how to change back to email/password login from the One Time Login code

Likewise.. I stupidly tried not realising it would not let me switch back to password log-in.

@ Strava team - it is a really horrible experience using OTP on the desktop/browser and we need an option to switch back and set it a personal preference to keep using our saved passwords please.

I do not want to keep having to click past it.

SIMILAR 

SITUATION 

HERE !   👺

I would like a resolution… yesterday!

I have also raised a support request asking for my password log-in to be restored.

I will update when I get a response and suggest anyone else unhappy with having one-time codes foisted upon them to do the same.

Same here, it’s beyond frustrating …

I too accidentaly activated that silly one time code thing. It’s the most frustrating login experience ever .

And no way back, there is no “forgot password” button anywhere, neither on the website nor in the app

The support article mentioning that button as option to switch back to standard login is plain wrong ….

I don’t use OTP so I can only guess: Is there a chance that the URL  https://www.strava.com/account/recover can be used to switch back to email/password?

​@Jan_Mantau wrote:

I don’t use OTP so I can only guess: Is there a chance that the URL  https://www.strava.com/account/recover can be used to switch back to email/password?

Nope.  I just tried that and it just logged me out and sent me another code. 

signed: frustrated in Florida

Posting here in hopes of this being possible. I do not always have access to my email to log in. If this is the case I’ll have to not renew my premium membership in a couple months.

As JWB already stated, just triggers another of those one time codes...

I don’t think Strava is listening. In their superior minds they have decided that passwords are a thing of the past. So many users and apps are affiliated with Strava that - as the tech giants do too - they reckon that the decisions they make are the best and users - that can judge for themselves how strict their security has to be -  are not knowledgeable enough to make their own choices.

You don’t need to repeat the OTP unless you log out of Strava. 

No, but when you use affiliate sites like Find that ride or Statshunters, I have to login (‘‘connect with Strava”) each and everytime. I know my password and could always login quite promptly, but now I have to check my mail first.

Strava should give me a a choice. It’’s not as if Strava is a super high risk app like a bank/payment app. It’s supposed to be a fun app, screw those ridiculous safety demands.

Thanks to everyone who posted here.

One-time codes (OTCs) are a new feature on Strava intended to increase the security of your account while keeping the login process easy.

OTCs provide an increased level of security in several different ways:

• Time-limited validity: OTCs generated on Strava are only valid for 5 minutes. This brief window of opportunity significantly reduces the risk of unauthorized access, even if the code is intercepted.
• Single-use nature: After a single use or upon expiration, the code becomes invalid, rendering it useless for future login attempts.
• Dynamic generation: OTCs are generated dynamically, making it nearly impossible to predict the next code.
• Protects against common attacks: Protects against replay and brute force attacks as well as provides resistance against phishing attacks.
• Reduces password fatigue: Athletes don’t need to remember complex passwords. Those who do not use unique passwords are prevented from using the same password across multiple internet services.

We hope that the introduction of OTCs on Strava is the first of several new features which provide increased security and login options. We definitely appreciate your feedback and will ensure it is provided to our team.

As an alternative to logging in with a one-time code, you can connect your Google account to Strava to enable the “Sign in with Google” login option. If your GMail email address is already associated with your Strava account, use the “Sign in with Google” login option to connect your accounts. Further details about how to connect your Google account to Strava can be found on our Help Center: Connecting Strava to Facebook and Google

​@Winsem I am interested in better understanding the scenario you’ve described as it does not align with my understanding of the expected behavior.

When I navigate to StatsHunters or Find That Ride and click on the Connect with Strava, if I am already logged into my Strava account and have previously connected the service to Strava, I am immediately logged into the service using my Strava account. I am not asked to re-authenticate into my Strava account or reauthenticate the service with my Strava account:

If I have not previously connected the service with my Strava account but I am already logged into Strava, I will only be asked to connect the service to Strava and will not be asked to login to Strava:

Only if I was not already logged into my Strava account should I be asked to login again. If you are comfortable sharing, it could be helpful to know more about why you believe you are being asked to login to your Strava account each time you want to use a 3rd party service.

​@Jane I don’t know why this has been marked answered because it hasn’t been answered.

Please tell us how to switch back to email + password. I don’t have a gmail account so that is not an option.

I use a password manager so email + password is far more convenient and than one-time codes and just as secure.

This one time code feature is not more convenient at all. I used a password manager which worked well and was secure. Please offer a way to switch back.

If you really want to use one time codes, they should be time-based one time passwords (TOTP) that we can load into password managers, not this annoying email flow you currently have. Or even better, passkeys. As currently built it is way less convenient.

I also accidently enabled One Time Codes on Strava and would like to revert back to password. Please ​@Jane could you seek clarity on how to do this please.

I also stupidly accepted OTC and I regret it. The message containing the code takes more or less time to arrive in my mailbox. And it's really frustrating. I don't know if it comes from your servers or my operator, and it's not my problem. So, I would like to disable this feature.
Thanks

This roll-out was obviously poorly done.  I appreciate security issues, but as others have mentioned, Strava isn’t that big of a deal.   I don’t need stronger security than my password.   I also don’t need to decline the code every time I log in.    Please let us choose.   

Did anybody find out how to switch this feature off - it takes too long for mails to arrive.

No help whatsoever.  I don’t want to use Google, or Facebook.  I want to log into Strava across my phone, iPad, and PC, using a password.  

Support is no help, and the Community Manager seems more intent on selling the One-Time code than providing service to Strava’s community.  I’m guessing Strava is intent on not listening?

To date, zero assistance from Strava.  The community recognizes the issue, but the community manager, rather than saying “there is no assistance,” simply tries to get you to go to Google or Facebook to log in, which means Google or Facebook is paying Strava for clicks...

Hi ​@Jane  this should not be marked “anwered” or “solved” because it hasn’t been answered or solved.

The question is how to re-enable password login after accidentally choosing OTP. Please tell us how to do before marking this solved. As gmail is a passwordless login, “use gmail” is not a valid answer (not to mention the disadvantage that it requires a gmail account)

Using passwords is perfectly secure, provided the password is unique and has sufficient entropy (such as one automatically generated by a password manager). In addition, logging in with email and password when using a password manager is 1000x more convenient and easy than one-time passwords sent via email.

I have unmarked Janes answer as “best answer” now the second time, because it doesn’t contain the answer to the problem, at least not a straight one. One could only guess that there is a “It’s impossible and we currently don’t plan to implement that” in it.

The OTC is particularly annoying when I sign into Strava on a browser shared by other Strava users.    We log out each time and log in with our own account.   I don’t need to go to my email for a OTC every time I log into Strava on a password protected computer used only by my family.   It’s annoying.   Let us disable it.