Hacker News new | past | comments | ask | show | jobs | submit login

This is not how it works. We don't hold any copies of users' passwords these days, there are hashes for that. Certainly, some old, or poor quality in-house software still do it, but then it won't offer you integration with whatever SSO service anyway. And single point of failure is very real, if you trying to operate world-wide: sign-in with X may suddenly become illegal, or inaccessible outside of the USA.



Like Yahoo?

It keeps happening, and all it takes is one of the places you've used the password to lose it.

Generally "sign in with X" still provides an email recovery option.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: