Feature Request, Let us use one set of User/Pass for multiple Related domains in Edge password mgr

%3CLINGO-SUB%20id%3D%22lingo-sub-1911156%22%20slang%3D%22en-US%22%3EFeature%20Request%2C%20Let%20us%20use%20one%20set%20of%20User%2FPass%20for%20multiple%20Related%20domains%20in%20Edge%20password%20mgr%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1911156%22%20slang%3D%22en-US%22%3E%3CP%3EThis%20is%20a%20useful%20feature%20that%20LastPass%20has.%20%3CSTRONG%3Ethis%20would%20prevent%20from%20creating%20multiple%20duplicate%20entries%20in%20Edge%20password%20manager%20and%20also%20manage%20logins%20more%20efficiently.%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ein%20LastPass%20it's%20called%20Equivalent%20domains%2C%20the%20description%20says%3A%3C%2FP%3E%3CP%3E%22%3CSPAN%3EAdd%20domains%20that%20use%20the%20same%20login%20service.%20We've%20already%20listed%20popular%20sites%20that%20use%20shared%20credentials%20across%20domains%20under%20their%20control.%20For%20example%3A%20amazon.com%20and%20its%20local%20variations%2C%20or%20gmail.com%20and%20other%20google%20products.%22%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3Eit's%20pretty%20clear%2C%20instead%20of%20saving%202%20password%20entries%20for%20Facebook.com%20and%20Messenger.com%20%2C%20we%20use%20the%20same%20set%20of%20username%20and%20password%20for%20both%20websites.%20this%20also%20makes%20it%20easy%20when%20user%20changes%20password%20for%20one%20website%2C%20because%20the%20other%20one%20will%20be%20updated%20automatically.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3Ehere%20are%20more%20real%20and%20important%20examples%3A%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CDIV%20class%3D%22lia-spoiler-container%22%3E%3CA%20class%3D%22lia-spoiler-link%22%20href%3D%22%23%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%20target%3D%22_blank%22%3ESpoiler%3C%2FA%3E%3CNOSCRIPT%3E(Highlight%20to%20read)%3C%2FNOSCRIPT%3E%3CDIV%20class%3D%22lia-spoiler-border%22%3E%3CDIV%20class%3D%22lia-spoiler-content%22%3ESuperuser.com%26nbsp%3Bstackoverflow.com%26nbsp%3Bstackexchange.com%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3Ebing.com%20hotmail.com%20live.com%20microsoft.com%20msn.com%20windows.com%20windowsazure.com%20office.com%20skype.com%20azure.com%20microsoftonline.com%3CBR%20%2F%3E%3CBR%20%2F%3Efacebook.com%20messenger.com%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3Efirefox.com%20mozilla.org%3CBR%20%2F%3E%3CBR%20%2F%3Eamazon.com%20amazon.co.uk%20amazon.ca%20amazon.de%20amazon.fr%20amazon.es%20amazon.it%20amazon.com.au%3CBR%20%2F%3E%3CBR%20%2F%3Eea.com%20origin.com%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3ESteamcommunity.com%26nbsp%3B%20store.steampowered.com%3C%2FDIV%3E%3CNOSCRIPT%3E%3CDIV%20class%3D%22lia-spoiler-noscript-container%22%3E%3CDIV%20class%3D%22lia-spoiler-noscript-content%22%3ESuperuser.com%26nbsp%3Bstackoverflow.com%26nbsp%3Bstackexchange.combing.com%20hotmail.com%20live.com%20microsoft.com%20msn.com%20windows.com%20windowsazure.com%20office.com%20skype.com%20azure.com%20microsoftonline.comfacebook.com%20messenger.comfirefox.com%20mozilla.orgamazon.com%20amazon.co.uk%20amazon.ca%20amazon.de%20amazon.fr%20amazon.es%20amazon.it%20amazon.com.auea.com%20origin.comSteamcommunity.com%26nbsp%3B%20store.steampowered.com%3C%2FDIV%3E%3C%2FDIV%3E%3C%2FNOSCRIPT%3E%3C%2FDIV%3E%3C%2FDIV%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ea%20bit%20hard%20to%20share%20it%20through%20Edge%20feedback%20and%20also%20keep%20the%20proper%20formatting%20but%20i'll%20try.%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F484598%22%20target%3D%22_blank%22%3E%40fawkes%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1911156%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EDomain%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eedge%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eimportant%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Epassword%20manager%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Erequest%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Esuggestion%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EWebsites%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1924928%22%20slang%3D%22en-US%22%3ERe%3A%20Feature%20Request%2C%20Let%20us%20use%20one%20set%20of%20User%2FPass%20for%20multiple%20Related%20domains%20in%20Edge%20password%20m%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1924928%22%20slang%3D%22en-US%22%3E%3CP%3Ethanks%20for%20this%20detailed%20feedback%2C%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F310193%22%20target%3D%22_blank%22%3E%40HotCakeX%3C%2FA%3E!%3CBR%20%2F%3E%3CBR%20%2F%3EIt's%20not%20hard%20to%20see%20how%20bundling%20these%20domains%20together%20and%20allowing%20saving%20of%20one%20username-password%20for%20all%20would%20be%20beneficial.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3EAs%20it%20stands%20today%2C%20Microsoft%20Edge%20(and%20other%20Chromium%20browsers%20as%20well%2C%20but%20not%20100%25%20sure%20about%20all)%20classify%20passwords%20at%20the%20domain%20level.%20This%20works%20quite%20well%20for%20most%20use%20cases%2C%20but%20not%20in%20some%20special%20cases.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3EThere%20are%20other%20efforts%20out%20there%2C%20as%20well%2C%20such%20as%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fgithub.com%2Fapple%2Fpassword-manager-resources%2Fblob%2Fmain%2Fquirks%2Fwebsites-with-shared-credential-backends.json%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Epassword-manager-resources%2Fwebsites-with-shared-credential-backends.json%20at%20main%20%C2%B7%20apple%2Fpassword-manager-resources%20%C2%B7%20GitHub%3C%2FA%3E%26nbsp%3Bthat%20aspire%20to%20empower%20browsers%20and%20password%20managers%26nbsp%3Bwith%20the%20same%20capability.%20We%20are%20aware%20of%20this.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3EYour%20feedback%20is%20valued%2C%20and%20we%20will%20take%20the%20same%20into%20consideration.%20There%20are%20no%20further%20updates%20to%20share%20on%20this%2C%20at%20the%20moment.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1924935%22%20slang%3D%22en-US%22%3ERe%3A%20Feature%20Request%2C%20Let%20us%20use%20one%20set%20of%20User%2FPass%20for%20multiple%20Related%20domains%20in%20Edge%20password%20m%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1924935%22%20slang%3D%22en-US%22%3EThanks%2C%20I%20understand%20this%20can%20be%20a%20radical%20change%20to%20Chromium%20password%20manager%2C%20which%20Edge%20is%20built%20on%3C%2FLINGO-BODY%3E
Highlighted
Honored Contributor

