I think I agree with @Jeff_Mott here
Despite using management tools such as KeePass, it’s difficult to use different passwords for every site
It’s not really difficult if they’re used well… I feel the same way about password managers as I do about task managers. If you don’t entirely trust and depend on your system, it’ll end up just being a burden.
On the other hand this sounds like an interesting idea to try out.
And @RyanReese
For this reason alone I would probably implement this into personal websites (don’t want to try pitching this to any clients…)
I just bank on the fact that google (gmail) has better security than I could give - thus I’ll let them safeguard my token smile .
That makes sense to me too… perhaps if more developers began using it in our own projects or in more tech-friendly communities, then the problems in this kind of system would be naturally worked out before we started pitching it to clients? And yes… regardless of the Google Evil, I trust them… way more than I trust me, to be able to safeguard my stuff. They’re just clearly more capable.