Product builders, how would you like your users to login to your app? With or without passwords?

@advaitruia, look into passkey technology and how it has enabled passwordless logins with faceid, fingerprint and pin type patterns on all devices. We supported this at Vault Vision and it's been a great rollout so far!

I am not sure how can we get rid of passwords as a concept because even if you embed magic link or OTP via emails, you still need to log in to Gmail/other email clients to access these authentication types.

Passwordless with OTP reduced our failure rate more than 3 times

Funny enough, I logged in to @producthunt today. I had forgot how I signed up here and tried logging in with gmail, it told me that I don't have gmail login for my user and it sent me a link to login. I clicked the link and here I am. Super smooth experience. This brings me to answer the question * For most apps, I want passwordless because similar to PH login story today, I will forget password anyway and will reset the password. * But in some case, passwords combined with 2FA make more sense e.g. banks. For most transactions, that is anyway requirement by RBI to have have at least two ways to authenticate user (something they can remember + something they own) * Social login to me makes sense only when the app is dependent on some social data e.g. a twitter analytics app. * In some cases, I think a combination of passwordless with password can be suitable where passwordless gives you access to some resources and then a combination of password+2FA gives you access to more sensitive resources

I'm good with them using third-party identity services like Google, Okta, etc.

I feel via magic links that are sent on email is best and efficient way to login!

I would prefer passwordless. Rather than struggling to remember the passwords, it's too convenient to login through OTPs and Magic link. This removes all the friction caused by passwords and enhances user experience and adoption. We've built https://www.producthunt.com/prod... to remove passwords from the internet. It only takes few minutes to add a few lines of code and your authentication is live.

Passwordless - without a doubt. Magic links and OTPs for the win!

I prefer passwordless, not having to remember passwords and the convenience of just having a code texted to the user seems so much more friction free

I prefer Magic links via email or OTP via Email. Once due to traveling I was not able to access my phone number and SMS but the internet was there at Airport and I got access to my account using Email OTP and Magic link.

With passwords, hands down.

Email links and OTPs are good authentication methods but neither are too reliable because they depend on the email provider and the cell connection. That's why I'd go with passwords plus email links for two-step authentication. Of course, social logins are really helpful because users don't have to enter theri credentials all the time.

The convenience of Magic links (with email) is just great

I didn't realize this but https://www.gripinvest.in/ does this & honestly I have never faced issues with logging in & their UX is very crisp.

I prefer a Passwordless system but something other than Magic link or SMS because they also depend on other apps or services that need to be logged in.

Passwordless, for sure!

I am in favor of passwordless login, using the OTP or magic link is the need of the hour as the main focus around is to reduce the friction for the end users.

I think Magic links sent on email are great, enter username and click on the link you get and you're good to go. No need to manage passwords, OTP sent via SMS are big hassle sometimes, you need to wait minutes for OTP to arrive if there's a problem with mobile service.

Hhmm.. I think I'd prefer going passwordless. OTPs are so much easier. No one remembers passwords these days.

I would prefer passwordless (maybe even thirdparty login). Having thirparty login can also remove the step of capturing the user info, so one less step for the user on-boarding process. If I want to make it more secure, I would add MFA.