How to prevent user form entering password to next to password field?
Being long time internet users I tend to fill forms barely looking at field labels, especially if it is as common and seemingly predictable as registration form. It often leads me into entering password into the field which was not intended for that. I’m guessing not the only one having this habit.
The examples below appear to me as violations of POLA principle and lead users to errors with quite serious security implications: password can be displayed somewhere in the UI, it is likely to be stored in open form, it will be as autocomplete suggestion in the browser.
How to keep users from retyping their password in the field which is not intended for that?
Broader question here is how to break user expectations and habits when they are not applicable and do no good. In other words, how to violate POLA correctly?