Why a two step login?

scott-nc
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
July 8, 2019

Why does the Bitbucket website login page (and sadly, many other technical sites) require two separate form submissions - one for the login email address and a second form submission for the password?  Not talking about 2FA - just the simple, browser login page.

I think it needlessly complicates the login process, especially when using a password manager (1Password in my case), which could be as easy as a single button click.

 

login.png

2 answers

0 votes
scott-nc
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
July 10, 2019

PivotalTracker uses a similar two-step login, but they have a workaround URL that can bypass the email question.  For example:

 

https://www.pivotaltracker.com/signin?credentials%5Busername%5D=somebody@somewhere.com

 

One button click in the password manager to login. Does Bitbucket have anything like that?

0 votes
Tyler T
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
July 9, 2019

Here is some discussion as to why Google started this pattern:

https://ux.stackexchange.com/a/78810

Some of the reasons Google made this change were:

  • Preparation for future authentication solutions that complement passwords
  • Reduced confusion among people who have multiple Google accounts
  • A better experience for SAML SSO users, such as university students or corporate users that sign in with a different identity provider than Google

It is likely that these same benefits apply to Atlassian.

Note: If you access Bitbucket regularly on the same device you should not see the login page because the autologin cookie will be saved for 30 days.

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events