0xGabi
commented
4 years ago Feedback from Formatic team:
If it is an absolute requirement to bypass email, you would need to have your own system to manage key management. And then you could use Fortmatic DID token standard as a way to verify identity that can be stored on your resource server. Other than that, Fortmatic auth as in email/phone via dApp widget or email via Fortmatic whitelabel sdk will need to be used.
DID standard: https://w3c.github.io/did-core/ Magic flow: https://docs.magic.link/security#48c3 AWS KMS: https://aws.amazon.com/kms/ AWM CloudHSM:https://aws.amazon.com/cloudhsm/