# off-topic
- x
Xyo
07/28/2021, 4:50 PMMagic links will always have the drawback of requiring an extra browser tab - x
Xyo
07/28/2021, 4:50 PMIn apps, this usually isn’t that important since the tab would just open the app again - x
Xyo
07/28/2021, 4:51 PMFrom a UX point of view, I’d like the magic link to do what it has to do, then close the tab (which won’t always be possible), and original tab would login - x
Xyo
07/28/2021, 4:52 PMSecurity wise, if you trust email then no issue - a
Azura
07/28/2021, 4:52 PMFor mobile apps, phone auth is more preferred in my opinon. - s
Scott P
07/28/2021, 4:52 PMAn SMS can also only be sent to a single device. From that perspective, it's probably a bit more secure, but you're potentially trading convenience. - a
Azura
07/28/2021, 4:52 PMFor desktop, magic link > phone auth - x
Xyo
07/28/2021, 4:53 PMTo be fair, I trust email more than sms - x
Xyo
07/28/2021, 4:54 PMSIM cards do get spoofed, and most of the time you won’t know it. On the email side, you’ll have a central authority showing you activity logs - x
Xyo
07/28/2021, 4:55 PMThere’s also the recent case where a company offering business services for phone numbers didn’t properly verify customers, so you could claim to be X and route their messages to your system. - x
Xyo
07/28/2021, 4:55 PMnow sure that’s an isolated issue that most probably won’t happen much - a
Axel
07/28/2021, 4:56 PMI'm not quiet sure about twilio service but usually many phone auth apps charge the sms fee on the user which is quiet annoying - x
Xyo
07/28/2021, 4:56 PMBut yeah, you’re trading convenience. At least on desktop. Using a mobile app/website, most phone OSes will auto suggest the code from your sms history. - x
Xyo
07/28/2021, 4:57 PMWhich is often even more convenient than other means - x
Xyo
07/28/2021, 4:58 PMBut yeah. I’m not a fan of magic links. They have a purpose but it’s not easy to use them without making the UX worse - a
Azura
07/28/2021, 4:59 PMAgreed. - f
Flyken
07/28/2021, 5:01 PMhow do i go about making a PR so i can fix something on the supabase website? - s
Scott P
07/28/2021, 5:01 PMIf it's something in the docs, click the 'Edit this page' link at the bottom of the page - f
Flyken
07/28/2021, 5:01 PMits on the actual supabase website - f
Flyken
07/28/2021, 5:01 PMlike supabase.io - a
Azura
07/28/2021, 5:03 PMYou have to fork supabase.io web repo before you can create a pull request - f
Flyken
07/28/2021, 5:04 PMhhmm - f
Flyken
07/28/2021, 5:23 PMi can't commit - f
Flyken
07/28/2021, 5:24 PMi keep getting signing key something or another - s
silentworks
07/28/2021, 5:26 PM@User you need to fork the repo, you can't commit directly to Supabase's github account - f
Flyken
07/28/2021, 5:27 PMoh right - f
Flyken
07/28/2021, 5:33 PM@User still can't comit - f
Flyken
07/28/2021, 5:33 PMstill says i have no gpg key - s
Scott P
07/28/2021, 5:36 PMYou forked the repo, and then git pulled the fork, right? - s
silentworks
07/28/2021, 5:36 PM@User and are you trying to commit the change to your fork?