Questions tagged [webauthn]

Browser API implementing the Web Authentication standard. Credentials are stored on (local) authenticators which use and are accessed using strong cryptography.

See Web Authentication: A Web API for accessing scoped credentials:

This specification defines an API that enables web pages to access WebAuthn compliant strong cryptographic credentials through browser script. Conceptually, one or more credentials are stored on an authenticator, and each credential is scoped to a single Relying Party. Authenticators are responsible for ensuring that no operation is performed without the user’s consent. The user agent mediates access to credentials in order to preserve user privacy. Authenticators use attestation to provide cryptographic proof of their properties to the relying party. This specification also describes a functional model of a WebAuthn compliant authenticator, including its signature and attestation functionality.

303 questions

votes

1 answer

How to type the PublicKeyCredential in TypeScript?

I'm using the WebAuthN API and I want to use the PublicKeyCredential to detect an authenticator. But my TypeScript doesn't know this name and keeps telling me error TS2304: Cannot find name 'PublicKeyCredential'.. I did import the…

typescript webauthn

asked Jan 04 '19 at 08:35

Spacemind

votes

4 answers

Webauthn for encryption

We have a project with a PWA where we want to implement client sided encryption. We wanted to use Webauthn as a second-factor in combination with passwords. In the background we use a randomly generated key to encrypt/decrypt the database, which is…

encryption webauthn

asked Jan 21 '20 at 09:14

NoNameHD

votes

3 answers

How to use webauthn without key fob

I have tried my firefox 62 and chromium on various webauthn examples and I could not make any of them work. Are those supposed to work without special hardware? I activated security.webauth.webauthn_enable_softtoken in about:config. Though I can't…

authentication firefox web webauthn

asked Sep 21 '18 at 14:14

yokto

votes

0 answers

Navigator credentials creation method returning an exception

Trying to run a demo for the webautn spec (https://www.w3.org/TR/webauthn/) available (https://github.com/molekilla/webauthn-demo-fork) under Firefox Nightly. getMakeCredentialsChallenge({ username, name }) .then((response)…

credential-manager firefox-nightly webauthn

asked Feb 06 '18 at 18:45

Joao Pereira

votes

2 answers

How to remove WebAuthn credentials on Chrome MacOS?

For example, the one created on this WebAuthn demo page: https://webauthnworks.github.io/FIDO2WebAuthnSeries/WebAuthnIntro/UsernamelessExample.html I found the similar question without answer on apple forum:…

macos google-chrome webauthn fido

asked Sep 25 '22 at 14:22

korywka

7,537
2
26
48

votes

1 answer

Keycloak doesn't offer passwordless authentication as the first option during login

I've configured Keycloak authentication for the following behaviour: The user inputs its userid Keycloak should try to authenticate it with the passwordless flow As an alternative the user could switch to password authentication NOTE: The user…

keycloak webauthn redhat-sso

asked Jul 19 '22 at 09:15

codependent

23,193
31
166
308

votes

1 answer

Unable to use AppId extension with WebAuthn for previously registered U2F keys

With the eminent demise of the u2f api, I'm trying to move to WebAuthn APIs using the AppId extension to support security keys previously registered with U2F. As best I can tell from reading the docs I think I am doing it correctly, however, when…

webauthn fido-u2f

asked Nov 16 '21 at 17:02

Phillip

votes

2 answers

PublicKeyCredential not possible to serialize

I am implementing FIDO2(WebAuthn) in a Angular application. I have gotten the PublicKeyCredentialCreationOptions object and seccessfullt register. But after calling let response = await navigator.credentials.create({'publicKey':…

javascript json ecmascript-6 console.log webauthn

asked May 27 '21 at 09:40

Payerl

1,042
2
16
33

votes

3 answers

Can I use phone as webauthn security key with Windows 10 Sign-in options

Edit: - Look is it just me or doesn't the W3C spec say this should be happening already: - 1.2.2. Authentication On a laptop or desktop: User pairs their phone with the laptop or desktop via Bluetooth. User navigates to example.com in a browser and…

android google-chrome webauthn yubico fido

asked Mar 14 '21 at 12:00

McMurphy

1,235
1
15
39

votes

0 answers

How to fix the JS error: The user agent does not support public key credentials

I am using the new PasswordCredential API and created this piece of code. It's working. But for some users, it throws this error The user agent does not support public key credentials. if (window.PasswordCredential) { …

javascript webauthn

asked Mar 24 '20 at 13:51

Gideon Babu

votes

0 answers

W3C Web Authentication (WebAuthn) Cannot login, credential setup required

I am getting the following error when setting up W3C Web Authentication (WebAuthn). We are sorry... Cannot login, credential setup required. I have existing user accounts on the platform and upgraded the server from v7.0.0 to v8.0.0. I get the…

keycloak w3c jboss-tools webauthn

asked Nov 22 '19 at 00:47

Clay Risser

3,272
1
25
28

votes

1 answer

How to decide if a device can login with Webauthn's fingerprint in Javascript?

I created a Webauthn authentication for my website. Now I'm trying to create a good interface for the best user experience. My users are not techies. I'm interested in the fingerprint authentication as option. The webauthn via Yubico 2 or Google…

javascript authentication user-experience feature-detection webauthn

asked Oct 13 '19 at 09:14

Marcello Verona

votes

1 answer

FIDO2 / WebAuthn Heuristic discovery of ambient /pre-authorized user(s) at authentication time

Edit respose to @cody salas Following on from your sensible and detailed break down: - Require Username: Yes this seems well understood. The RP prompts for username/other-id and finds all credentials that are offered up in an array to the…

javascript authentication safari webauthn fido

asked Aug 15 '22 at 06:32

McMurphy

1,235
1
15
39

votes

1 answer

Can Web Authentication work across browsers?

Web Authentication relies on asymmetric encryption to do away with passwords and SMS 2-factor authentication. Can it work across browsers? Must the user use the same browser on the same device where the private key resides? If the user were to clear…

javascript security public-key-encryption password-encryption webauthn

asked Nov 07 '20 at 23:06

Chong Lip Phang

8,755
5
65
100

votes

2 answers

Associating multiple public keys with webauthn user

I'm implementing webauthn as a proof-of-concept. I want my users to be able to login using several different "platform" authenticators. For example Windows Hello on their desktop computer and Face ID on their iPhone. Each authenticator will have its…

webauthn

asked Sep 11 '20 at 17:08

Tobbe

3,282
6
41
53

Prev 1

…

20 21 Next