How do you disable browser Autocomplete on web form field input tag

Question

How do you disable autocomplete in the major browsers for a specific input  or form field

User · Answer

This is a security issue that browsers ignore now. Browsers identify and store content using input names, even if developers consider the information to be sensitive and should not be stored.

Making an input name different between 2 requests will solve the problem (but will still be saved in browser's cache and will also increase browser's cache).

Asking the user to activate or deactivate options in their browser's settings is not a good solution. The issue can be fixed in the backend.

Here's the fix. All autocomplete elements are generated with a hidden input like this:

<?php $r = md5(rand() . microtime(TRUE)); ?>
<form method="POST" action="./">
    <input type="text" name="<?php echo $r; ?>" />
    <input type="hidden" name="__autocomplete_fix_<?php echo $r; ?>" value="username" />
    <input type="submit" name="submit" value="submit" />
</form>

The server then processes the post variables like this: (Demo)

foreach ($_POST as $key => $val) {
    $newKey = preg_replace('~^__autocomplete_fix_~', '', $key, 1, $count);
    if ($count) {
        $_POST[$val] = $_POST[$newKey];
        unset($_POST[$key], $_POST[$newKey]);
    }
}

The value can be accessed as usual

echo $_POST['username'];

And the browser won't be able to suggest information from the previous request or from previous users.

This will continue to work even if browsers update their techniques to ignore/respect autocomplete attributes.

User · Answer

I went through the same problem  today 09 10 2019 only solution I found was this  Add autocomplete  off  into the form tag   put 1 false inputs after opening form tag    lt input id  username  style  display none  type  text  name  fakeusernameremembered  gt    but it won t work on password type field  try   lt input type  text  oninput  turnOnPasswordStyle    placeholder  Enter Password  name  password  id  password  required gt    on script  function turnOnPasswordStyle             password   attr  type    password        This is tested on Chrome-78  IE-44  Firefox-69

User · Answer

Pretty sure this is the most generic solution as of today This stops auto-complete and the popup suggestion box too  Intro Let s face it  autocomplete off or new-password doesn t seem to work  It s should do but it doesn t and every week we discover something else has changed and the browser is filling a form out with more random garbage we don t want   I ve discovered a really simple solution that doesn t need autocomplete on sign in pages  How to implement Step 1   Add the same function call to the onmousedown and onkeyup attributes for your username and password fields  making sure you give them an id AND note the code at the end of the function call  md mousedown and ku keyup For the username field only add a value of  amp nbsp  as this prevents the form auto-filling on entry to the page  For example   x000D   x000D   lt input type  text  value   amp nbsp   id  myusername  onmousedown  protectMe this  md    onkeyup  protectMe this  ku      gt  x000D   x000D   x000D   Step 2   Include this function on the page  x000D   x000D  function protectMe el action        Remove the white space we injected on startup  var v   el value trim         Ignore this reset process if we are typing content in    and only acknowledge a keypress when it s the last Delete    we do resulting in the form value being empty  if action   ku   amp  amp  v        return        Fix double quote issue  in the form input  that results from writing the outerHTML back to itself   v   v replace    g                  Reset the popup appearing when the form came into focus from a click  by rewriting it back   el outerHTML el outerHTML         Issue instruction to refocus it again  insert the value that existed before we reset it and then select the content    setTimeout  var d document getElementById    el id      d value     v     d focus   if d value length gt 1  d select      100     x000D   x000D   x000D   What does it do   Firstly it adds an  amp nbsp  space to the field so the browser tries to find details related to that but doesn t find anything  so that s auto-complete fixed Secondly  when you click  the HTML is created again  cancelling out the popup and then the value is added back selected  Finally  when you delete the string with the Delete button the popup usually ends up appearing again but the keyup check repeats the process if we hit that point   What are the issues   Clicking to select a character is a problem but for a sign in page most will forgive the fact it select all the text Javascript does trim any inputs of blank spaces but you might want to do it too on the server side to be safe  Can it be better  Yes probably  This is just something I tested and it satisfies my basic need but there might be more tricks to add or a better way to apply all of this  Tested browsers Tested and working on latest Chrome  Firefox  Edge as of this post date

User · Answer

This works for me    lt input name  pass  type  password  autocomplete  new-password    gt    We can also use this strategy in other controls like text  select etc

User · Answer

It doesn t seem to be possible to achieve this without using a combination client side and server side code   In order to make sure that the user must fill in the form every time without autocomplete I use the following techniques    Generate the form field names on the server and use hidden input fields to store those names  so that when submitted to the server the server side code can use the generated names to access the field values  This is to stop the user from having the option to auto populate the fields  Place three instances of each form field on the form and hide the first and last fields of each set using css and then disable them after page load using javascript  This is to prevent the browser from filling in the fields automatically    Here is a fiddle that demonstrates the javascript  css and html as described in  2 https   jsfiddle net xnbxbpv4   javascript       document  ready function             disable-input   attr  disabled    disabled          css      disable-input     display  none      html      lt form gt   lt input type  email  name  username  placeholder  username  class  disable-input  gt   lt input type  email  name  username  placeholder  username  gt   lt input type  email  name  username  placeholder  username  class  disable-input  gt   lt br gt   lt input type  password  name  password  placeholder  password  class  disable-input  gt   lt input type  password  name  password  placeholder  password  gt   lt input type  password  name  password  placeholder  password  class  disable-input  gt   lt br gt   lt input type  submit  value  submit  gt   lt  form gt    Here is a rough example of what the server code using asp net with razor would be to facilitate  1  model      public class FormModel       public string Username   get  set        public string Password   get  set        controller     public class FormController   Controller       public ActionResult Form                 var m   new FormModel             m Username    F    Guid NewGuid   ToString            m Password    F    Guid NewGuid   ToString             return View m              public ActionResult Form FormModel m                var u   Request Form m Username           var p   Request Form m Password               todo  do something with the form values                       return View m             view    model FormModel   using  Html BeginForm  Form    Form           Html HiddenFor m   gt  m UserName       Html HiddenFor m   gt  m Password        lt input type  email  name   Model Username  placeholder  username  class  disable-input  gt       lt input type  email  name   Model Username  placeholder  username  gt       lt input type  email  name   Model Username  placeholder  username  class  disable-input  gt       lt br gt       lt input type  password  name   Model Password  placeholder  password  class  disable-input  gt       lt input type  password  name   Model Password  placeholder  password  gt       lt input type  password  name   Model Password  placeholder  password  class  disable-input  gt       lt br gt       lt input type  submit  value  submit  gt

