▲ ▼ Password less authentication
Even when thousands of online accounts get hacked each week due to weak passwords, people continue to use them. Even though free random(pseudo) password generator apps are available for years now, it hasn't gained large adoption.
Passwords by design rely on weakness in human psych - memory; we cannot generate or remember random passwords which are secure.
It's time to do away with passwords completely and come up with seamless, secure alternative which can work for a layman or security professional alike.
Voted!
Need karma! Please check contributor guidelines.
I've actually accomplished this by emailing users a quick expiring randomly generated one-time pass phrase that they have to use in other to sign up and sign in to my app.
I modeled this authentication method off of the way the app Notion does it.
Like password reset URLs? Is that the only form of authentication in your application or is it secondary optional choice like in Amazon, Slack etc.? How do your users respond to the added friction (or) do they feel it's an added friction?
Can you share your application link here?
notion.so is an example that uses that kind of magic email link