[Sugar-devel] [PATCH Browse] Start password manager

[Sascha Silbe]

With todays plethora of sites using passwords for authentication a password
manager in the browser is important not just for convenience, but also for
security. Most humans can't remember more than a few secure passwords.
Without storing passwords in the browser they use weak passwords and/or the
same password for many sites.

Passwords are stored unencrypted by default. This is consistent with the
security model of most deployments (no login passwords either).

Individual users can set a password by accessing the internal URL
chrome://pippki/content/changepassword.xul . However this password needs to
be entered once per Browse session. Solutions like disk encryption that are
at the same time more convenient (a single password per login) and more secure
(all data gets encrypted, not just passwords to websites).

The UI isn't pretty [1], but we can still improve on that later on.

[1] http://wiki.sugarlabs.org/go/File:Browse-save-password.png

Signed-off-by: Sascha Silbe <silbe at activitycentral.com>
---
 webactivity.py |    4 ++++
 1 files changed, 4 insertions(+), 0 deletions(-)

diff --git a/webactivity.py b/webactivity.py
index dade56a..3c02e03 100644
--- a/webactivity.py
+++ b/webactivity.py
@@ -212,6 +212,10 @@ class WebActivity(activity.Activity):
         branch = pref_service.getBranch("mozilla.widget.")
         branch.setBoolPref("disable-native-theme", True)
 
+        # Start password manager
+        cls = components.classes["@mozilla.org/login-manager;1"]
+        login_manager = cls.getService(components.interfaces.nsILoginManager)
+
         # HACK
         # Currently, the multiple tabs feature crashes the Browse activity
         # on cairo versions 1.8.10 or later. The exact cause for this
-- 
1.7.2.5