User · Answer

Firefox 30 ignores autocomplete  quot off quot  for passwords  opting to prompt the user instead whether the password should be stored on the client  Note the following commentary from May 5  2014    The password manager always prompts if it wants to save a password  Passwords are not saved without permission from the user  We are the third browser to implement this change  after IE and Chrome    According to the Mozilla Developer Network documentation  the Boolean form element attribute autocomplete prevents form data from being cached in older browsers   lt input type  quot text quot  name  quot foo quot  autocomplete  quot off quot    gt

User · Answer

Just set autocomplete  off   There is a very good reason for doing this  You want to provide your own autocomplete functionality

User · Answer

The idea is to create an invisible field with the same name before original one  That will make browser to auto populate the hidden field I use the following jQuery snippet     Prevent input autocomplete   fn preventAutocomplete   function         this each function              var  el     this            el              clone false  false     Make a copy  except events               insertBefore  el       Place it before original field              prop  id               Prevent ID duplicates              hide                   Make it invisible for user                       And than just     login-form input   preventAutocomplete

User · Answer

I was able to stop Chrome 66 from autofilling by adding two fake inputs and giving them position absolute    lt form style  position  relative  gt     lt div style  position  absolute  top  -999px  left  -999px   gt       lt input name  username  type  text    gt       lt input name  password  type  password    gt     lt  div gt     lt input name  username  type  text    gt     lt input name  password  type  password    gt      At first  I tried adding display none  to the inputs but Chrome ignored them and autofilled the visible ones

User · Answer

You may use in input   For example    lt input type text name  test  autocomplete  off    gt

User · Answer

Adding the   autocomplete  off    to the form tag will disable the browser autocomplete  what was previously typed into that field  from all input fields within that particular form   Tested on    Firefox 3 5  4 BETA  Internet Explorer 8  Chrome

User · Answer

If you want to prevent the common browser plug-in LastPass from auto-filling a field as well  you can add the attribute data-lpignore  true  added to the other suggestions on this thread  Note that this doesn t only apply to password fields     lt input type  text  autocomplete  false  data-lpignore  true    gt    I was trying to do this same thing a while back  and was stumped because none of the suggestions I found worked for me  Turned out it was LastPass

User · Answer

None of the hacks mentioned here worked for me in Chrome  There s a discussion of the issue here  https   code google com p chromium issues detail id 468153 c41  Adding this inside a  lt form gt  works  at least for now     lt div style  display  none   gt       lt input type  text  id  PreventChromeAutocomplete  name  PreventChromeAutocomplete  autocomplete  address-level4    gt   lt  div gt

User · Answer

I was fighting to autocomplete for years  I ve tried every single suggestion  and nothing worked for me  Adding by jQuery 2 attributes worked well    document  ready  function          setTimeout function                input   attr  autocomplete    off   attr  autocorrect    off           10         will result in HTML  lt input id  quot start date quot  name  quot start date quot  type  quot text quot  value  quot  quot  class  quot input-small hasDatepicker quot  autocomplete  quot off quot  placeholder  quot Start date quot  autocorrect  quot off quot  gt

User · Answer

In order to avoid the invalid XHTML you can set this attribute using javascript  Example using jQuery    lt input type  text  class  noAutoComplete        gt     function             noAutoComplete   attr  autocomplete    off          The problem is that users without javascript will do get the autocomplete functionality

User · Answer

Safari does not change its mind about autocomplete if you set autocomplete  off  dynamically from javascript  However it would respect if you do that on per-field basis       input    formElement  attr  autocomplete    off

User · Answer

As others have said  the answer is autocomplete  off   However  I think it s worth stating why it s a good idea to use this in certain cases as some answers to this and duplicate questions have suggested it s better not to turn it off   Stopping browsers storing credit card numbers shouldn t be left to users  Too many users won t even realize it s a problem   It s particularly important to turn it off on fields for credit card security codes  As this page states       Never store the security code     its value depends on the presumption that the only way to supply it is to read it from the physical credit card  proving that the person supplying it actually holds the card     The problem is  if it s a public computer  cyber cafe  library etc  it s then easy for other users to steal your card details  and even on your own machine a malicious website could steal autocomplete data

User · Answer

The solution for Chrome is to add autocomplete  new-password  to the input type password  Please check the Example below   Example    lt form name  myForm   method  post  gt      lt input name  user  type  text    gt      lt input name  pass  type  password  autocomplete  new-password    gt      lt input type  submit  gt   lt  form gt    Chrome always autocomplete the data if it finds a box of type password  just enough to indicate for that box autocomplete    new-password       This works well for me    Note  make sure with F12 that your changes take effect  many times browsers save the page in cache  this gave me a bad impression that it did not work  but the browser did not actually bring the changes

User · Answer

No fake inputs  no javascript   There is no way to disable autofill consistently across browsers  I have tried all the different suggestions and none of them work in all browsers  The only way is not using password input at all  Here s what I came up with    lt style type  text css  gt       font-face           font-family   PasswordDots           src  url  text-security-disc woff   format  woff            font-weight  normal          font-style  normal             input password           font-family   PasswordDots   important          font-size  8px  important         lt  style gt    lt input class  password  type  text  spellcheck  false    gt    Download  text-security-disc woff  Here s how my final result looks like     The negative side effect is that it s possible to copy plain text from the input  though it should be possible to prevent that with some JS

