Hi everyone, I’m working on integrating Embedded Login with javascript forgerock-sdk, but in login submit it reveals username and password in the network inspect payload.
Unless I’m mistaken here, you are looking at your browser’s developer tools which are capturing the details of the request that your browser sent to the URI. Of course the developer tools will capture the data in the payload, as the browser is where those values were sent from. You will find this true on literally every single website you access. This does not mean that anyone else can view this data.