Does the plugin structure for authentication allow for a plugin to be written that would allow passwordless login? Here's how it would/could work:
User/client enters email address only, clicks the login button, authentication module sends them either
1) a link in an email which they click and then they are logged in
2) a string of characters in an email which they have to enter (a bit like Multi factor authentication/ One time password) (this is for those end users who are told not to click links in their email!) ;-)
Our user base is prone to forgetting their passwords because they only intermittently access the service so having another password to remember for the helpdesk is asking for more frustration.
If this is possible then I'm hoping it should also be possible for the process that sends them an email to also check to see if their email address is already registered on our site before the email is sent so that we can permit access only to existing users.
Any pointers appreciated
