What can we do to make a mobile app better? What subsidiary features are worth providing for our users? I have some ideas. You might, too. So, let’s compare our notes. Without any prescriptions attached, here are seven features I believe can palpably improve a user’s experience with a mobile app.
And yet more sites do it, even on desktop. As far as I can tell, most of them are also doing it in a way that breaks security by validating the username before asking for the password.
I know that single sign-on can be integrated that way.
For example, let's say you work at Wheezecakes Inc. and want to log into your programming.dev account. Then you'd type your e-mail address, jadero@wheezecakes.com, into the username field and hit enter.
The webpage sends that to the server, which realizes that you're a Wheezecakes employee, so it redirects you to login.wheezecakes.com or whatever SSO provider is in use, you log in there (or ideally already have a login cookie), and then programming.dev just gets told that, yeah, you're authenticated to login.
So, while it's obviously possible that webpages genuinely do this wrong, you're probably seeing such SSO integration and they're not actually validating the username ahead of time.
Yeah, it's possible to get it to work with password managers. I believe it has to do with ensuring the password field still exists on the page when the username is shown.