Add support for passkeys (WebAuthn as primary authentication) #22015
Labels
topic/authentication
type/feature
Completely new functionality. Can only be merged if feature freeze is not active.
type/proposal
The new feature has not been accepted yet but needs to be discussed first.
Comments
Saklad5
added
type/feature
lafriks
pushed a commit
that referenced
this issue
Jun 29, 2024
closes #22015 After adding a passkey, you can now simply login with it directly by clicking `Sign in with a passkey`.  Note for testing. You need to run gitea using `https` to get the full passkeys experience. --------- Co-authored-by: silverwind <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Feature Description
Passwords are a pain to deal with, and best avoided. Multi-device FIDO credentials, also known as passkeys, are intended to supplant passwords and multi-factor authentication entirely by using public keys as the sole method of authentication.
Because they use the WebAuthn specification, minimal changes are needed for an application like Gitea to support them: simply allow accounts to be set up with a WebAuthn key instead of a password, and adjust the login flow accordingly.
I'd also like the ability to disable password support entirely. While passkey support is still being rolled out across the major operating systems and browsers, my own systems all support it right now.
The text was updated successfully, but these errors were encountered: