Non-working site: https://iclicktz.imbank.com

[stefand]

Filling the password does not work on the website of my tanzanian bank. The username can be filled after enabling username-only detection. The second step - entering the password - shows the keepass icon, keepassxc-browser finds stored passwords, but when attempting to select one, the password field turns red and the keepass icon disappears. My browser is firefox, both Mac OS and Linux are affected.

URL: https://iclicktz.imbank.com/?bank_id=TZ (yes, that GET argument is needed)

No login credentials are needed to reproduce the bug. Use any username - it isn't validated until after entering the password. Store a fictious username + password entry for the site in keepass, enable username-only detection for the site. The username can be filled fine. The password will fail to fill in as described above.

Right click -> insert password only doesn't work either.

I suspect the website is deliberately trying to prevent password managers from working. They block copypaste via javascript. They recently updated their online banking (seems to be based on Infosys Finacle). keepassxc-browser worked fine on the old version.

I do not see any obvious keepassxc-related messages in the developer console output.

[varjolintu]

This one is tricky. The only way I got it to work was to enter the username manually and then the password field could be only identified after manually pressing the popup's Redetect button. This was after I enabled the Improved Input Field Detection for the site. Probably this could be handled with Custom Login Fields, but it does not yet support Shadow DOM fields properly.

So for now the only workaround while waiting for the fix is to use Auto-Type.

[stefand]

Thanks for looking into it! I can live with autotype or copy-paste for the time being.