Bitwarden releases magic links API (bitwarden.com)

submitted 6 months ago by Renn@sh.itjust.works to c/bitwarden@discuss.tchncs.de

4 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] nailingjello@lemmy.zip 3 points 6 months ago

How do magic links work?

Magic links offer a secure and intuitive authentication method by sending users a unique link via email. Upon clicking the link, users are redirected to the application's endpoint for token verification and sign-in, eliminating the need for passwords.

Am I missing something? So if someone hacks my email they now have access to all of my accounts? No thanks.

[-] waratchess@lemm.ee 10 points 6 months ago

If someone hacks your email you're already fucked, since for most accounts all that's required to do a password reset is having email access.

[-] Daxtron2@startrek.website 3 points 6 months ago

Plenty of auth implementations that do stuff like this already, and like the other person said, if your email is compromised, you're already fucked.

[-] subtext@lemmy.world 3 points 6 months ago* (last edited 6 months ago)

This is a API for Bitwarden Passwordless.dev, not for the Bitwarden password manager.

Is this offering a part of Bitwarden Password Manager?

The API is available to customers using Bitwarden Passwordless.dev, a separate product.

this post was submitted on 02 Apr 2024

26 points (96.4% liked)

Bitwarden

738 readers

2 users here now

Discuss the Paswordmanager Bitwarden.

founded 1 year ago

MODERATORS

wuffa@discuss.tchncs.de