Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Non-working site: https://iclicktz.imbank.com #2400

Open
stefand opened this issue Dec 4, 2024 · 1 comment
Open

Non-working site: https://iclicktz.imbank.com #2400

stefand opened this issue Dec 4, 2024 · 1 comment

Comments

@stefand
Copy link

stefand commented Dec 4, 2024

Filling the password does not work on the website of my tanzanian bank. The username can be filled after enabling username-only detection. The second step - entering the password - shows the keepass icon, keepassxc-browser finds stored passwords, but when attempting to select one, the password field turns red and the keepass icon disappears. My browser is firefox, both Mac OS and Linux are affected.

URL: https://iclicktz.imbank.com/?bank_id=TZ (yes, that GET argument is needed)

No login credentials are needed to reproduce the bug. Use any username - it isn't validated until after entering the password. Store a fictious username + password entry for the site in keepass, enable username-only detection for the site. The username can be filled fine. The password will fail to fill in as described above.

Right click -> insert password only doesn't work either.

I suspect the website is deliberately trying to prevent password managers from working. They block copypaste via javascript. They recently updated their online banking (seems to be based on Infosys Finacle). keepassxc-browser worked fine on the old version.

I do not see any obvious keepassxc-related messages in the developer console output.

@varjolintu
Copy link
Member

This one is tricky. The only way I got it to work was to enter the username manually and then the password field could be only identified after manually pressing the popup's Redetect button. This was after I enabled the Improved Input Field Detection for the site. Probably this could be handled with Custom Login Fields, but it does not yet support Shadow DOM fields properly.

So for now the only workaround while waiting for the fix is to use Auto-Type.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants