Some users might, if a little tired, be tempted to auto-fill the master password. A little easter egg could be fun (could be something as sober as “You can’t auto-fill the master password“ or something more like “You might need some caffeine“)
Some users might do this even when they’re not tired at all (for their own account or for e.g. an account of their relatives that they help to administer). So, what about those users?
Oops, I see the issue… Maybe only for the extension instead then?
… or when logging into the web vault.
Well no, that would fit within the scenario described by Nail1684
However, the extension doesn’t run on itself, so I think it still makes sense to have such an Easter egg on the extension
Hm. I’m just one user… I’m not sure an easter egg would either “make sense” or is needed at all… but if it was one there, I think it shouldn’t hinder any meaningful function, as that would be very annoying for anyone using it regularly.
Seems like such a “feature” would introduce risk of blocking the ability to autofill the master password with a different password manager (such as the forthcoming desktop auto-type feature). Blocking such capability would technically run afoul of an important password standard:
NIST 800-63B
Verifiers SHALL allow the use of password managers and autofill functionality. Verifiers SHOULD permit claimants to use the “paste” function when entering a password to facilitate password manager use when password autofill APIs are unavailable.
1 Like