[wp-trac] [WordPress Trac] #55228: Provide Option to Remove Password Visibility Button and Dashicons form WordPress' Login Form

WordPress Trac noreply at wordpress.org
Tue Feb 22 19:08:39 UTC 2022 

#55228: Provide Option to Remove Password Visibility Button and Dashicons form
WordPress' Login Form
-----------------------------+--------------------------------------
 Reporter:  generosus        |      Owner:  (none)
     Type:  feature request  |     Status:  new
 Priority:  normal           |  Milestone:  Awaiting Review
Component:  Security         |    Version:  5.9.1
 Severity:  normal           |   Keywords:  dev-feedback 2nd-opinion
  Focuses:                   |
-----------------------------+--------------------------------------
 **Request:**

 I would like to recommend adding a feature to WordPress that will allow
 the removal of WordPress' login form password visibility button (toggle)
 and dashicons (eyes).

 **Details:**

 https://ibb.co/Xp2Mh8P

 **Reasons:**

 (1) Security Enhancement

 (2) Cleaner UI

 **Implementation:**

 (1) Add a new checkbox field label, titled "**Login Form**", with the
 following checkbox text: "**Disable Password Visibility Button and
 Dashicons**" to **WordPress Dashboard > Settings > General**

 (2) When the checkbox is selected, the code associated with the password
 visibility button and dashicons is removed, or, activates the code snippet
 [provided here]https://wordpress.org/support/topic/help-appreciated-
 remove-visibility-eye-dashicon-from-wp-login-form/.

 **Scenario:**

 A website Administrator goes to his/her WordPress login page and login
 form is auto-filled by the browser but the "Log In" button is never
 clicked. Suddenly, the Administrator is summoned away from his/her desk
 leaving open the opportunity for a co-worker, visitor, disgruntled
 employee, or "hacker in disguise" to click the password visibility button
 thus exposing critical website login information. A quick toggle back to
 "hidden" by the perpetrator and the Administrator will never know what
 happened.

 **Conclusion:**

 By implementing this feature request, WordPress is offering its
 Administrators an optional, valuable login security layer.

 Thank you for reading!

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/55228>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list