> I (lately) discovered this very undesirable feature of Google Chrome 34 > which propose the user to save its password even if autocomplete is off
I salute them for that choice! > The only remaining solution is to hack the login page for example by adding > hidden input fields (see http://stackoverflow.com/a/22694173/2008215 ). > > Do you think we should import this hack in the CAS server? Strongly recommend against it. > How to manage it? Leave it up to user choice. I have the "autocomple=on" extension in Chrome, and I'm happy to learn I'll no longer need it. I would imagine you'll have an "autocomplete=off" extension in the near future, and I would recommend you offer it to your users. I think putting the choice of credential storage in the users' hands is exactly where it belongs. M -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
