People Against Passwords

This is cool, totp on a classic Casio <https://blog.singleton.io/posts/2022-10-17-otp-on-wrist/|https://blog.singleton.io/posts/2022-10-17-otp-on-wrist/>

Taking one single-purpose-device and making it a different single-purpose-device...
So...
Cool - yes.
Useful - not so sure :slightly_smiling_face:

<https://neal.fun/password-game/|https://neal.fun/password-game/>

<@U03NYKT9T45> check for sponsorship options. They have Starbucks, she’ll :)

&gt; At least 30% of your password must be in the Wingdings font.
&gt; 
I die, so funny :joy:

Can I catch the descope team at Blackhat/Defcon? :grin: 

Vibhu - yes! We'll be in town next week. Happy to catch up!

Arriving tomorrow. Have a t-shirt for you :)

Hi Team descope, sorry to hear about horrific news in Israel. Praying for safety for all families in Israel :flag-il:  Stay strong. 

Thanks <@U044E43FJLX>. Really appreciate it!

March meetup banner - Detailed.jpg

Hi Auth friends! Daniel from <http://Permit.io|Permit.io> here :wave:
We're hosting an online event we thought you might find interesting, and we'd love for you to join us:

*"Permission-Impossible: Realizing your AuthZ Layer Just Doesn't Cut It."* :sunglasses:

We're meeting to discuss a single "Aha!-Moment" that might sound familiar to many of you:
*Realizing we need a more powerful, efficient, and intuitive authorization layer*.

We will discuss:

• What is authorization?
• The part Authorization plays in the app development cycle
• Our personal stories, experiences, and challenges with authorization
• Exploring possible solutions
• Building authorization Q&amp;A
The event will be hosted LIVE :red_circle: on *October 26th, at 18:00 IDT / 15:00 GMT*

Sounds interesting? Sign up *<https://hello.permit.io/1000|HERE>*

Saw this post on HN that mentions Descope: <https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/|https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/>

&gt; The reason Google’s documentation tells you to not use email as a primary identifier, is because it’s actually possible for two different Google accounts to send the same email claim, if you edit your non-Gmail email in settings, and a new account is created with your old pre-edited email.
Never thought about that before, but that's a scary thought if you do use email as the primary identifier

Wishing everyone a reflective Good Friday and a wonderfully long weekend! :blush: 

I don't believe for a second <https://www.descope.com/about|these> are your first passwords. Maybe everyone is really young but no way your FIRST password had extended characters and numbers!

can't admit, because some of us still use those today :wink:

First time i encountered a password was in 1984 when an internal app in the military had a password. It was 4 characters long and was shared by about 500 people :slightly_smiling_face:

The first time I encountered a password was watching the movie _Cast a Giant Shadow_ (1966), about David (Mickey) Marcus, a US colonel that joined the IDF, and was killed in an sad case of friendly fire after failing to respond to a password challenge in 1948.

<https://en.wikipedia.org/wiki/Mickey_Marcus>
<https://en.wikipedia.org/wiki/Cast_a_Giant_Shadow>

<https://www.youtube.com/watch?v=6eSt5ivzXQ4>

Latest Descope email, love this comment -
&gt; ..._Switching over to Descope gave us more confidence that someone else is doing it full time._
Seriously true/real/valued view from <@U061J65U61W>

Random tidbit of info, Stytch is doing some crazy advertising in SF. Legitimately every bus, billboard, etc. corner is covered. I checked out their product and Descope is genuinely a good amount ahead. For us auth flows, out of the box integration, and better tutorials/examples/support has been a huge selling point. That being said, Stytch has great design -- this is the only gripe I have with Descope! Hope this is useful but y'all are crushing it, keep going.

<@U06FZ2J4TLJ> really appreciate the feedback. Would love to learn more about the design gaps, so we can improve and become even better :slightly_smiling_face:

Would you be open to spend some time and chat next week?

I agree. We tested a lot of solutions and in general, descope does have a good product and potential great features. I would say frontegg is probably a very close contender.

Not churning anytime soon, lots of friends are users. But advertising and design are catching eyeballs, even for happy customers like me

Hi everyone :wave:

I would like to present one of the recent projects that I made in which I integrated *Descope* to the *best* I can. I even won an event with this project. But now I rectified it properly and it's fine.

<https://devpost.com/software/theta-bash>

Did you build Descope into a browser extension?

Nope, I integrated it into a website and an extension

By the way, <@U03N333UH89> I am waiting for Descope to add *conditional flow* to a screen so that the form fields could be hidden or shown as per the choice of an input.

It would have reduced the number of screens required for my project a lot