Authentication and Login is too primitive

As always, I start by saying that I love Baserow, but it is always strange how basic things don’t seem to get addressed, while more complicated features are released. This brings me to Authentication to Baserow (hosted) and the App Builder.

Both on the main dashboard for Baserow and the application builder, authentication remains ridiculously primitive. As far as I can tell (I am on the Baserow hosted premium plan), the only option to log into Baserow is by using email/password. There is no social login. There is no ability to send yourself a code to log in. There is no 2 factor authentication. These are all basic features of any Saas nowadays and some are crucial for basic security, like 2 factor auth. I’ve used Baserow for over a year now and initially I thought maybe this was just a small oversight that would get fixed, but I see nothing yet. These are all really critical features. Honestly, I would never use any service nowadays that makes me have to remember a password. Generally I log in with Gmail, GitHub or ask to send a code.

All of the above also applies to the application builder. The only way to allow users to use an application we built is to create an email and make up a password in a connected Baserow table. Users can’t reset their password for the app builder. They can’t use social log in. And if they forget their password, we need to manually go into the Baserow table to fix it? This is not scaleable.

Please fix the Auth to make it more modern. It is a foundational piece. thanks.

Hey @ddsgad, thank you for your feedback! We have plans to improve the authentication and login process. I think two-factor authentication (2FA) has the highest priority among these features, but I’ll double-check this with the team. I’ll get back to you on this

This is definitely not a solution, but more a work-around. I use CloudFlare Tunnels for 2FA and added security. It’s free and you can use a bunch of different authorisation methods. Check it out if you haven’t already.

Hi @ddsgad, I’ve discussed your feedback with our team, and we completely agree. As mentioned above, we will add 2FA as soon as possible. We’ll also explore enabling social login across all plans to enhance the login experience. As for the code-sending functionality, we’re not sure about implement it right now, but we’ll definitely reconsider if more users request this feature.

I’ve also shared your comments with the Application Builder team, and someone will provide feedback to you as soon as possible.

I would be up for the code sending feature. We already use it in other applications and it’s much appreciated by end users not having to need to remember a password.