- The user will simply walk away (most common)
- They will create an account, but they will reuse a password they've used elsewhere
- They will create an account and a unique password, but will have difficulty remembering it and will:
- Write it down somewhere (!)
- Use a ridiculously simple password
- Forget it and depend on password recovery later on
So imagine my surprise to see that Apple is rejecting apps that use federated authentication!