SuperTokens is used by 10,000s of developers worldwide. It eliminates vendor lock in and other tradeoffs associated with traditional SaaS providers. With launch of passwordless, apps can authenticate their users through email IDs or phone numbers!
Hi everyone!
Today, weβre releasing the most powerful passwordless solution ever built! π
What is passwordless?
Users can enter their email ID or phone numbers and receive a "Magic Link or an "OTP" instead of a password
Magic links are URLs that contain a unique identifier (password) embedded in the URL itself. The OTPs and magic links are time based, one time use only. They expire quickly and can only be accessed by someone who has access to that specific email ID or phone number.
Advantages and concerns:
Users often reuse the same password or use "password123" which can be guessed or brute forced. Removing passwords out of equation removes this concern
In terms of UX, passwordless may present a significantly improved UX depending on the type of app and user
For eg: Phone number based OTPs may be a great way to maximize sign conversions for mobile apps.
We support email and phone based auth in our implementation of passwordless. WebAuthN and push notif based auth coming soon!
I'd love to hear what you think about passwordless and answer any questions about user experience and security!
Supertokens made it easy to set up passwordless email and GitHub authentication. It's the best open-source authentication library that works end-to-end with Python.
Easy set-up and configuration, but the best thing is not those...
It's the confidence in what I deploy and what my users interact with since I control all the code/servers and don't have to redirect them off-site for authentication.
Agenta
SuperTokens Passwordless