This is a useful feature that LastPass has. this would prevent from creating multiple duplicate entries in Edge password manager and also manage logins more efficiently.

 

in LastPass it's called Equivalent domains, the description says:

"Add domains that use the same login service. We've already listed popular sites that use shared credentials across domains under their control. For example: amazon.com and its local variations, or gmail.com and other google products."

 

it's pretty clear, instead of saving 2 password entries for Facebook.com and Messenger.com , we use the same set of username and password for both websites. this also makes it easy when user changes password for one website, because the other one will be updated automatically.

 

here are more real and important examples:

 

 

Spoiler
Superuser.com stackoverflow.com stackexchange.com


bing.com hotmail.com live.com microsoft.com msn.com windows.com windowsazure.com office.com skype.com azure.com microsoftonline.com

facebook.com messenger.com


firefox.com mozilla.org

amazon.com amazon.co.uk amazon.ca amazon.de amazon.fr amazon.es amazon.it amazon.com.au

ea.com origin.com


Steamcommunity.com  store.steampowered.com

 

a bit hard to share it through Edge feedback and also keep the proper formatting but i'll try.

@fawkes 

 

4 Replies
Highlighted
Microsoft Verified Best Answer

thanks for this detailed feedback, @HotCakeX!

It's not hard to see how bundling these domains together and allowing saving of one username-password for all would be beneficial. 

As it stands today, Microsoft Edge (and other Chromium browsers as well, but not 100% sure about all) classify passwords at the domain level. This works quite well for most use cases, but not in some special cases. 

There are other efforts out there, as well, such as password-manager-resources/websites-with-shared-credential-backends.json at main · apple/password-ma... that aspire to empower browsers and password managers with the same capability. We are aware of this. 

Your feedback is valued, and we will take the same into consideration. There are no further updates to share on this, at the moment. 

Highlighted
Thanks, I understand this can be a radical change to Chromium password manager, which Edge is built on
Highlighted
the good idea is (at least for now) warn us (with the news security feature if leak) if we have the same password multiple time, and have a button to ignore it with (same account option) or something like that.
With that we can have an additional security who prevent reused password and it will help you to create slowly a database of domaine who share username/password (if you implement that later).
Highlighted

@Aelisya 

Currently, even if the same username-password is reused on multiple sites they ALL get flagged in the alert as being at-risk. There is no common re-use warning for this scenario. 

Password reuse is a common problem, but it can happen between both related and unrelated domains.