I'm thinking about launching a hobby app and I'm considering not using email at all for signup. The problem is that about 25% of emails land in spam, regardless of what I do to fix it. I've been frustrated trying to configure Amazon SES SMTP, which feels like it's taking all the fun out of this project. I want to allow signups only through Google and Microsoft—what do you all think? Is this a viable approach?
11 Answers
I personally wouldn’t use it. I want to minimize attack risks from shared accounts, so you’d have to convince me hard to log in with Google or Microsoft.
It sounds like your IP might be blacklisted on Proofpoint, which could be affecting your email deliverability to major providers. You might want to check that.
Great lead! I'll definitely look into that.
What about SMS for authentication? It's not free, but it could work.
I'm not a fan of SMS verification, I prefer email.
Honestly, if it's an app I really want, I'd reluctantly sign up using Google or Microsoft. But if I'm not that interested, I'd probably skip it altogether. But hey, what's the app for? If it's just a hobby app, maybe keep things simple.
It's actually a hobby app focused on building credit, kind of like an anti-Credit Karma where I don’t sell user info.
I’d prefer no email signup over a poorly implemented one with email/password. Password resets can be a hassle and it’s easier for users if they don't have to deal with that nonsense.
Totally get you on that! Passwords can be such a pain, and this could ease user frustration.
Using OAuth2 for login is totally valid! Just be sure to implement the correct flows. Why limit yourself to just Google and Microsoft? There are many other options depending on your audience.
I don't think it's a bad idea. Sure, you might lose some users, but consider adding Apple to your list of options. Many users like the 'dummy email' feature Apple offers.
Good point! I hadn’t thought of that; Apple definitely could be a huge addition.
You could consider email access links, which provide a smoother user experience without traditional passwords. It’s simple and effective!
That's intriguing! If I can tackle this email problem, I might just offer that.
OAuth2 has its benefits, and moving away from email can definitely streamline things if done right!
Have you thought about using AWS SES? It's a cheap and effective way to avoid spam issues with email.
Setting up your own email server isn’t recommended nowadays. Services like SendGrid or other cloud vendor email integrations are a better choice to avoid these chaos.
I appreciate your honesty, thanks for sharing your views!