Tenable Scan Warning - Password Field With Auto-Complete

[jonathanmassehsj]

[jonathanmassehsj]

Agate version 2.7.4. Mica version 5.0.3

The same security warning appear for mica.

Hope this help,

[jonathanmassehsj]

@ymarcon I investigated a little bit, you just need to add the html tag << autocomplete="new-password" >> to the password box and it will remove this warning.

[ymarcon]

"off" is more appropriate: https://developer.mozilla.org/en-US/docs/Web/HTML/Attributes/autocomplete#values

This is a low security warning. I would suggest that you override the signin.ftl file instead. See doc:

• https://agatedoc.obiba.org/en/latest/admin/pub-configuration.html
• https://micadoc.obiba.org/en/latest/admin/pub-configuration.html