User · Answer

In addition to   autocomplete  off       Use   readonly onfocus  this removeAttribute  readonly       for the inputs that you do not want them to remember form data  username  password  etc   as shown below     lt input type  text  name  UserName  autocomplete  off  readonly      onfocus  this removeAttribute  readonly      gt    lt input type  password  name  Password  autocomplete  off  readonly      onfocus  this removeAttribute  readonly      gt    Hope this helps

User · Answer

Leave inputs with text type and hidden  On DOMContentLoaded  call a function that changes the types for password and display the fields  with a delay of 1s    x000D   x000D  document addEventListener  DOMContentLoaded   changeInputsType    function changeInputsType         setTimeout function                 selector    prop  type    password   show           1000     x000D   x000D   x000D

User · Answer

I use this TextMode  password  autocomplete  new-password  and in in page load in aspx txtPassword Attributes Add  value

User · Answer

Just autocomplete  quot off quot  list  quot autocompleteOff quot  in your input and work done for IE Edge  and for chrome add autocomplete  quot new password quot

User · Answer

I can t believe this is still an issue so long after it s been reported  The above solutions didn t work for me  as safari seemed to know when the element was not displayed or off-screen  however the following did work for me    lt div style  height 0px  overflow hidden    gt    Username  lt input type  text  name  fake safari username   gt    Password  lt input type  password  name  fake safari password  gt   lt  div gt    Hope that s useful for somebody

User · Answer

This worked for me like a charm    Set the autocomplete attribute of the form to off Add a dummy input field and set its attribute also to off      lt form autocomplete  off  gt    lt input type  text  autocomplete  off  style  display none  gt   lt  form gt

User · Answer

try these too if just autocomplete  off  doesn t work   autocorrect  off  autocapitalize  off  autocomplete  off

User · Answer

A little late to the game   but I just ran into this problem and tried several failures  but this one works for me found on MDN     In some case  the browser will keep suggesting autocompletion values   even if the autocomplete attribute is set to off  This unexpected   behavior can be quite puzzling for developers  The trick to really   force the no-completion is to assign a random string to the attribute   like so     autocomplete  nope

User · Answer

After trying all solutions  some have worked partly  disabling autofill but not autocomplete  some did not work at all  I ve found the best solution as of 2020 to be adding type  quot search quot  and autocomplete  quot off quot  to your input element  like this   lt input type  quot search quot    gt  or  lt input type  quot search quot  autocomplete  quot off quot    gt   Also make sure to have autocomplete  quot off quot  on the form element  this works perfectly and disables both autocomplete and autofill  Also  if your e using type  quot email quot  or any other text type  you ll need to add autocomplete  quot new-email quot  and that will disable both perfectly  same goes for type  quot password quot   just add a  quot new- quot  prefix to the autocomplete together with the type  like that   lt input type  quot email quot  autocomplete  quot new-email quot    gt   lt input type  quot password quot  autocomplete  quot new-password quot    gt

User · Answer

I v solved putting this code after page load    lt script gt  var randomicAtomic   Math random   toString 36  substring 2  15    Math random   toString 36  substring 2  15        input type text    attr  autocomplete  randomicAtomic    lt  script gt

User · Answer

You can disable autocomplete if you remove the form tag  the same was done by my bank and I was wondering how they did this  It even remove the value that was already remembered by the browser after you remove the tag

User · Answer

None of the solutions worked for me in this conversation    I finally figured out a pure HTML solution that requires no Javascript  works in modern browsers  except IE  there had to at least 1 catch  right    and does not require you to disable autocomplete for the entire form   Simply turn off autocomplete on the form and then turn it ON for any input you wish it to work within the form  For example    lt form autocomplete  off  gt       lt  -- these inputs will not allow autocomplete and chrome           won t highlight them yellow  -- gt       lt input name  username     gt       lt input name  password  type  password    gt       lt  -- this field will allow autocomplete to work even           though we ve disabled it on the form -- gt       lt input name  another field  autocomplete  on    gt   lt  form gt

User · Answer

Many modern browsers do not support autocomplete  off  for login fields anymore  autocomplete  new-password  is wokring instead  more information MDN docs

User · Answer

Sometimes even autocomplete off would not prevent to fill in credentials into wrong fields  but not user or nickname field    This workaround is in addition to apinstein s post about browser behavior   fix browser autofill in read-only and set writable on focus  click and tab     lt input type  password  readonly        onfocus  this removeAttribute  readonly      gt    Update  Mobile Safari sets cursor in the field  but does not show virtual keyboard  New Fix works like before but handles virtual keyboard    lt input id  email  readonly type  email  onfocus  if  this hasAttribute  readonly          this removeAttribute  readonly           fix for mobile safari to show virtual keyboard     this blur       this focus          gt    Live Demo https   jsfiddle net danielsuess n0scguv6      UpdateEnd  Because Browser auto fills credentials to wrong text field    I notice this strange behavior on Chrome and Safari  when there are password fields in the same form  I guess  the browser looks for a password field to insert your saved credentials  Then it auto fills  just guessing due to observation  the nearest textlike-input field  that appears prior the password field in DOM  As the browser is the last instance and you can not control it    This readonly-fix above worked for me

User · Answer

Three options  First     lt input type  text  autocomplete  off    gt    Second     lt form action    autocomplete  off  gt    Third  javascript code        input   attr  autocomplete    off

User · Answer

Works with Chrome 84 0 4147 105 1  Assign text type to password fields and add a class  e g   quot fakepasswordtype quot   lt input type  quot text quot  class  quot fakepasswordtype quot  name  quot password1 quot  gt   lt input type  quot text quot  class  quot fakepasswordtype quot  name  quot password2 quot  gt   2  Then use jQuery to change the type back to password the moment when first input is done jQuery document  ready function              fakepasswordtype   on  input   function e             this  prop  type    password                 This stopped Chrome from it s nasty ugly behavior from auto filling

