Password Fields

User 2906089 Photo


Registered User
222 posts

I've been looking around some UI sites that are trending to eliminate the double password check in favor of an icon that can be clicked to show the user what they typed. People are suggesting that the over the shoulder thief doesn't really happen anymore. Clicking the icon can block view of a password as fast as it can view one.

The other comment coming up is that with password managers built into browsers will save a mis-typed password and since it's saved, it will be used in future logins.

There's also chatter about using placeholder text as labels is not helping the screen reading folks. That is a topic that I have very little knowledge on.

I'd like to see any comments on these issues.

Learn something, Share something.
User 187934 Photo


Senior Advisor
20,181 posts

Hiding password entry is very specific. I think you need to take into account the risk of a password being viewed and what damage can occur if an account gets used without authorization.

I'm not sure I understand how the wrong password saved in a browser is an issue. You need to know your password. I think most browsers will ask if you want to update it for that site.

I think this article explains the Place Holder issue well.
https://www.smashingmagazine.com/2018/0 … attribute/
Need to know your audience.
I can't hear what I'm looking at.
It's easy to overlook something you're not looking for.

This is a site I built for my work.(RSD)
http://esmansgreenhouse.com
This is a site I built for use in my job.(HTML Editor)
https://pestlogbook.com
This is my personal site used for testing and as an easy way to share photos.(RLM imported to RSD)
https://ericrohloff.com
User 2906089 Photo


Registered User
222 posts

Killer video, it shows how bad browsing the web can be if you are blind. More interesting to me is the date of the video. I'm willing to bet the level of support is still poor at best.

Is section 508 compliance still an issue?
Learn something, Share something.
User 187934 Photo


Senior Advisor
20,181 posts

I do believe only Gov sites are required to be 508 compliant. For other sites it all depends on your target audience whether you would want to implement it and to what degree.
I can't hear what I'm looking at.
It's easy to overlook something you're not looking for.

This is a site I built for my work.(RSD)
http://esmansgreenhouse.com
This is a site I built for use in my job.(HTML Editor)
https://pestlogbook.com
This is my personal site used for testing and as an easy way to share photos.(RLM imported to RSD)
https://ericrohloff.com

Have something to add? We’d love to hear it!
You must have an account to participate. Please Sign In Here, then join the conversation.