One Touch Login
Overview
One Touch Login simplifies the authentication process by allowing users to log in without registering or remembering passwords. Instead of requiring traditional login credentials, a secure link or OTP is sent to the customer's email address or phone number. Once the customer clicks the link or enters the OTP, they are instantly authenticated and logged into their account. This method enhances user experience by reducing friction in the login process while maintaining high-security standards.
Common Use Cases
One Touch Login is beneficial in various scenarios, including:
- Frictionless Authentication: Customers can log in without creating an account or remembering passwords.
- Enhanced Security: Eliminates password-related vulnerabilities by utilizing one-time links or codes.
- User Convenience: Reduces authentication complexity, improving user experience.
- Multi-Channel Access: Supports both email-based and SMS-based authentication.
Configurations
Here's how to enable and configure it in your authentication settings:
- Enable OneTouch Login
- Email Configuration
- SMS Configuration
- Navigate to Authentication>Authentication Configuration>Authentication Method>Passwordless>One Touch Login in the Admin Console.
- Ensure the toggle is set to Enabled. If unavailable, contact the LoginRadius Support Team.
To configure one-touch login via email:
-
Under the One Touch Login section, click Configure Email Template or navigate to Branding>Email Templates>One Touch Login in the admin console.
-
Click on the one-touch Email Template settings set the following parameters:
- Email Template Type: Select the template for the email you want to send to your customer.
- Request Limit: Maximum number of login requests allowed.
- Disabled Period: Time restriction before allowing subsequent login requests.
- Email Token Validity: Define the token expiration duration.
- Token Type: Select either Magic Link or OTP from the dropdown based on your requirement.
-
To save the setting, click on the SAVE button.
-
You can use the default email template or create and manage your own. This documentation provides more details on managing email templates.
- You can easily configure SMTP settings to send emails through your chosen provider. A step-by-step guide will help you set up your email provider.
To configure One Touch Login via SMS:
- Under the One Touch Login section, click Configure SMS Template or navigate to Branding>SMS Templates>One Touch Login in the admin console.
- Click the one-touch SMS Settings icon and configure the following:
- SMS Template Type: Select the SMS template for login messages.
- Request Limit: Define the number of allowed login requests within a timeframe.
- Request Disabled Period (Minutes): Set the cooldown period for repeated OTP requests.
- OTP Validity Limit (Seconds): Specify the OTP expiration time.
- To save the setting, click on the SAVE button.
- SMS templates can be managed using the available actions: Add, Edit, Reset, and Delete Template. For more information, refer to the following documentation.
- Configure Text/SMS provider settings to deliver OTPs and notifications to users via text or voice call. A detailed guide can help you integrate your SMS provider.
Integration Guide
The following details help implement a one-touch login in the application.
| Integration via API | Integration via V2.js Interface |
|---|---|
| One Touch Login by Email API: This is used to send a link to a specified email. One Touch Login by Phone API: This API is used to send a one-time password to a given phone number | V2.JS One-Touch Login JS SDK: Implements one-touch login into the front-end application. |
| Integration via SDK | Integration via JS SDK |
| You can use any SDKs provided by LoginRadius based on your requirements for SDK implementation. LoginRadius GitHub Repositories | To implement the One-Touch login using the client-side library, utilize the JS SDK. |
This structured approach ensures a smooth One Touch Login implementation across multiple platforms.
Best Practices
To ensure a secure and seamless experience with One Touch Login, follow these best practices:
-
Use Short-Lived Links and OTPs: Set a reasonable expiration time for login links and OTPs to minimize security risks.
-
Limit OTP Requests: Implement rate limits to prevent OTP spamming and potential abuse.