When creating and logging into a Samsung (or SmartThings) account, the passphrase has a restriction on what characters can be used. Notably, it does not allow any spaces. To me this is a red flag, since it should not matter the length nor the character set used in a passphrase: the hash function should work regardless.
Why does Samsung, which is neither a small nor young company, have such a major oversight?
Another peculiar thing I noticed is that the username and password cannot be saved in the web browser’s password manager.