Agreed. OAuth isn't a whole lot better and has it's own cons. I have seen SQRL (https://www.grc.com/sqrl/sqrl.htm) but not being much of an encryption expert couldn't say how secure it is, and it doesn't seem to be gaining any adoption. But it is at least a novel approach.
