SVN r482 introduced showing passwords in edit-mailbox.php - but in a quite broken way because it relied on an browser extension to change the stars in the password field to readable text.
r482 was therefore reverted.
We should add this feature in a way that works for everybody.
(Needless to say that this is only useful for non-encrypted passwords ;-)
Some sniplets and ideas from the mailinglist:
add a "show password" link (with a $CONF setting to enable it, default should be disabled) which displays the password somewhere (using flash_info or a alert() feeded with a AJAX request) This would have some advantages:
- it works in every browser and does not depend on special browser extensions
- it only transfers the password on request - which reduces the risk (and number) of passwords in browser cache etc. a lot
- it would easily allow to mail a notification to the user, which might be required by some people/companies for privacy or policy reasons
> (So far, Postfixadmin is AJAX free, perhaps it should stay this way?)
I don't want to do "big" things with AJAX. But I don't see a problem in using something like
The fallback could be that the "show password" link uses flash_info for this - with the disadvantage of causing a page reload (and possibly loose changes).