Hi everyone
Must admit this is the first time Ive seen Netscape do this, so thought Id better post here.
It specifically concerns the register.asp page and a test with Netscape 7.02. It came about when I was trying to make the username an editable field and also to allow the Admin to add users via the register page ... without having to logout and register each new user.
First image shows the standard register page. Note how the password field has a "value", yet the code in the HTML doesn't. If you change the HTML code for the input box from name="password" to name="upassword", it doesn't prefill. Its been ages since I brushed up on my HTML spec, but Im pretty sure there are no reserved words in HTML?
Anyway, when I made some changes to the form to allow the editing of the username field (most of the changes were as per MadDog MOD) it got more interesting. Image 2 shows the Administrator account "editing" an existing account (username thekiwi), note:
- Username is "Administrator", which it isn't! Its thekiwi
- This is evidenced by response.write of strUsername at the top
- VIewing the source in Netscape shows "thekiwi" as the value, but obviously it isn't displaying this.
- It has to be getting the word "administrator" from somewhere, presumable a session variable or cookie.
- As soon as you rename the text box from name="name" to name="username" all works as expected.
- Again, the password is populated, contrary to the actual HTML
So, just a heads up. For WFF is would prob be a safer option to not use words which have the potential to be reserved, eg "name" and "password".
Edited by thekiwi
Topic Options
Post Options
Thanks(0)
thekiwi wrote:
