▲ ▼ Password less authentication
Even when thousands of online accounts get hacked each week due to weak passwords, people continue to use them. Even though free random(pseudo) password generator apps are available for years now, it hasn't gained large adoption.
Passwords by design rely on weakness in human psych - memory; we cannot generate or remember random passwords which are secure.
It's time to do away with passwords completely and come up with seamless, secure alternative which can work for a layman or security professional alike.
Voted!
Need karma! Please check contributor guidelines.
This is the problem even we faced hence we started developing https://sawolabs.com . SAWO Labs is a passwordless & OTP-less authentication API. You can use it to make your website and app onboard users without any passwords. Let me know if you want to know more
Glad that you're addressing password-less ecosystem, I guess using smartphone itself as an identifier for 2FA. When I try to sign-up it asks for OTP after email id but no information about how to get that.
So we have the solution made for going OTP less too hence you can integrate our API and there is no need for your app to ask for OTP for onboarding users
Hey, I asked about signing-up to try. When I click 'Start Trial' it goes to dashboard, How do new users even sign-up to your service?
Hey, So you need to first login into the dashboard and copy the API keys. Now refer to the documentation page on how to integrate the passwordless login API solution (https://docs.sawolabs.com/sawo/). Please note you can only experience passwordless login solution on those websites/applications that are our clients. If you want to integrate our solution please refer to our documentation page for more info.
> So you need to first login into the dashboard and copy the API keys
How would a person who wants to integrate your product into their application do it, When 'Start Trial' leads to dashboard where it asks for OTP (There is no sign-up AFAIK).
First-time OTP is sent to sign up the user. As soon as you complete the verification, you will be able to access the dashboard. You can book a demo call with us from our website. Would be happy to clear all your doubts
I've actually accomplished this by emailing users a quick expiring randomly generated one-time pass phrase that they have to use in other to sign up and sign in to my app.
I modeled this authentication method off of the way the app Notion does it.
Like password reset URLs? Is that the only form of authentication in your application or is it secondary optional choice like in Amazon, Slack etc.? How do your users respond to the added friction (or) do they feel it's an added friction?
Can you share your application link here?
notion.so is an example that uses that kind of magic email link