Google is trialling what is essentially one-factor-two-factor. That is, you use the approved-on-your-phone component but not the password component.