> don't have a form with just a login email and force the user to click to enter the password
I was noticing that this kind of login forms seems to be proliferating, especially on "big tech" sites. (And personally, I also find it annoying)
Always assumed there was some reason why sites are switching to this pattern, e.g. better bot protection. Does anyone know more about this?
I suspect they ask for email first in order to determine whether to log you in via SSO vs. require a password.
loading story #48347960
As someone who's built just that, can confirm. If users have SSO configured, or a Passkey, or any other policies apply, you first need to identify the account to be able to determine which options to offer - maybe they don't even have a password in the first place, so displaying the field would cause confusion. As a side effect, this also conveniently allows to check for blocked accounts.
Ah, that would make sense.
I always assumed it was because of SSO redirects