Reloading registration page with F5 key breaks the flow

element-hq / element-web

A glossy Matrix collaboration client for the web.

https://element.io

GNU Affero General Public License v3.0

11.2k stars 2k forks source link

Reloading registration page with F5 key breaks the flow #15616

Closed notramo closed 2 years ago

notramo commented 4 years ago

Sometimes it gets stuck because of network problems. If it is timed out, and the page is reloaded, entered credentials are lost, and the progress of the flow is aborted. It throws the user back to the server selection screen (complete restarting of the registration). It can cause problems if an add-on (like uMatrix) blocks reCRAPTCHA, and after allowing it, the page have to be refreshed.

t3chguy commented 4 years ago

So you'd rather it store your entered credentials in plaintext? That'd be especially awful for users who reuse passwords between services

notramo commented 4 years ago

It should be stored in session storage, or somehow to persist between reloads, but after closing the tab, it should be deleted. Or maybe only not store password, but everything else. The following are not private:

e-mail address (it is included cleartext in every email you get)
selected server to register on
Matrix username

So these fields could persist between reloads.

t3chguy commented 2 years ago

We now warn the user that data will be lost to prevent f5-ing