User · Answer

To prevent browser auto fill with the user s saved site login credentials  place a text and password input field at the top of the form with non empty values and style  position  absolute  top  -999px  left -999px  set to hide the fields    lt form gt     lt input type  text  name  username X  value  -  tabindex  -1  aria-hidden  true  style  position  absolute  top  -999px  left -999px    gt     lt input type  password  name  password X  value  -  tabindex  -1  aria-hidden  true  style  position  absolute  top  -999px  left -999px    gt     lt  -- Place the form elements below here  -- gt   lt  form gt    It is important that a text field precede the password field   Otherwise the auto fill may not be prevented in some cases     It is important that the value of both the text and password fields not be empty  to prevent default values from being overwritten in some cases     It is important that these two fields are before the  real  password type field s  in the form   For newer browsers that are html 5 3 compliant the autocomplete attribute value  new-password  should work    lt form gt     lt input type  text  name  username  value      gt     lt input type  password  name  password  value    autocomplete  new-password    gt   lt  form gt    A combination of the two methods can be used to support both older and newer browsers    lt form gt     lt div style  display none  gt       lt input type  text  readonly tabindex  -1    gt       lt input type  password  readonly tabindex  -1    gt     lt  div gt     lt  -- Place the form elements below here  -- gt     lt input type  text  name  username  value      gt     lt input type  password  name  password  value    autocomplete  new-password    gt   lt  form gt

User · Answer

Fixed  Just need to add above real input field  https   developer mozilla org en-US docs Web Security Securing your site Turning off form autocompletion - MDN https   medium com paul-jaworski turning-off-autocomplete-in-chrome-ee3ff8ef0908 - medium                                         tested on EDGE  Chrome latest v63   Firefox Quantum  57 0 4 64-      Firefox 52 2 0                                          fake fields are a workaround for chrome opera autofill getting the wrong fields   const fakeInputStyle    opacity  0  float   left   border   none   height   0   width   0      lt input type  password  name  fake-password  autoComplete  new-password  tabIndex  -1  style  fakeInputSyle    gt    lt TextField   name  userName    autoComplete  nope           gt    lt TextField       name  password        autoComplete  new-password                   gt

User · Answer

I think autocomplete off is supported in HTML 5   Ask yourself why you want to do this though - it may make sense in some situations but don t do it just for the sake of doing it   It s less convenient for users and not even a security issue in OS X  mentioned by Soren below   If you re worried about people having their passwords stolen remotely - a keystroke logger could still do it even though your app uses autcomplete off   As a user who chooses to have a browser remember  most of  my information  I d find it annoying if your site didn t remember mine

User · Answer

I know this is an old post  but it could be important to know that Firefox  I think only firefox  uses a value called ismxfilled that basically forces autocomplete   ismxfilled  0  for OFF   or   ismxfilled  1  for ON

User · Answer

Most of the answers didn t help as the browser was simply ignoring them   Some of them were not cross-browser compatible   The fix that worked for me is    lt form autocomplete  off  gt       lt input type  text  autocomplete  new-password    gt       lt input type  password  autocomplete  new-password    gt   lt  form gt    I set autofill  off  on the form tag and autofill  new-password  wherever the autofill was not necessary

User · Answer

Easy Hack   Make input read-only   lt input type  text  name  name  readonly  readonly  gt    Remove read-only after timeout    function             setTimeout function                    input name  name     prop  readonly   false              50

User · Answer

This is what we called autocomplete of a textbox   We can disable autocomplete of a Textbox in 2 ways-   By Browser Label By Code  To disable in browser go to the setting       Go to advance setting and uncheck the checkbox and then Restore    If you want to disable in coding label you can do as follow- Using AutoCompleteType  Disabled     lt asp TextBox runat  server  ID  txt userid  AutoCompleteType  Disabled  gt  lt  asp TextBox gt      By Setting Form autocomplete  off     lt asp TextBox runat  server  ID  txt userid  autocomplete  off  gt  lt  asp TextBox gt     By Setting Form autocomplete  off     lt form id  form1  runat  server  autocomplete  off  gt          your content  lt  form gt      By using code in  cs page  protected void Page Load object sender  EventArgs e                if  Page IsPostBack                      txt userid Attributes Add  autocomplete    off                     By Using Jquery  head runat  server  gt     lt title gt  lt  title gt     lt script src  Scripts jquery-1 6 4 min js  gt  lt  script gt     lt script type  text javascript  gt          document  ready function                    txt userid   attr  autocomplete    off                   lt  script gt

User · Answer

Most of the major browsers and password managers  correctly  IMHO  now ignore autocomplete off    Why  Many banks and other  high security  websites added autocomplete off to their login pages  for security purposes  but this actually decreases security since it causes people to change the passwords on these high-security sites to be easy to remember  and thus crack  since autocomplete was broken    Long ago most password managers started ignoring autocomplete off  and now the browsers are starting to do the same for username password inputs only   Unfortunately  bugs in the autocomplete implementations insert username and or password info into inappropriate form fields  causing form validation errors  or worse yet  accidentally inserting usernames into fields that were intentionally left blank by the user   What s a web developer to do    If you can keep all password fields on a page by themselves  that s a great start as it seems that the presence of a password field is the main trigger for user pass autocomplete to kick in  Otherwise  read the tips below  Safari notices that there are 2 password fields and disables autocomplete in this case  assuming it must be a change password form  not a login form  So just be sure to use 2 password fields  new and confirm new  for any forms where you allow  Chrome 34  unfortunately  will try to autofill fields with user pass whenever it sees a password field  This is quite a bad bug that hopefully  they will change the Safari behavior  However  adding this to the top of your form seems to disable the password autofill    lt input type  text  style  display none  gt   lt input type  password  style  display none  gt     I haven t yet investigated IE or Firefox thoroughly but will be happy to update the answer if others have info in the comments

