tl;dr<p><i>"An example would be using magic links or codes to authenticate your users. At a higher level, this is really just a glorified email password reset feature."</i><p>The argument comes down to "you use email to reset password anyway, so lets just use email to authenticate and not bother with the intermediate step of using passwords at all."<p>It's kind of pragmatic I guess but then what are we supposed to use to access our email? See this doesn't really solve a problem, it just kicks it down the road to email as the nexus for authentication.