top | item 33099485

(no title)

joncfoo | 3 years ago

The virtual keyboard on the Treasury Direct login page is terrible, especially for those of us who use a password manager. I use the following bookmarklet that "types" each letter via the exposed JavaScript function on the page itself.

  javascript:prompt('treasurydirect.gov password please').split('').forEach(PasswordVK)

easy-peasy

discuss

sebk|3 years ago

Similarly, I have a Greasemonkey userscript to remove the readonly attribute for the password input form so my password manager works:

  for (const e of document.getElementsByClassName("pwordinput")) { 
    e.removeAttribute('readonly'); 
  }

joshiee|3 years ago

Meh imo it's easier to have the bookmarklet remove read only on the form and then just use the password manager like normal

adammoelis|3 years ago

Does any other website in the world use a virtual keyboard like that? I don't really understand why they do it. To prevent keystroke tracking I guess? It's bizarre.

ryandrake|3 years ago

I always just paste my password into the field. That's always worked for me. Safari/macOS.

hirop|3 years ago

Yes I believe it's to counter key loggers.

staticman2|3 years ago

HSBC used to use a virtual keyboard but I wouldn't be surprised if they dropped it. (I am no longer a customer.)

hemloc_io|3 years ago

hah! I edit the frontend html every time so I can use my password manager