Credential management still exists in this scenario, but it's delegated to the email provider. This is about risk mitigation for the resource or service provider, not value creation for the consumer, which is fine but should still be noted. FIDO2 with Passkeys is a bit more consumer-focused, IMHO.
Reposted from
Jason Koebler
we wrote about magic links and why we don’t want your password. we know this can be annoying in some circumstances/edge cases, but there’s no good way for us to create a password login system without putting people at risk: www.404media.co/we-dont-want...
Comments