1. User submits ID
2. Sever emails login
key phrase as link
Login link would
authorize this device
3. User types key
in original browser