User · Answer

Try this      lt input type  text  autocomplete  off    gt

User · Answer

As of Dec 2019   Before answering this question let me say  I tried almost all the answers here on SO and from different forums but couldn t find a solution that works for all modern browsers and IE11   So here is the solution I found  and I believe it s not yet discussed or mentioned in this post    According to Mozilla Dev Network MDN  post about how to turn off form autocomplete     By default  browsers remember information that the user submits through  fields on websites  This enables the browser to offer autocompletion  that is  suggest possible completions for fields that the user has started typing in  or autofill  that is  pre-populate certain fields upon load    On same article they discussed the usage of autocmplete property and its limitation  As we know  not all browsers honor this attribute as we desire   Solution  So at the end of the article they shared a solution that works for all browsers including IE11 Edge  It is basically a jQuery plugin that do the trick  Here is the link to jQuery plugin and how it works   Code snippet     document  ready function                      frmLogin   disableAutoFill           passwordField    password                Point to notice in HTML is that password field is of type text and password class is applied to identify that field    lt input id  Password  name  Password  type  text  class  form-control password  gt    Hope this would help someone

User · Answer

I must have spent two days on this discussion before resorting to creating my own solution  First  if it works for the task  ditch the input and use a textarea  To my knowledge  autofill autocomplete has no business in a textarea  which is a great start in terms of what we re trying to achieve  Now you just have to change some of the default behaviors of that element to make it act like an input  Next  you ll want to keep any long entries on the same line  like an input  and you ll want the textarea to scroll along the y-axis with the cursor  We also want to get rid of the resize box  since we re doing our best to mimic the behavior of an input  which doesn t come with a resize handle  We achieve all of this with some quick CSS   x000D   x000D   your-textarea     resize  none    overflow-y  hidden    white-space  nowrap    x000D   x000D   x000D   Finally  you ll want to make sure the pesky scrollbar doesn t arrive to wreck the party  for those particularly long entries   so make sure your text-area doesn t show it   x000D   x000D   your-textarea  -webkit-scrollbar     display  none    x000D   x000D   x000D   Easy peasy  We ve had zero autocomplete issues with this solution

User · Answer

A workaround is not to insert the password field into the DOM before the user wants to change the password  This may be applicable in certain cases   In our system we have a password field which in an admin page  so we must avoid inadvertently setting other users  passwords  The form has an extra checkbox that will toggle the password field visibility for this reason   So in this case  autofill from a password manager becomes a double problem  because the input won t even be visible to the user   The solution was to have the checkbox trigger whether the password field is inserted in the DOM  not just its visibility   Pseudo implementation for AngularJS    lt input type  checkbox  ng-model  createPassword  gt   lt input ng-if  changePassword  type  password  gt

User · Answer

You can use autocomplete   off in input controls to avoid auto completion  For example    lt input type text name  test  autocomplete  off    gt    if the above code doesn t works then try to add those attributes also  autocapitalize  off  autocomplete  off    or   Change input type attribute to type  search   Google doesn t apply auto-fill to inputs with a type of search

User · Answer

lt script language  javascript  type  text javascript  gt        document  ready function              try                  input type  text     each function                                 this  attr  autocomplete   off                                                  catch  e                        lt  script gt

User · Answer

I d have to beg to differ with those answers that say to avoid disabling auto-complete   The first thing to bring up is that auto-complete not being explicitly disabled on login form fields is a PCI-DSS fail  In addition  if a users  local machine is compromised then any autocomplete data can be trivially obtained by an attacker due to it being stored in the clear   There is certainly an argument for usability  however there s a very fine balance when it comes to which form fields should have autocomplete disabled and which should not

User · Answer

You can simply put the autocomplete  off  in the HTML fields like following code    lt input type  text  name    value    autocomplete  off    gt

User · Answer

The answer dsuess posted with the readonly was very clever and worked  But as I am using boostrap  the readonly input field was - until focused - marked with grey background  While the document loads  you can trick the browser by simply locking and unlocking the input   So I had an idea to implement this into jQuery solution        jQuery document  ready function                 input   attr  readonly   true              input   removeAttr  readonly

User · Answer

If your issue is having a password field being auto-completed  then you may find this useful     We had this issue in several areas of our site where the business wanted to re-query the user for their username and password and specifically did not want the password autofill to work for contractual reasons   We found that the easiest way to do this is to put in a fake password field for the browser to find and fill while the real password field remains untouched    lt  -- This is a fake password input to defeat the browser s autofill behavior -- gt   lt input type  password  id  txtPassword  style  display none     gt   lt  -- This is the real password input -- gt   lt input type  password  id  txtThisIsTheRealPassword    gt    Note that in Firefox and IE  it was simply enough to put any input of type password before the actual one but Chrome saw through that and forced me to actually name the fake password input  by giving it an obvious password id  to get it to  bite    I used a class to implement the style instead of using an embedded style so try that if the above doesn t work for some reason

User · Answer

lt input type  quot text quot  name  quot attendees quot  id  quot autocomplete-custom-append quot  gt    lt script gt       AUTOCOMPLETE       function init autocomplete          if  typeof    fn autocomplete       undefined           return               console log  init autocomplete         var attendees           1   quot Shedrack Godson quot         2   quot Hellen Thobias Mgeni quot         3   quot Gerald Sanga quot         4   quot Tabitha Godson quot         5   quot Neema Oscar Mracha quot              var countriesArray     map countries  function  value  key          return           value  value          data  key                          initialize autocomplete with custom appendTo         autocomplete-custom-append   autocomplete         lookup  countriesArray                lt  script gt

User · Answer

I tried almost all the answer but the new version of Chrome is smart  if you write autocomplete  quot randomstring quot  or autocomplete  quot rutjfkde quot   it automatically converts it to autocomplete  quot off quot   when input control receives the focus  So  I did it using jQuery  my solution is as follows     quot input type text   input type number   input type email   input type password  quot   focus function  e          this  attr  quot autocomplete quot    quot new-password quot        This is the easiest and will do the trick for any number of controls you have on the form

