[UX] Cohort 1: Two-step login for users signing-in with username/password or passkey

⚠️ Important: Each cohort Design will have its own separate issue.

Solution

As a user, I can sign-in with a local username and password to my organization.
As a user, I can reset my password through a “Forgot my password” flow.
As a user, I can stay logged-in and the browser remembers my details (ie. Remember me checkbox)
As a user, I can sign in with Passkey after submitting email/username

As a user, I can only access groups and projects in my organization. I cannot access groups and projects outside of my organization.
In a multi-tenant environment, emails are uniquely enforced across all cells / organizations. Emails cannot be re-used across cells / organizations.
As an organization, the organization owns the user account and email.

Updated Co-hort 1 Figma file
Password manager works seamlessly independent of cell:
- Legacy cell user: If user selects a saved credential from the Email dropdown, both email and password fields are pre-filled. The password field is hidden until the “continue” button is clicked or the password manager credential is clicked. Minimal amount of clicks is preferable.
- Redirected cell user: If user selects a saved credential from the Email dropdown, the email is pre-filled, “continue” button is clicked and page reloads. Both Email and Password fields are already autocompleted in the new cell page.
Avoid account enumeration: Every user must try to at least enter a password to attempt to sign-in. If account does not exist, a generic error message should appear such as “Invalid username and/or password”
Only one instance of the “Remember me” checkbox rather than the existing two instances

Verified domain users would type their email (for example "joe@apple.com") and be redirected to an Apple branded sign-in page.
- This feature is only available for enterprise users, and they belong to a different cohort.

Edited Dec 09, 2025 by Sayo Bittencourt