cancel
Showing results for 
Search instead for 
Did you mean: 

APM Forms SSO V2 disable password save prompt

Walter_Kacynski
Cirrostratus
Cirrostratus

When using APM Forms SSO V2 (Client-Side JavaScript) I observe the the browser prompts to save the users password. However the password being submitted is the f5-sso-token marker that APM uses to perform password substitution as the request flows to the backend. This is obviously not the correct password that the browser should cache. Is there a way to indicate that this password should not be saved?

4 REPLIES 4

Sgbjrn
Nimbostratus
Nimbostratus

Did you find a solution to this issue?

 

We ran into the same issue.

Walter_Kacynski
Cirrostratus
Cirrostratus

Nope, this is still an issue.

Sgbjrn
Nimbostratus
Nimbostratus

I created an Empty function after the login page, added a new branch with the filter "expr {[mcget -secure {session.logon.last.password}] == "f5-sso-token"}" and forwarded to a Message Box explaining the error, and how to update or delete the entry in the browsers, then forwarding to a Deny_Redirect back to the login page.

 

Dirty workaround, but prevents accounts being locked out and a few support calls.

Sgbjrn
Nimbostratus
Nimbostratus

As a side note, I didn't manage to reproduce the issue in Firefox. So it seems like a bug with chromium browsers. (Edge/Chrome tested)