They imply that the login is 2FA-protected because your email or Google account can be 2FA-protected, and they're piggybacking off that...
Having passwords means storing them correctly and still implementing some form of reset -- and if email is a weak point, they would have to 2FA prompt you to reset your password, or not use magic links, or handle such issues out-of-band. They're probably trying to avoid auth/password support by outsourcing this function to Google for the time being.
I agree though, the user experience that is hardest-hit by this is mobile, where iOS now supports much better integration with password managers than was allowed previously...
Having passwords means storing them correctly and still implementing some form of reset -- and if email is a weak point, they would have to 2FA prompt you to reset your password, or not use magic links, or handle such issues out-of-band. They're probably trying to avoid auth/password support by outsourcing this function to Google for the time being.
I agree though, the user experience that is hardest-hit by this is mobile, where iOS now supports much better integration with password managers than was allowed previously...