Joshua Iz
JA WestenbergIf you prioritise "sign up" over "login" on your landing page to the point that existing users have to search for the button, you are holding your existing users in contempt. And you're an arsehole to boot.
Red
the kamala harris of going to bed at a reasonable time@Daojoan this has been one of my litmuses for years
Ölbaum@Daojoan Also, it’s “Register” and “Log In,” not “Sign Up” and “Sign In,” because the latter are hard to tell apart and thus hostile to non native English speakers.
(And don’t deflect by talking to me about localisation and internationalisation, since your site is also full of anti-patterns on this front: incorrect language selection based on IP, language selection menu buried or at the bottom of an infinite scroll, setting 178 cookies but none that save the preferred language, …)
�is it sign is
or is it sign up
i dont know
at the landing page of github
Stuart McHattie 👨🏼💻@oscherler @Daojoan Authorise and Authenticate
Mark Reid
Roadskater, Ph.D.
Will 
Negative12DollarBill@Daojoan
Sometimes the "log in" isn't even there and I have to click "sign up" to see "already signed up?" what. the. hell.
Sometimes the "log in" isn't even there and I have to click "sign up" to see "already signed up?" what. the. hell.
Allan Svelmøe Hansen@Daojoan but,but, but, the KPI is measuring new and not existing users......
Григорий КлюшниковExtra asshole points if your sessions expire.
GreenSkyOverMe (Monika)@Daojoan angers me every time
Oli@Daojoan I think the UX design behind this is that users never log out or delete their cookies anyway, so they never have to log in again.
@oliverboehme @Daojoan Sorry, too many such websites I use log me out after some set period of time. As mentioned elsethread, Strava is one of them. Maybe the limit on their main website is 3 weeks or a month, but their "community hub" does it after 3-4 days. No, this is not because I deleted my cookies or closed my browser down (same thing), because I didn't.
Strava is a site I use a lot, so every little UX problem there pisses me off. But Flickr is also becoming a PITA.
Nicolás Alvarez@oliverboehme @Daojoan and they only own a single device
Renke Meuwese@oliverboehme @Daojoan almost. I think the goal is actually that as many users as possible will use federated login with Google/Meta/etc, because logging in with a specific user for a site is made intentionally difficult. Your automatic Google login is probably linked to a Gmail that you actually read, while if your create a new account you might be smart enough to use an alias or a secondary email address.
And once you've done that and your Google is always signed in the process is smooth.
Julien W.
Frank@Daojoan don’t even separate the two. Ask for someone’s email address. If it exists, then ask for the password, otherwise take them through the registration process.
Bringer of Pants@sdjmchattie @Daojoan No. If a site does that, then it reveals that the email address in question does in fact have an account there, which is an information leak. It shouldn't do that. This is why logins typically only say "Login incorrect" rather than "you don't have an account here", even if you do not in fact have an account where you're trying to log in.
@Enfors @Daojoan yes I know that’s a risk. Tell Microsoft because that’s how their authentication works. Anyway, how much more of a risk is it to know an email has an account on the site? Usually accounts are targeted because the malicious actor already knows the account email they want to get in to. And you can identify if an account exists by trying to sign up for a new one and being told it already exists. I don’t believe there’s a leak of information happening here.
@sdjmchattie @Daojoan Well, you make a good point about trying to register also revealing the existance of the account, probably on most sites.
gingerFlip@Daojoan drives me absolutely NUTS
Chaucerburnt@Daojoan I feel like some of these sites assume people will leave themselves logged in forever, but I have privacy settings.
patrickpoet