Should a password be long and complex? What about a string of easy-to-remember words instead? Are password managers the best way forward? What about multiple factors? Is there a better way?

These are all questions your users have: learn how to answer them and how to make security easy by moving beyond passwords for your web app entirely with magic link based authentication! Your users just click a link; they don't have to remember anything.

Full code examples available on GitHub:


Comments are closed.

Eric Morris at 11:04 on 4 Feb 2017

I'm not sure about how much this technique actually makes sense. Many people will not want to go to their email every single time they want to login to a particular resource. In fact, most people I know will be annoyed.

In any case, it was still worth learning how this mechanism works, and is worth thinking about as an option.

Symeon Quimby at 11:32 on 6 Feb 2017

It's interesting to see how "Magic Links" work and some use cases where they could be handy (e.g. Slack). Not sure how relevant they will be in my day to day, but it is always nice to have options.

Great introduction to magic links. Not sure how applicable that would be to the applications I write, but I'll definitely add them as an option for clients.