On reflection, there's a way you can force users to use "something like a password manager" - don't accept a password; instead have them prove they hold a specific private key (and allow multiple, so they can revoke specific devices). This would seem to be a win on all counts over a password manager. The only thing it breaks hard is backwards compatibility, but if using individual passwords per site is so broken then that's not something we really want to permit anyway.
