when cutting and pasting a password from 1Password, the pasted password substitutes HTML entities

dfp · May 2017

When copying a password from 1Password on my iPhone and then pasting it into Mail or Messages, some characters are replaced with HTML entities ("]" gets replaced with "%5d"). I get why a web form would sanitize input on submit, but I don't think 1Password should be doing this, as it makes the passwords unusable in some situations. I think you're getting a little too fancy here.

Behavior is correct on MacOS.

1Password Version: 6.5.4
Extension Version: Not Provided
OS Version: IOS 10.3.1
Sync Type: iCloud
Referrer: forum-search:cut paste html entities

Ben · May 2017

Hi @dfp,

Thanks for taking the time to write in.

Unfortunately it isn't 1Password doing this. I say unfortunately because if it were us doing it, it would be easy to fix. :) If you paste into apps other than Mail or Messages you'll see this does not happen. It is only with Mail and Messages that it does.

Ben

P.S. For what its worth, we wouldn't recommend sending credentials via Mail or Messages anyway, as with the exception of iMessage these transmissions are not encrypted.

dfp · May 2017

Controlled environment and I'm not a newbie, but thanks for the sermon. And sorry, but "gosh it's just not our problem" is a bit lame.

AGAlumB · May 2017

No need to be rude. Even if you're aware of the risks of sending sensitive data over insecure channels such as email, people other than you reading this discussion might not be. I'm sorry Ben's answer wasn't what you wanted to hear, but it's the truth. And that isn't even what he said. 1Password simply doesn't have any control over paste behaviour in other apps, especially on iOS where everything is sandboxed.

when cutting and pasting a password from 1Password, the pasted password substitutes HTML entities

Comments