> Maybe it's my mother, and she now has to go find where she wrote down her email password because she still can't figure out that 1Password thing I setup for her. Also, she does not have 1Password on this computer (maybe it's a public library).
This is exactly the reason people use magic links - passwords are painful.
I generally don't mind having one or the other, so either password or magic link. What I can't stand is having both in the same login flow:
- Enter your email
- Get sent a magic link
- Open magic link
- Continue and enter your password
- Enter your 2FA as well
- Smash computer
Passwords aren’t painful if you have good tools for them such as password generator/managers, what is painful is all of the sites that break them by making you change your password periodically or requiring particularly obtuse sets of characters or prohibiting certain characters like ‘ or \ (if you have to confess that kind of malpractice just fire your IT already)
I disagree. It's easier to get the non-technical in my life to remember one password than many. And most of them can't even manage that. I too have failed many times with 1password. It's literally one password and they can't remember it. It makes me understand why I keep seeing new email addresses: the moment their phone dies, they are out of luck because they don't remember their email passwords. At least magic link is one less password for them to forget.
And when they can't log into the email to get their magic link because they don't know the password?
We're just moving the problem