Comment on Why?
Wispy2891@lemmy.world 2 weeks agoBut most oauth implementations use the user email as identifier so they get the email anyway
Comment on Why?
Wispy2891@lemmy.world 2 weeks agoBut most oauth implementations use the user email as identifier so they get the email anyway
it_depends_man@lemmy.world 2 weeks ago
All the smarter ones don’t because an email can change, your google account unique id will not, that’s the purpose of account IDs.
I won’t deny that many people/websites probably do use email though. Which is bad. But I can’t deny that that probably is what is happening.
Wispy2891@lemmy.world 2 weeks ago
i saw many that use the email as “convenience”, as the user can later login with a magic link (i hate those!) without the oauth or even using another oauth service linked to the same email