e3ba342665
Ref https://codeberg.org/forgejo/forgejo/issues/7842#issuecomment-4574366 Currently browsers could offer spellcheck on these fields, my browser does. MDN [recommends](https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Global_attributes/spellcheck#security_and_privacy_concerns) that on fields with sensitive information this property is set to `false` in case 3rd party not-fully-trusted spellchecking service is used. I consider these fields as containing sensitive information, and spellcheck is not useful on them anyway. ### Testing There's currently no integration testing for these TOTP forms. I do plan to add some in my other TOTP-related work. I tested that this did change the behavior in my browser and don't think we need additional testing right now. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7868 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org> |
||
|---|---|---|
| .. | ||
| auth | ||
| dashboard | ||
| notification | ||
| overview | ||
| settings | ||
| code.tmpl | ||
| heatmap.tmpl | ||
| profile.tmpl | ||