more robust scheme.
There is some work being done with recipes like listed in this meta bug.
- Bug 1119454 - (password-recipes) Support per-sites recipes for capturing and filling the user's login credentials
(please do not comment in bug reports
https://bugzilla.mozilla.org/page.cgi?id=etiquette.html)