|
|
|
|
|
|
by pavel_lishin
3287 days ago
|
|
|
As a consumer of services, it's not more convenient for me than clicking the Lastpass (or your password manager of choice) icon and filling in the login form. Plus, I imagine some people may have multiple email accounts, and would have to hunt through them to figure out which one they used to sign up with. (Similar to my problem with StackOverflow; I can never remember which identity provider I used to sign up with them, and end up just clicking on all of them in order until one lets me in. For all I know, I might have multiple accounts.) |
|
|
So far, the few arguments against here are individual, convenience-based reasons. Those are certainly valid reasons, because if you inconvenience a potential user, they may never become an actual user.
Not everyone has a password manager, and many people use the same username, email and password across many services. The larger danger can be that if one service is hacked, it may provide a hacker access to many services, including email. A provider of a service with a passwordless login would never have to worry about being the root cause of such a breach. And, as long as the users' email was not hacked, would not be susceptible to malicious activity through another hacked service.
One question for the OP: What kind of service are we talking about? If the information is sensitive, then perhaps it is not a good idea. If it would be safe to keep a user logged-in after a session ends, then maybe a good consideration. By limiting the number of login requests, then you reduce the inconvenience.