cross-posted from: https://quokk.au/c/mildlyinfuriating/p/990534/why
How hard is it to implement email verification?
I hate this. I don’t want to remember which provider I use for each site and I don’t want accidentally give too many permissions while logging in. Just give me email and password inputs, don’t block password managers and don’t force any magick link nonsense and I’m happy. I don’t even need passkey support
No Pornhub option?
Google and youtube are the same login though…
Honestly i like these buttons from a user/security POV as oauth only passes back a “login successful” reply and an identifier to associate an account with. Less PII to spread around the internet.
I hate it when it afterwards still prompts me to create a full account, on some badly made sites. Why even allow oauth login if I still have to give you all my personal data…
I like this. I want to be able to quickly test the product and if I like it, I make an account afterwards with my email. So I’ve recently been trying a lot of API services for various things and being able to test it quickly and then just delete my account. I see that as a win. Should have email also
Where humour?
If you host your own DB of users and passwords you are a target. Offloading it to as many wide-spread oauth providers as possible is a smart move.
Tell that to all the people whose google accounts of 20+ years got locked out with zero recourse or warning.
