It’s currently possible not to use a password and just have a link sent to you.
If you’re point is to develop kno, you likely want to develop it as an oauth server. Then people could use it as one of several authentication sources where sso is the only one. See OAuth2 Basic Support