User · Answer

None of the provided answers worked on all the browsers I tested  Building on already provided answers  this is what I ended up with   tested  on Chrome 61  Microsoft Edge 40  EdgeHTML 15   IE 11  Firefox 57  Opera 49 and Safari 5 1  It is wacky as a result of many trials  however it does work for me    lt form autocomplete  off  gt               lt input type  password  readonly autocomplete  off  id  Password  name  Password  onblur  this setAttribute  readonly     onfocus  this removeAttribute  readonly     onfocusin  this removeAttribute  readonly     onfocusout  this setAttribute  readonly       gt           lt  form gt     lt script type  text javascript  gt        function                            input Password   val                 input Password   on  focus   function              if     this  val        this  val   length  lt  2                  this  attr  type    text                      else                 this  attr  type    password                             input Password   on  keyup   function              if     this  val        this  val   length  lt  2                  this  attr  type    text                      else                 this  attr  type    password                             input Password   on  keydown   function              if     this  val        this  val   length  lt  2                  this  attr  type    text                      else                 this  attr  type    password                       lt  script gt

User · Answer

To solve this problem  I have used some CSS tricks and the following works for me    input       text-security disc      -webkit-text-security disc      -mox-text-security disc      Please read this article for further detail

User · Answer

Chrome is planning to support this    For now the best suggestion is to use an input type that is rarely autocompleted    chrome discussion   lt input type  search  name  whatever    gt    to be compatible with firefox  use normal autocomplete  off    lt input type  search  name  whatever  autocomplete  off    gt

User · Answer

Simply try to put attribute  autocomplete with value  off  to input type     lt input type  password  autocomplete  off  name  password  id  password    gt

User · Answer

autocomplete    off  didn t work for me  anyway i set the value attribute of the input field to a space i e  lt input type  text  name  username  value     gt  that set the default input character to a space  and since the username was blank the password was cleared too

User · Answer

My solution with jQuery  It may not be 100  reliable  but it works for me  The idea is described in code annotations    x000D   x000D          x000D     Prevent fields autofill for fields  x000D     When focusing on a text field with autocomplete  with values   off    none    false   we replace the value with a new and unique one  here it is -  off-forced- TIMESTAMP     x000D     the browser does not find this type of autocomplete in the saved values and does not offer options  x000D     Then  to prevent the entered text from being saved in the browser for a our new unique autocomplete  we replace it with the one set earlier when the field loses focus or when user press Enter key  x000D      type   init      x000D      x000D  var PreventFieldsAutofill    function      x000D      function init      x000D          events onPageStart    x000D        x000D   x000D      var events     x000D          onPageStart  function      x000D                document  on  focus    input autocomplete  off    input autocomplete  none    input autocomplete  false     function      x000D                  methods replaceAttrs   this    x000D                  x000D                document  on  blur    input data-prev-autocomplete    function      x000D                  methods returnAttrs   this    x000D                  x000D                document  on  keydown    input data-prev-autocomplete    function  event    x000D                  if  event keyCode    13    event which    13    x000D                      methods returnAttrs   this    x000D                    x000D                  x000D                document  on  submit    form   function      x000D                    this  find  input data-prev-autocomplete    each function      x000D                      methods returnAttrs   this    x000D                      x000D                  x000D            x000D         x000D   x000D      var methods     x000D              x000D             Replace value of autocomplete and name attribute for unique and save the original value to new data attributes x000D              param  input x000D              x000D          replaceAttrs  function   input    x000D              var randomString    off-forced-    Date now    x000D               input attr  data-prev-autocomplete    input attr  autocomplete     x000D               input attr  autocomplete   randomString   x000D              if   input attr  name      x000D                   input attr  data-prev-name    input attr  name     x000D                   input attr  name   randomString   x000D                x000D             x000D              x000D             Restore original autocomplete and name value for prevent saving text in browser for unique value x000D              param  input x000D              x000D          returnAttrs  function   input    x000D               input attr  autocomplete    input attr  data-prev-autocomplete     x000D               input removeAttr  data-prev-autocomplete    x000D              if   input attr  data-prev-name      x000D                   input attr  name    input attr  data-prev-name     x000D                   input removeAttr  data-prev-name    x000D                x000D            x000D         x000D   x000D      return   x000D          init  init x000D        x000D        x000D  PreventFieldsAutofill init    x000D   input   x000D    display  block  x000D    width  90   x000D    padding  6px 12px  x000D    font-size  14px  x000D    line-height  1 42857143  x000D    color   555555  x000D    background-color   fff  x000D    background-image  none  x000D    border  1px solid  ccc  x000D    border-radius  4px  x000D    x000D   lt script src  https   cdnjs cloudflare com ajax libs jquery 3 3 0 jquery min js  gt  lt  script gt  x000D   lt form action     gt  x000D     lt p gt  x000D       lt label for  input-1  gt Firts name without autocomplete lt  label gt  lt br   gt  x000D       lt input id  input-1  class  input  type  text  name  first-name  autocomplete  off  placeholder  Firts name without autocomplete    gt  x000D     lt  p gt  x000D     lt p gt  x000D       lt label for  input-2  gt Firts name with autocomplete lt  label gt  lt br   gt  x000D       lt input id  input-2  class  input  type  text  name  first-name  autocomplete  given-name  placeholder  Firts name with autocomplete    gt  x000D     lt  p gt  x000D     lt p gt  x000D       lt button type  submit  gt Submit form lt  button gt  x000D     lt  p gt  x000D   lt  form gt  x000D   x000D   x000D

User · Answer

The best solution   Prevent autocomplete username  or email  and password     lt input type  email  name  email  gt  lt  -- Can be type  text  -- gt   lt input type  password  name  password  autocomplete  new-password  gt    Prevent autocomplete a field    lt input type  text  name  field  autocomplete  nope  gt    Explanation  autocomplete continues work in  lt input gt   autocomplete  off  does not work  but you can change off to a random string  like nope   Works in    Chrome  49  50  51  52  53  54  55  56  57  58  59  60  61  62  63 and 64 Firefox  44  45  46  47  48  49  50  51  52  53  54  55  56  57 and 58

