| blob | 3a5757efde182fc503392a9237e799ba66eb8873 |
3 The password manager extension for Midori is based on formhistory.c and on my
4 userscript for password management (http://userscripts.org/scripts/show/62098).
5 It works by reading the network passwords with domain "midori" from the login
6 keyring and storing them in a GHashTable. Whenever your browser loads a page
7 with a corresponding address in the GHashTable, a script that inserts user
8 and password is built and executed on that page. Whenever you submit a login
9 form, a similar script is built and executed, and returns the new data, which
10 is stored in the GHashTable and in the login keyring.
11 When you choose to never store a password for a site, the extension will store
12 a user/password pair equal to __never_store_here__/whatever. The user part of
13 the pair (i.e. __never_store_here__) is used to remember that passwords must
14 not be stored.
15 Sometimes the extension fails to detect that a form has been submitted, so it
16 won't store your user/password pair. In such cases use the lpins utility to
17 manually insert the pair into the login keyring, like this
19 $ lpins http://www.averystrangelogin.com user password
21 Note that the pair is inserted in the login keyring, not in the GHashTable, so
22 you need to deactivate/reactivate the extension so it'll read the new pair.
24 Missing features:
25 * I don't know how to check when the login is successful, so wrong user-
26 password pairs will be stored.
27 * There isn't a utility for listing/deleting/modifying passwords, use seahorse
28 for these tasks (Midori passwords have domain "midori").
29 * I don't know how to deal with password forms that uses md5hash for basic
30 protection (like ubuntu forums), so the extension won't work for these sites.
32 Please note that I'm not an expert in internet security, crypting algorithms,
33 javascript programming or webkit programming, so use this extension at your
34 own risk.