Support Password manager in vSphere MFA signin form

[jlecour]

Have you already contact our help centre?

• Yes, I have contact the help centre.

Describe the problem

The vSphere MFA login form prevents password managers (like 1Password) to auto-fill the one-time password (TOTP).

Here is the current form HTML code :

<form class="form-2fa" method="POST">
      <input type="text" id="login" name="u" placeholder="Login"><br>
      <input type="text" id="token" name="p" class="pincode" placeholder="Authentication Token" maxlength="7"><br>
      <button type="submit">Confirm</button>
    </form>

The autocomplete from the password manager adds only 3 of the 6 digits or the TOTP.

Describe the solution

If I add some autocomplete attributes (like documented here and there) it works :

<form class="form-2fa" method="POST">
      <input type="text" id="login" name="u" autocomplete="username" placeholder="Login"><br>
      <input type="text" id="token" name="p" autocomplete="one-time-code" class="pincode" placeholder="Authentication Token" maxlength="7"><br>
      <button type="submit">Confirm</button>
    </form>

Describe alternatives you've considered

No response

Additional context

No response

[jlecour]

As a temporary workaround, I've added the Code Injector extension to Firefox with this rule :

Path: https://pcc-[-0-9]+\.ovh\.com/auth/auth

Javascript:

document.getElementById("login").setAttribute("autocomplete", "username")
document.getElementById("token").setAttribute("autocomplete", "one-time-code")

It works great, validating the real fix on your side.

[jlecour]

This still hits me everyday on browsers where I can't have my workaround.

Is there any reason for not fixing this in the form ?