For <input type=password /> In ASP.net: PasswordField.text = RawPasswordString; This doesn’t work, but can

Question

0

Editorial Team

Asked: May 20, 20262026-05-20T18:46:08+00:00 2026-05-20T18:46:08+00:00

For <input type=password /> In ASP.net: PasswordField.text = RawPasswordString; This doesn’t work, but can

0

For <input type="password" />

In ASP.net:

PasswordField.text = RawPasswordString;

This doesn’t work, but can be circumvented with:

PasswordField.Attributes.Add("value", RawPasswordString);

I’m doing this so when the registration form fails, they don’t need to re-enter their passwords if they were valid, this annoys me no end on some websites. We have a CAPTCHA field that needs server validation, so when this fails (the most likely field to fail), I don’t want them to enter a correct one, but then the passwords fail because they cleared, meaning they have to enter the CAPTCHA again.

What are the security reasons, and if this page is on HTTPS is that OK? If it’s on HTTPS with nocaching, what else should I be aware of?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-20T18:46:08+00:00

Editorial Team

2026-05-20T18:46:08+00:00Added an answer on May 20, 2026 at 6:46 pm

Absolutely not. Browsers still can cache the result and someone can look at the cache and take the password.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

For <input type=password /> In ASP.net: PasswordField.text = RawPasswordString; This doesn’t work, but can

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply