Double authentication not necessary

Seriously, why someone would put the amount of time and energy and knowledge and means that are necessary to steal my password crowdin ? Because they want to make a bad translation under my name, and by making it so, completely ruining my life ? I can imagine this : « Pay us 100 000 $ or you will have a translation error ». Seriously. A password is enough. We don’t want this annoying confirmation code step.

Hi @Philimo

A verification code is sent if you log in with the new device. It’s a common practice in the industry that enhances security and improves protection levels. In case you’re working with 1 device it’s enough to have a “remember me” option during login.

While you can’t imagine having serious outcomes if your account is stolen, things are different for many users and companies.

We appreciate your understanding.

1 Like

The fact that it is a common practice doesn’t mean it’s always good.
The « Remember me » option doesn’t work for me, because I have my cookies regularly erased for privacy reasons which I am perfectly in my right to have.
And if this high level of security is important for some users, and not for the others, make it an option. We are adults, responsible enough to make our own security choices.

@Philimo thanks for your feedback. While we don’t have plans to change the security policy in the near future, we have added your comments to our internal discussion system. In case anything changes in future - you’ll be fist person we notify.

You can disable that feature in Account Settings > Account > New Device Verification, then click Disable. It intrigues me that two staff members didn’t know about this, but perhaps it’s only a recent addition.

Hi @Aspenpaw

Yes, you’re right that disabling device verification is a new option; it wasn’t introduced fully when we replied to the previous post.

As for now, it won’t work by default anyway. An extra security layer is still required. You need to activate or add either a Passkey or 2FA to be able to disable new device verification. For Enterprises, SAML SSO will work as well.

Thanks for the tip, but this option is not available to me, I don’t know why.

Hi @Philimo ,

The features can be enabled in the Account Settings → Account. You will find the option to set the security key or authentication app there.

Yes, I was not seeing it because I was searching in my community account settings, which are not the same as my crowdin account’s.