Reputation: 11245
Play 2.0 password field constructor: no value attrib?
Not sure if this is a security feature, an oversight, or me missing the ocean for the waves, but wondering why there is no value attribute for the password field constructor
This is not an issue for user signup and other form creation events, but becomes a headache when, for example, a user renewal form does not have the password field filled in (and thus fails validation, which is ironic given that they just logged in in order to be able to renew in the first place ;-))
My workaround has been to set the value attrib manually by supplying it as an extra argument:
@inputPassword(
_form("password"), '_label-> "Password*", 'class-> "required",
'value-> _form("password").value map{Some(_)} getOrElse Some("")
)
would prefer the value attribute included by default, however, as with other input elements. Yes, I can override it, but wondering what the dealy-O is regardless
Upvotes: 1
Views: 312
Answers (1)
Reputation: 21564
To me, you shouldn't be able to retrieve the user password in any way, since the password should be encrypted before storing it somewhere.
Upvotes: 2
Related Questions
- scala validate password and confirm password in play framework
- Play framework scala form object for password field binding?
- Basic authentication with play2-auth in Play 2.5.x
- Play Framework Form Error Handling
- How to use play's form validation to check if the password matches
- Having trouble with getting basic auth from play framework
- Compilation error :type mismatch found when validating sign up form passwords in scala
- Why do I get `Configuration error[Missing application.secret]` in Play 2?
- Play 2.0 form - field "verifying" method is not a member
- How to use a Scala Secure Trait in PlayFramework?