N
N
nektobit2016-04-10 06:29:34
Mobile development
nektobit, 2016-04-10 06:29:34

Is there an authorization method that I have come up with?

I'm embarrassed that popular services these days have to go through a humiliating authorization process. Case:
1. A year ago I changed my account password on a popular service. Due to suspicion of hacking. I came up with a new password and for a year I safely forgot it.
2. All this time, cookies worked out perfectly.
3. I reinstalled the browser and away we go - enter the captcha, go to your email, come up with a new password. Not! Think of a password with a capital letter. Not! You have already used this password... Etc.
As a result, I spend up to 10 minutes on an elementary procedure...
As I want:
1. I enter my phone number and click "sign in with SuperAuthApp"
2. The application in my phone says "do you really want to go to site such and such? Yes / No"
How else do I want to:
1. Click on the "Sign in with SuperAuthApp" button
2. My browser extension already knows my phone number
3. The app in my browser says "do you really want to go to site such and such? Yes / No"
Now I use solutions like DashLane. Why is that bad? Because it's a crutch.
Problems:
1. The phone can sit down. Ok, then I'm ready to enter the captcha, walk on the mail, etc.
2. Someone can take possession of your phone. Ok, you can protect the application with a pin code, entering a graphic key, and so on. Everyone cares about safety in their own way. Someone qwerty norms.
And now the question itself: do such solutions already exist or is it possible to cut a startup?))

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Y
Yuri Izotov, 2016-04-10
@railsfun

directly, a rhetorical question :) I understand what you are asking, but it reads funny :))))
And the problem of centralized authorization has been raised for a long time. There was Openid, some other attempts. Your idea certainly exists in the implementation, but for some reason few people use it. Such things.

I
Igor Kalashnikov, 2016-04-10
@zo0m

in most cases, IMHO, it's faster and easier to enter a password.
My option:
1. Open the site, there is a form for entering a login / password, or a unique session QR
2. Scan the QR from your AuthApplication
3. Log in It's
easier because you don't need to enter your number on the site. This thing is used by Privatbank, privat24.ua, I really like it. And in the application they can enter with a touch ID. Total 0 passwords.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question