Skip to content

Add support for passkeys (WebAuthn as primary authentication) #22015

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Saklad5 opened this issue Dec 3, 2022 · 0 comments · Fixed by #31504
Closed

Add support for passkeys (WebAuthn as primary authentication) #22015

Saklad5 opened this issue Dec 3, 2022 · 0 comments · Fixed by #31504
Labels
topic/authentication type/feature Completely new functionality. Can only be merged if feature freeze is not active. type/proposal The new feature has not been accepted yet but needs to be discussed first.

Comments

@Saklad5
Copy link

Saklad5 commented Dec 3, 2022
edited
Loading

Feature Description

Passwords are a pain to deal with, and best avoided. Multi-device FIDO credentials, also known as passkeys, are intended to supplant passwords and multi-factor authentication entirely by using public keys as the sole method of authentication.

Because they use the WebAuthn specification, minimal changes are needed for an application like Gitea to support them: simply allow accounts to be set up with a WebAuthn key instead of a password, and adjust the login flow accordingly.

I'd also like the ability to disable password support entirely. While passkey support is still being rolled out across the major operating systems and browsers, my own systems all support it right now.
@Saklad5 Saklad5 added type/feature Completely new functionality. Can only be merged if feature freeze is not active. type/proposal The new feature has not been accepted yet but needs to be discussed first. labels Dec 3, 2022
@Saklad5 Saklad5 mentioned this issue Dec 6, 2022
Closed
@anbraten anbraten mentioned this issue Jun 26, 2024
Merged
lafriks pushed a commit that referenced this issue Jun 29, 2024
@anbraten @silverwind
Add Passkey login support (#31504)
91745ae 
closes #22015

After adding a passkey, you can now simply login with it directly by
clicking `Sign in with a passkey`.

![Screenshot from 2024-06-26
12-18-17](https://github.com/go-gitea/gitea/assets/6918444/079013c0-ed70-481c-8497-4427344bcdfc)

Note for testing. You need to run gitea using `https` to get the full
passkeys experience.

---------

Co-authored-by: silverwind <[email protected]>
@go-gitea go-gitea locked as resolved and limited conversation to collaborators Sep 28, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
topic/authentication type/feature Completely new functionality. Can only be merged if feature freeze is not active. type/proposal The new feature has not been accepted yet but needs to be discussed first.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add Passkey login support anbraten/gitea
2 participants
@zeripath @Saklad5