Go to website
General questions about Magic
Security, higher conversion rates and fewer support tickets are just a few reasons to adopt passwordless authentication. Up to 54% **** with passwordless. Source 59% of people use the ****, making a data leak anywhere a security risk everywhere. [Source](https://enterprise.verizon.com/resource
Can't I build passwordless myself?
Magic can help speed up your development time, because as a developer, you can focus on building your application, not authentication. Researching and integrating your own Social Logins, Webauthn, and security features like Request Anomaly Detection can take months (with Magic, it can take minutes). Peace of mind knowing Magic has failover in case an email provider has delays Small misconfigurations will lead to your emails being blocked or sent to spam folders Offload your security to
How do I start using Magic
To get started, sign up for a developer account in our dashboard. Then check out some of our guides And here you can review the docs. If you have any questions along the way, please reach out!
How does Magic make adding Social Logins easier?
Without Magic It may take weeks to research, then integrate each individual social provider. Your backend may also have to be configured specifically to support each one. With Magic All the complications are abstracted away and you can integrate login with Google, Facebook, Apple and more in less than a day. Add support for additional providers and keep your backend code unchanged. In your app
Security Features Magic is SOC-2 compliant Request Anomaly Detection to block fraudulent login attempts 24/7 Network Traffic Monitoring End-to-end TLS Data Encryption Zero Knowledge Proofs to prove a user is authenticated without users needing to reveal any sensitive information Read more Security docs Magic's Whitepaper [Delegated Key Management explained](h
What is Magic and why should I use it
What is Magic? Magic is a developer SDK that you can integrate into your application to allow users to authenticate without a password. To signup or login to your application: User requests a magic link sent to their email address User clicks on that magic link User is securely logged into the application Users can also one-click sign on with social providers (like Google, Facebook, GitHub, Apple) or log in with biometrics via WebAuthn. Example (with code): https://codesandbox
Where can I see a demo?
We have a live demo app, which shows magic link and social logins at https://magic-nextjs.vercel.app/login To see a simpler demo, along with the code that powers it, click here https://codesandbox.io/s/github/MagicLabs/example-hello-world-with-redirect
Not receiving Login email
Rarely, a user may not receive a magic link email immediately after requesting one. This is usually due to a spam filter holding onto the email before eventually displaying it in the user's inbox. Personal email Adding our sending domain email@example.com to one's email contacts list should solve the problem. Corporate email Asking the user to have their IT team add our firstname.lastname@example.org email domain to their internal allowlist should prevent emails from being held
Multi-factor Auth Pricing
Multi-factor Auth Pricing Premium feature pricing Multi-factor auth (MFA) is a premium feature, available to any Magic customer at an additional cost. To learn more, please submit a request and a member of Magic's support team will be in touch to discuss pricing. Beta participants Any Magic customers who enabled MFA before January 14, 2022 will maintain feature access at no additional cost. Disabling MFA M
Can I use a custom email domain to send Magic Link emails?
Yes! Contact our sales team by emailing email@example.com to request access to this new feature.
Can I use Magic on my no-code site?
Building using a no-code or low-code solution like Webflow? No problem - we've got you covered. You can add a Magic login form using just a couple of script tags! Step by step instructions in our docs here: https://magic.link/docs/login-form
Is Magic GDPR Compliant
Can Magic replace my DB?
Magic is unable to store custom data for you and does not provide any database solution. You will still need to maintain a database containing your user's information. You can use the getMetadata method on the User module to return an object containing the issuer, email (or mobile number) and cryptographic public address of the authenticated user, and store that information in your database, along with any additional
Emails caught in spam filter
It's quite unusual for emails from Magic to be caught in a spam filter, but some mail clients are stricter than others (for example, your work email might have stricter filtering protocols than your personal gmail, etc.). Personal Email If you're finding that emails from Magic aren't showing up as expecting, please add firstname.lastname@example.org to your email contacts list and attempt to log in again. Corporate Email If you're using a corporate email, ask your IT team to add our `
How long are email Magic Links valid?
When a user initiates a login via email, the Magic link they are sent will expire after 20 minutes. If a user doesn’t manage to click the link within that window, they can simply request another one by returning to the login page and inputting their email address again.
What languages does Magic support?
Magic supports 30+ languages: Afrikaans Azerbaijani Bulgarian Catalan Chinese (PRC) Chinese (Taiwan) Croatian Czech Danish Dutch English Estonian Finnish French German Greek Hungarian Indonesian Italian Japanese Korean Latvian Lithuanian Macedonian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Slovenian Spanish Swedish Thai Turkish Vietnamese Welsh You can learn more in our documentation [here](https:/
Concerned about vendor lock-in
Magic comes with essentially no vendor lock-in, so migrating away is easy. You will have the user's unique ID (issuer) and email both stored in your database (and any other user info) so are free to choose another service or move authentication in-house should you want to do that.
Does Magic work globally?
Magic is proud to support users all over the world. In addition to email-based login with localization in 30+ languages, we offer SMS login using Twilio with support for 150+ countries.
Error: Given email address has been bounced in the past
If you're seeing an error like this one, please try using a different email address. Unfortunately, this error is not coming from Magic but a third party that verifies if email addresses are valid. Essentially, our system is operating as designed — we check with SendGrid to find out if the email has known bounces, and if it does we return the error message below. At present we are not able to resolve this issue on your behalf, so using a different email address is the best course of action.