User · Answer

So here is it    x000D   x000D  function turnOnPasswordStyle     x000D        inputpassword   attr  type    password    x000D    x000D   lt input oninput  turnOnPasswordStyle    id  inputpassword  type  text  gt  x000D   x000D   x000D

User · Answer

Adding autocomplete  off  is not gonna cut it   Change input type attribute to type  search   Google doesn t apply auto-fill to inputs with a type of search

User · Answer

I wanted something that took the field management completely out of the browser s hands  so to speak  In this example  there s a single standard text input field to capture a password     no email  user name etc      lt input id  input password  type  text  autocomplete  off  autofocus gt    There s a variable named  input   set to be an empty string     var input         The field events are monitored by JQuery      On focus  the field content and the associated  input  variable are always cleared  On keypress  any alphanumeric character  as well as some defined symbols  are appended to the  input  variable  and the field input is replaced with a bullet character  Additionally  when the Enter key is pressed  the typed characters  stored in the  input  variable  are sent to the server via Ajax   See  Server Details  below   On keyup  the Home  End  and Arrow keys cause the  input  variable and field values to be flushed   I could have gotten fancy with arrow navigation and the focus event  and used  selectionStart to figure out where the user had clicked or was navigating  but it s not worth the effort for a password field   Additionally  pressing the Backspace key truncates both the variable and field content accordingly          input password   off   on  focus   function event          this  val          input           on  keypress   function event        event preventDefault         if  event key      Enter   amp  amp  event key match    0-9a-z       amp  -                  this  val    this  val                      input    event key            else if  event key     Enter             var params               params password   input             post SERVER URL  params  function data  status  ajax                location reload                          on  keyup   function event        var navigationKeys     Home    End    ArrowLeft    ArrowRight    ArrowUp    ArrowDown        if    inArray event key  navigationKeys   gt  -1            event preventDefault              this  val              input                 else if  event key     Backspace             var length     this  val   length - 1  gt  0     this  val   length   0          input   input substring 0  length                 Front-End Summary  In essence  this gives the browser nothing useful to capture  Even if it overrides the autocomplete setting  and or presents a dropdown with previously entered values  all it has is bullets stored for the field value     Server Details  optional reading   As shown above  Javascript executes location reload   as soon as the server returns a JSON response   This logon technique is for access to a restricted administration tool  Some of the overkill  related to the cookie content  could be skipped for a more generalized implementation   Here are the details      When a user navigates to the site  the server looks for a legitimate cookie   If there is no cookie  the logon page is presented  When the user enters a password and it is sent via Ajax  the server confirms the password and also checks to see if the user s IP is in an Authorized IP list   If either the password or IP are not recognized  the server doesn t generate a cookie  so when the page reloads  the user sees the same logon page  If both the password and IP are recognized  the server generates a cookie that has a ten-minute life span  and it also stores two scrambled values that correspond with the time-frame and IP  When the page reloads  the server finds the cookie and verifies that the scrambled values are correct  i e   that the time-frame corresponds with the cookie s date and that the IP is the same   The process of authenticating and updating the cookie is repeated every time the user interacts with the server  whether they are logging in  displaying data  or updating a record  If at all times the cookie s values are correct  the server presents the full website  if the user is logging in  or fulfills whatever display or update request was submitted  If at any time the cookie s values are not correct  the server removes the current cookie which then  upon reload  causes the logon page to be re-displayed

User · Answer

The autofill functionality changes the value without selecting the field  We could use that in our state management to ignore state changes before the select event    An example in React   import React   Component  from  react    class NoAutoFillInput extends Component       constructor             super            this state                 locked  true                      onChange event           if   this state locked               this props onChange event target value                        render             let props       this props      onChange  this onChange bind this        onSelect       gt  this setState  locked  false              return  lt input     props   gt            export default NoAutoFillInput    If the browser tries to fill the field  the element is still locked and the state is not affected  Now you can just replace the input field with a NoAutoFillInput component to prevent autofill    lt div className  form-group row  gt       lt div className  col-sm-2  gt           lt NoAutoFillInput type  text  name  myUserName  className  form-control  placeholder  Username  value  this state userName  onChange  value   gt  this setState  userName  value     gt       lt  div gt       lt div className  col-sm-2  gt           lt NoAutoFillInput type  password  name  myPassword  className  form-control  placeholder  Password  value  this state password  onChange  value   gt  this setState  password  value     gt       lt  div gt   lt  div gt    Off course  this idea could be used with other JS frameworks as well

User · Answer

My solution is Change the text inputs type dynamically using angular js directive and it works like charm first add 2 hidden text fields and just add a angular directive like this   function            use strict        appname directive  changePasswordType   directive        directive  inject      timeout     rootScope      cookies         function directive  timeout    rootScope   cookies            var directive                 link  link              restrict   A                      return directive           function link scope element                var process   function                      var elem  element 0                   elem value length  gt  0   element 0  setAttribute  quot type quot    quot password quot                     element 0  setAttribute  quot type quot    quot text quot                               element bind  input   function                      process                                 element bind  keyup   function                      process                                          then use it in your text field where you need to prevent auto complete      lt input type  quot text quot  style  quot display none quot  gt   can avoid this 2 lines      lt input type  quot password quot  style  quot display none quot  gt       lt input type  quot text quot   autocomplete  quot new-password quot  change-password-type gt   NB  dont forget to include jquery  and set type   quot text quot  initially

User · Answer

We did actually use sasb s idea for one site  It was a medical software web app to run a doctor s office  However  many of our clients were surgeons who used lots of different workstations  including semi-public terminals  So  they wanted to make sure that a doctor who doesn t understand the implication of auto-saved passwords or isn t paying attention can t accidentally leave their login info easily accessible  Of course  this was before the idea of private browsing that is starting to be featured in IE8  FF3 1  etc  Even so  many physicians are forced to use old school browsers in hospitals with IT that won t change   So  we had the login page generate random field names that would only work for that post  Yes  it s less convenient  but it s just hitting the user over the head about not storing login information on public terminals

