Home > User Experience > How To Improve Registration & Sign In Process | by Nick Babich | Jun, 2021

How To Improve Registration & Sign In Process | by Nick Babich | Jun, 2021

How To Improve Registration & Sign In Process | by Nick Babich | Jun, 2021

Image by icons8

12 practical recommendations for product creators

Nick Babich

When account creation is needed, the signup process needs to be as simple as possible. Here are 12 practical recommendations that will help you improve the user experience of signup and logging process.

1. Support Sign in with a social network account & Sign in with Apple

Quick tip: Remember that some employers restrict access to the services like Facebook or Twitter in their work networks. As a result, users won’t be able to use your product while they work behind firewalls. It means that social authentication shouldn’t be the only want to sign in to your product.

Sign up form at Reddit

Sign in with Apple is another great option. Unlike social networks, Apple does not collect private data — data collection is limited to the user’s name and email address. This approach helps users hide their real email address — when a user is asked to provide their email address, Sign in with Apple allows the user to share or hide their emails.

Sign in with Apple

2. Don’t use username

3. Ask users to follow security rules when creating password

  • 8 or more characters
  • Contains both lowercase and uppercase characters A-Z
  • Contains at least one digit
  • Contains special characters

Its’ recommended to make password requirements visible upfront because it will help users modify their passwords in real time. Make sure that the user can see the requirements all the time the field is selected. It is particularly important for mobile users.

Fact: Mobile users make more errors when typing in passwords than desktop users.

MailChimp makes password requirements visible upfront

4. Prevent users from using common passwords

Prevent users from using a word contained in any dictionary (English or foreign), spelling list, abbreviation list, etc.

Tool: Zxcvbn is an open-source password strength estimator that recognizes and weighs 30k common passwords, common names and surnames according to US census data, popular English words from Wikipedia and US television and movies, and other common patterns

Motivate people to create better passwords by showing a message that their password is vulnerable.

Password strength. Image by Oscar Manxz

Or you can follow a more creative approach and show “time to hack” information.

Password Strength. Image by D

5. Add password strength meter

Fact: A study conducted by the Microsoft Research team proves that the presence of meters yielded significantly stronger passwords.

There are a few approaches you can follow when creating a strength meter. A simple one is adding a horizontal bar that will indicate the strength. The more secure password is, the more the horizontal bar is colored. Designers can use an associative color — red for weak passwords, yellow for average passwords, and green for secure passwords. A nice thing about this approach is that it gamifies the experience of creating a password — reaching the full green bar creates a sense of accomplishment in an otherwise dull task.

Password Strength. Image by Malan Alankara

6. Allow users to unmask the password

Masked and unmasked passwords at Mailchimp.

On mobile, it’s recommended to follow a different approach. Since typing is more error-prone on mobile and it’s easy to move the mobile screen out of sight of prying eyes, you should unmask passwords by default and add a “Hide” option. This small usability improvement will minimize the interaction cost for mobile users.

7. Don’t’ ask users to type email or password twice

  • Email: When users see retype your email field, they tend to copy and paste email from the first field, so they can easily make the same type twice in both fields.
  • Password: If you offer Show password option, you don’t need to ask users to type the password twice.

8. Don’t ask users to validate emails right after the registration

In most cases, its possible to postpone confirming the email address or tie it to a particular activity. For example, if your product is based on user-generated content, email validation can be a mandatory stop for users if they want to post anything.

9. Use 2factor authorization or authorization app

Quick tip: If you want to use 2factor authorization, you should provide the “Trust this device for X days” option. With this option, the user won’t need to type the security combination every time they login to the app.

Alternatively, you can use secure authentication with a special app. Duo by Cisco is a good example. This app generates authorization codes that users can use to verify their identity quickly.

Duo app on mobile. Image by Duo

10. Allow people to use fingerprint or face authentication to login (Mobile mostly)

Prediction: By 2024, 66% of smartphone owners will use biometrics for authentication.

Biometric authentication in WhatsApp. Image by Whatsapp

11. Support “Forget Password”

Fact: Forgotten passwords prevent people from making a purchase. 75% of eCommerce users won’t complete their purchase if they have to recover a password while checking out.

Recovering should be available on any login process.

Recover password flow. Image by Sahil Vhora

Don’t let your users wait a long time to reset a password. Send an email with a password reset link immediately.

12. Support login without password

  • “Magic Link” by Slack. Instead of typing out password on mobile, Slack gives users an option to receive a magic link via email. When users click on this link, they sign in automatically.
  • “Sign in without a password” by eBay. eBay text you a code that you can use to sign in.
eBay offers sign in without a password.

Source link