Disable autocomplete for passwords (#12851)

Certain vulnerability scanners (Nexpose in my case) will get this "template" page with curl and see that you can autocomplete the password field. This change should disable it.
This commit is contained in:
Andrew Backeby
2021-05-11 17:29:04 +02:00
committed by GitHub
parent 3b0c2c090a
commit 729eccc81a
+1 -1
View File
@@ -24,7 +24,7 @@
</div>
<div class="form-group{{ $errors->has('password') ? ' has-error' : '' }}">
<div class="col-md-12">
<input type="password" name="password" id="password" class="form-control" placeholder="@lang('Password')" />
<input type="password" name="password" id="password" autocomplete="off" class="form-control" placeholder="@lang('Password')" />
@if ($errors->has('password'))
<span class="help-block">
<strong>{{ $errors->first('password') }}</strong>