1PW Helper, opens a new web page, instead of pasting credentials into current web page

Windows 7 Pro, 64-Bit, 1 PW7.2.581

A web page which requires login credentials was open in my Chrome. I clicked on the 1PW helper
in the Chrome toolbar, logged into 1PW, saw the login entry which I wanted to use. When I clicked on that entry in the 1PW helper,
a new tab was opened to the same web page, my credentials were pasted into the new tab, instead in the original tab.

Although this report is for the Windows version of 1PW, it happens to me on Mac and iOS as well, on various websites (not always the same one). This is very frustrating, and is one of many reasons why I want to ditch 1PW. It's just not reliable any more.


1Password Version: 7.2.581
Extension Version: TBD
OS Version: Windows 7 Pro, 64-Bit
Sync Type: ???

Comments

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @cappy,

    Thanks for reporting this.

    When I clicked on that entry in the 1PW helper, a new tab was opened to the same web page, my credentials were pasted into the new tab, instead in the original tab.

    Does this happen on every Login item or just this specific site?

    1Password can do this if it doesn't believe it is the same site as you're on, it compares the saved URL and the URL you're on. If it is too much of a difference, to protect you, it'll open in a new tab instead.

    Can you check if they're both exactly the same URL?

  • "on various websites (not always the same one)"

    If the helper displays to the login entry for this website, how can it think the url should be different?

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @cappy,

    Well, if you're on insecure http://a.b.c, 1Password won't fill it but opens the secure https://a.b.c tab instead. It depends on the actual saved URLs.

    Is there a specific site that you can share where it happens, or you can email us the site address at [email protected], if they're both saved with the same URLs? We're not aware of any issues like this and would love to investigate.

  • I've added two more urls to my login entry for that site, it seems to have fixed the issue.

    However, 1PW doesn't press the login button, after it pastes the credentials.
    I've noticed that sometimes it presses Submit/Login/etc, sometimes 1PW does not.

    Why is this?

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @cappy,

    Do you know if that site uses an iframe? If yes, that could be the reason behind the behavior you're seeing, some sites load a file from a separate domain via iframe. This can prevent 1Password from wanting to fill as it could be abused against 1Password. Adding the multiple URLs permits 1Password to fill into the iframe with your permission.

    However, 1PW doesn't press the login button, after it pastes the credentials. I've noticed that sometimes it presses Submit/Login/etc, sometimes 1PW does not.

    It is dependant on the site itself, the design may not permit 1Password from "fake-pressing" the enter key because it shift focus elsewhere. We need the focus to be in the password field, so that the site can submit the form if it sees the enter key.

    Unfortunately, Auto-submit is becoming more fragile the more complex the sites get and we may have to remove it in a future update. There's also a good chance that auto-submit can submit something else instead, which is another reason we may remove it.

  • Do you know if that site uses an iframe? If

    Hi Mike

    I wouldn't know, I'm not a web developer. Here is the URL
    https://youtrack.jetbrains.com

  • MikeTMikeT Agile Samurai

    Team Member

    I can't reproduce it; it all goes to https://hub.jetbrains.com, so there's no reason for 1Password to redirect you and my Login item was saved with https://hub.jetbrains.com as well.

    Are you using the third party authentication option like AOL/Google on the sign-in page?

  • Are you using the third party authentication option like AOL/Google on the sign-in page?

    I don't believe so.

    "I've added two more urls to my login entry for that site, it seems to have fixed the issue."

  • MikeTMikeT Agile Samurai

    Team Member

    Right, I wasn't sure what type of URLs you were adding but okay. At least it works now.

  • All of the urls for this login are https

  • MikeTMikeT Agile Samurai

    Team Member

    Right, I meant the full addresses. Some site, you have to add two or more different domains to make it work.

    I suspect you may have an outdated Login item that just needs the new URL even if they're on the same domain.

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @cappy,

    Thanks, I didn't mean for you to add them here. We're all up to date now and there's nothing for us to do as it is working fine now.

This discussion has been closed.