Hello Jason, The GitHub issue #4744 <https://github.com/gocd/gocd/issues/4744> is probably relevant. Browsers, especially Chrome, seem to have made changes recently which ignore attempts to turn off saving of credentials. In that issue, Aditya links to Chrome bug 468153 <https://bugs.chromium.org/p/chromium/issues/detail?id=468153#c106> which links to other issues. We don't like the behavior as well, but the Chrome team has taken a strong stance against allowing that.
If anyone has ideas on how to handle non-login password fields (which the secure environment variable field is), we're all ears. One approach I've thought of is to rewrite it, using Javascript, as a normal text field, but it's frustrating since this should be handled by the browser. PRs are especially welcome, of course. Regards, Aravind On Wed, Jul 3, 2019 at 1:46 PM Jason Duff <[email protected]> wrote: > As of version 18.7.0 GO appears to auto save my AD credentials every time > I edit/save an environment variable for a pipeline. In addition, every > time i save, it adds another one/duplicate and then says it can't save > because there are duplicate environment variables. > > Upon further investigation, this appears to be an "autocomplete" feature > of Chrome. It is likely picking up the credentials from when I log into GO > initially and, if Chrome autocomplete/caching > feature is on, it will save and populate the fields in the secure > variables section as well. > > This may be due to the use of the "autocomplete='off'" attribute on the > input field. I think it needs to be something else as it appears Chrome is > ignoring it. > > Thoughts? > > Thanks. > -- You received this message because you are subscribed to the Google Groups "go-cd" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/go-cd/CACxychHdi%3Dzc%2B5SC0Xbigx4FLq08N0zwjo2hokPZfcUqo0bjmQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