User · Answer

My problem was mostly autofill with Chrome  but I think this is probably more problematic than autocomplete   Trick   using a timer to reset form and set password fields to blank  The 100ms duration seems to be minimal for it to work     document  ready function         setTimeout function             var  form       formId             form 0  reset             form find  INPUT type password    val             100

User · Answer

There are many answers but most of them are hacks or some kind of workaround  There are three cases here  Case I  If this is your standard login form  Turning it off by any means is probably bad  Think hard if you really need to do it  Users are accustomed to browsers remembering and storing the passwords  You shouldn t change that standard behaviour in most cases  In case you still want to do it  see Case III Case II  When this is not your regular login form but name or id attribute of inputs is not  quot like quot  email  login  username  user name  password  Use  lt input type  quot text quot  name  quot yoda quot  autocomplete  quot off quot  gt   Case III  When this is not your regular login form but name or id attribute of inputs is  quot like quot  email  login  username  user name  password  For example  login  abc login  password  some password  password field  All browsers come with password management features offering to remember them OR suggesting stronger passwords  That s how they do it  However  suppose you are an admin of a site and can create users and set their passwords  In this case you wouldn t want browsers to offer these features  In such cases  autocomplete  quot off quot  will not work  Use autocomplete  quot new-password quot   lt input type  quot text quot  name  quot yoda quot  autocomplete  quot new-password quot  gt   Helpful Link   https   developer mozilla org en-US docs Web Security Securing your site Turning off form autocompletion

User · Answer

None of the solutions I ve found at this day bring a real working response  Solutions with an autocomplete attribute do not work  So  this is what I wrote for myself   lt input type  quot text quot  name  quot UserName quot  onkeyup  quot if  this value length  gt  0  this setAttribute  type    password    else this setAttribute  type    text    quot   gt   You should do this for every input field you want as a password type on your page  And this works  cheers

User · Answer

unfortunately this option was removed in most browsers  so it is not possible to disable the password hint  until today I did not find a good solution to work around this problem  what we have left now is to hope that one day this option will come back

User · Answer

In Chrome  for password type inputs  the autocomplete  quot new-password quot  is the only thing working for me

User · Answer

lt form name  form1  id  form1  method  post         autocomplete  off  action  http   www example com form cgi  gt    This will work in Internet Explorer and Mozilla FireFox  the downside is that it is not XHTML standard

User · Answer

I ve been trying endless solutions  and then I found this   Instead of autocomplete  off  just simply use autocomplete  false   As simple as that  and it works like a charm in Google Chrome as well

User · Answer

In addition to setting autocomplete off  you could also have your form field names be randomized by the code that generates the page  perhaps by adding some session-specific string to the end of the names  When the form is submitted  you can strip that part off before processing them on the server-side  This would prevent the web browser from finding context for your field and also might help prevent XSRF attacks because an attacker wouldn t be able to guess the field names for a form submission

User · Answer

On a related or actually  on the completely opposite note -       If you re the user of the aforementioned form and want to re-enable   the autocomplete functionality  use the  remember password    bookmarklet from this bookmarklets   page  It removes   all autocomplete  off  attributes from all forms on the page  Keep   fighting the good fight

User · Answer

I already posted a solution for this here  https   stackoverflow com a 60664102 5117084 The workaround is to set the autocomplete attribute as  quot cc-csc quot  that value is the CVC of a credit card and that they are no allowed to store it   for now     autocomplete  quot cc-csc quot

User · Answer

You can add name in attribute name how email address to you form and generate email value for example    lt form id  something-form  gt     lt input style  display  none  name  email  value  randomgeneratevalue  gt  lt  input gt     lt input type  password  gt   lt  form gt    If you use this method  Google Chrome can t insert autofill password

User · Answer

I would like to clarify that this answer is for completeness sake and for community knowledge  by no means is it recommended   With regards to Internet Explorer 11  there is a security feature in place that can be used to block autocomplete  It works like this    Any form input value that is modified in JavaScript AFTER the user has already entered it is flagged as ineligible for autocomplete    This feature is normally used to protect users from malicious websites that want to change your password after you enter it or the like   However  you could insert a single special character at the beginning of a password string to block autocomplete  This special character could be detected and removed later on down the pipeline

User · Answer

The simplest answer is   lt input autocomplete  on off  gt   But keep in mind the browser support  Currently  autocomplete attribute is supported by   Chrome  17 0  amp  latest IE      5 0  amp  latest Firefox 4 0  amp  latest Safari  5 2  amp  latest Opera   9 6  amp  latest

User · Answer

Use a non-standard name and id for the fields  so rather than  name  have  name    Browsers will then not see it as being the name field  The best part about it is that you can do this to some but not all fields and it will autocomplete some but not all fields

User · Answer

Google Chrome ignores the autocomplete  off  attribute for certain inputs  including password inputs and common inputs detected by name   For example  if you have an input with name address  then Chrome will provide autofill suggestions from addresses entered on other sites  even if you tell it not to    lt input type  string  name  address  autocomplete  off  gt    If you don t want Chrome to do that  then you can rename or namespace the form field s name    lt input type  string  name  mysite addr  autocomplete  off  gt    If you don t mind autocompleting values which were previously entered on your site  then you can leave autocomplete enabled   Namespacing the field name should be enough to prevent values remembered from other sites from appearing    lt input type  string  name  mysite addr  autocomplete  on  gt

User · Answer

I ve solved the endless fight with Google Chrome with the use of random characters  When you always render autocomplete with random string  it will never remember anything     lt input name  name  type  text  autocomplete  rutjfkde  gt    Hope that it will help to other people

User · Answer

To avoid autocomplete add the autocomplete  quot off quot  to your html input property  Example   lt input type  quot text quot  name  quot foo quot  autocomplete  quot off quot    gt

[html] How do you disable browser Autocomplete on web form field / input tag?

Examples related to html

Examples related to forms

Examples related to browser

Examples related to autocomplete