New Forums still don't trigger Firefox (possible others) to remember login details

[LethalLethality]

This was a problem with the old forums, and I brought this up in the temporary discussions area when it was made known you'd auto-logout after 45 minutes of inactivity. A couple other people also stated it doesn't do it for them as well, but I don't know what browser they use.

Why is it that every other forums and site I use regularly asks if I want my log in details saved but this one doesn't? I do not want to retype both my username and password every time I have to log in.

Please check and see if there's a setting you can activate on your side of things that will trigger the feature. I'd rather not use an external password manager add-on.

[0Pinger]

The is no remember login from what I saw, so it's not cookied on this forum yet, but Operas wand feature fills in for that

[Elderban]

Since the forums are now secure (https), Firefox wont ask to remember your information.

[LethalLethality]

Wonderful...

/sarcasm

[Sapience]

Since the forums are now secure (https), Firefox wont ask to remember your information.

Remembering passwords was removed in favor of increased security.

[Magol]

If you don't mind your security just for this forum, (I'm pretty confident about mine, so i'm doing the following). You can just program your own login Form that will send the info to turbine AND add the mail and the password into that. That way all you need to do to log in will be to click into "Log In" button in your edited webpage. That .html file MUST be saved on your local hard drive and not on the internet (since the password is not encrypted, and all what this does is to just have the account and the password typed, anyone could access to that password if was posted on the internet, So just save it as a file in... i don't know, your desktop or whatever).

As long as you don't have any trojans, not even a keylogger (i think, not sure how they work) could get your password, since it's already typed there.

Notice: This trick is only a suggestion, and the usage of this informacion to save passwords is on your own.






P.S. This is the original (unedited) form code. Anyone with any browser can access to it.

Code:

<form id="login" name="login" enctype="application/x-www-form-urlencoded" method="post" autocomplete="off" action="/en/auth/login"><dl class="zend_form">
<dt id="csrf-label">#</dt>
<dd id="csrf-element">
<input type="hidden" name="csrf" value="97e62d48d56cf8e2444f48bd9fbaf5e8" id="csrf"></dd>
<dt id="login_group-label">#</dt><dd id="login_group-element"><fieldset id="fieldset-login_group"><dl>
<dt id="identity-label"><label for="identity" class="required">Username</label></dt>
<dd id="identity-element">
<input type="text" name="identity" id="identity" value="" placeholder="Username" class="required amsnativeidentity" maxlength="100"></dd>
<dt id="secret-label"><label for="secret" class="required">Password</label></dt>
<dd id="secret-element">
<input type="password" name="secret" id="secret" value="" placeholder="Password" class="required" maxlength="100"></dd></dl></fieldset></dd>
<dt id="submit_group-label">#</dt><dd id="submit_group-element"><fieldset id="fieldset-submit_group"><dl>
<dt id="submit-label">#</dt><dd id="submit-element">
<input type="submit" name="submit" id="submit" value="Submit" class="btn"></dd></dl></fieldset></dd></dl></form>

How to do it?
1: Open the website with the log in form, press ctrl + S, save it in your desktop (for example).
2: Right click and open with Notepad:
3: You would need to change these 2 reds things:
<input type="text" name="identity" id="identity" value="YourAccountName" placeholder="Username" class="required amsnativeidentity" maxlength="100"></dd>
<input type="password" name="secret" id="secret" value="YourPassword" placeholder="Password" class="required" maxlength="100"></dd></dl></fieldset></dd>
4: Save and test if works.

(Sadly i didn't tested this before. I did with so many other websites and they are working, but not with new lotro forum ones. The possibilities of failing are very high because i don't really know a lot about website programming and the hidden value i don't know what it's. But this could be a starting point for someone willing to try this out)

[LethalLethality]

So why did you tell me in the temporary area that we can tell Firefox to remember our login since you removed the ability to stay logged in?

Edit: For firefox users, I decided to use this. It allows you to manually add usernames and passwords to the password list, even sites that disallow it. If I get "hacked" I take full responsibility. I don't need to be babysat by the company to protect my stuff.

https://addons.mozilla.org/en-us/fir...ssword-editor/

[Magol]

Edit: For firefox users, I decided to use this. It allows you to manually add usernames and passwords to the password list, even sites that disallow it. If I get "hacked" I take full responsibility. I don't need to be babysat by the company to protect my stuff.

Agreed, it's completely discouraging. At least they could just give us the choice of Remember or NOT remember (without bugs, of course). But forcing us to use the one they want is not cool.

[Gandolf_TheOld]

This was a problem with the old forums, and I brought this up in the temporary discussions area when it was made known you'd auto-logout after 45 minutes of inactivity. A couple other people also stated it doesn't do it for them as well, but I don't know what browser they use.

Why is it that every other forums and site I use regularly asks if I want my log in details saved but this one doesn't? I do not want to retype both my username and password every time I have to log in.

Please check and see if there's a setting you can activate on your side of things that will trigger the feature. I'd rather not use an external password manager add-on.

Turbine did not remove the ability to remember your password, that ability is not in the specification for httpS, so take it up with W3C.org.

Now, if you want to be automatically logged in to a website and to do it securely, try DashLane or other client login/password management program. BUT! Better read the documentation first, with these programs if you forget your master password you are S.O.L., unless you subscribe and back up your login/password database on their cloud.

I use Dashlane.

[Lenton]

Remembering passwords was removed in favor of increased security.

This was a bad move for the DDO forums revamp, and a bad move for LOTRO as well. It simply makes it very inconvenient for the user to actually use the forums, while providing a very minimal boost in security.

You will very likely see a sharp fall off in forum participation shortly as players get tired of constantly logging in to use the forums.

[mjk47]

The login form has the "autocomplete=off" property set.

Ths argument about security is a little specious. I believe that the user should be given the choice as to whether or not the browser will remember their login details. Unlike the permissibility of uploads, it is a security issue for the user, not the site.

[WBS]

On a related note to this: I've been browsing the new forums for the first time and been logged out twice so far in less than ten minutes when clicking on a topic.

[Hurin]

Specious?

Those who really want to do it can find third-party apps that will allow them to do so. One has already been suggested above.

But using Firefox's built-in ability to do so (even were it possible given what someone said about https/ssl above) is a recipe for disaster for a non-trivial number of people.

Have you ever gone into Firefox's Security settings and clicked "show passwords?" There would be your game password, in plain text. . . ready to be viewed by anyone. Whether it be malware, a person who shares the computer (after you "remember" out of habit on a shared machine), a mischievous young (or older) sibling. . . etc.

It might not affect you but others would be affected and Turbine would be the one taking the angry calls and picking up the pieces for those affected.

Again, you can arrange to do it with 3rd-party apps if you really must have this functionality. But much like paypal, my bank, and just about any other site with credentials worth protecting, the browser's built-in password saving feature isn't a good fit here.

--H

[LethalLethality]

This was a bad move for the DDO forums revamp, and a bad move for LOTRO as well. It simply makes it very inconvenient for the user to actually use the forums, while providing a very minimal boost in security.

You will very likely see a sharp fall off in forum participation shortly as players get tired of constantly logging in to use the forums.

And they just did it as it was autocompleting until I posted the link to manually add UN&P to your list. I tested it about five times before posting it, now it won't. Really?

Edit: Now it seems to be auto-completing again. I dunno. I'm gonna give it a couple of days for them to get things sorted out. If they want to make it as difficult as possible to log in, I can live without the forums. If they want to actually give their player base a choice, I'm all for it.