Jump to content
Mateusz

Masked password entry support

Recommended Posts

Hello Enpass Team!

First of all thank you for the good work with Enpass!

 

I would like to submit a feature request: Masked passwords entry support.

Would it be possible?

image.png.ec7bed998fac5f6c4c52c2388048fe82.png

 

I searched the forum but I didn't find anything like this.

Share this post


Link to post
Share on other sites

Hey @Mateusz

Thanks for using Enpass and writing to us.

We really appreciate you for exploring the app and giving time in finding this valuable suggestion. The suggestion has been noted and forwarded to the development team for further consideration.

Thanks for the suggestion!

  • Like 1

Share this post


Link to post
Share on other sites

Hi @Pratyush Sharma and sorry for late answer.

 

Some of the websites (most are financial services like banks) use masked password entry on login. It means you have to enter only some of the password signs, e.g. first, third and the last.

If you password is 12345qwerty (hope it's not ;) ) and you get this input:

image.png.5deb671cf593a113ea9126b8564d473d.png

then you have to enter: 1,2,4 and y.

 

Which password sign you need to enter is randomize by the bank on each login.

 

Supporting this by Enpass means recognize which fields need to be filled with corresponding sign from stored password and autofill.

 

I hope it's now more clear to you.

Edited by Mateusz

Share this post


Link to post
Share on other sites
On 6/10/2020 at 8:48 AM, Mateusz said:

Hi @Pratyush Sharma and sorry for late answer.

 

Some of the websites (most are financial services like banks) use masked password entry on login. It means you have to enter only some of the password signs, e.g. first, third and the last.

If you password is 12345qwerty (hope it's not ;) ) and you get this input:

image.png.5deb671cf593a113ea9126b8564d473d.png

then you have to enter: 1,2,4 and y.

 

Which password sign you need to enter is randomize by the bank on each login.

 

Supporting this by Enpass means recognize which fields need to be filled with corresponding sign from stored password and autofill.

 

I hope it's now more clear to you.

Wow that is creepy. That implies that they store the plaintext password somewhere. Urgh.

  • Like 1

Share this post


Link to post
Share on other sites

I've seen this done to mask User ID (which as Hitman mentioned above, indicates plain-text storage, but for a User ID that's OK), but for a Password? I hope I don't run into any systems that use this, especially not financial services companies!

  • Like 1

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...