Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
xg15 an hour ago

> don't have a form with just a login email and force the user to click to enter the password

I was noticing that this kind of login forms seems to be proliferating, especially on "big tech" sites. (And personally, I also find it annoying)

Always assumed there was some reason why sites are switching to this pattern, e.g. better bot protection. Does anyone know more about this?

mpetrovich an hour ago | parent | next [-]

I suspect they ask for email first in order to determine whether to log you in via SSO vs. require a password.

9dev 29 minutes ago | parent | next [-]

As someone who's built just that, can confirm. If users have SSO configured, or a Passkey, or any other policies apply, you first need to identify the account to be able to determine which options to offer - maybe they don't even have a password in the first place, so displaying the field would cause confusion. As a side effect, this also conveniently allows to check for blocked accounts.

xg15 36 minutes ago | parent | prev [-]

Ah, that would make sense.

jurf an hour ago | parent | prev [-]

I always assumed it was because of SSO redirects