It continuously matches and calls system.perspective.login on matching 8-10 hexadecimal characters followed by enter.
It would also match and call the login if a user were to type this, we deemed that unlikely enough. The convenience of just tapping twice is more than worth it.
I would have preferred an existing session to be logged out if another user taps, but that is not the behaviour as described in this thread: