Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adding passkey support #1258

Open
panda2134 opened this issue Feb 21, 2024 · 1 comment
Open

Adding passkey support #1258

panda2134 opened this issue Feb 21, 2024 · 1 comment

Comments

@panda2134
Copy link

panda2134 commented Feb 21, 2024
edited

Is your feature request related to a problem? Please describe.
Currently, if the user enables 2FA then a TOTP is required at every login. Given that some users do have access to devices that are more secure than an app-based 2FA code (e.g., security tokens like Google Titan or Yubikey), it would be great if PiKVM supports a passwordless login with those devices using a passkey.

Describe the solution you'd like
Implement the passkey protocol and allow passwordless login with security tokens.

Describe alternatives you've considered
Do not implement the passkey protocol, but allow using WebAuthn / Yubikey as an alternative second factor. That is, after providing the password, instead of typing in the 6-digit code at every login, the user interacts with a security token to prove their identity.

Additional context
Try passkey at https://passkey.org. I'm personally interested in submitting a pull request on this if I have time.
@mdevaev
Copy link
Member

mdevaev commented Mar 14, 2024

Hello. I think it can be done, but most likely we will need a new plugin api for authorization inside KVMD.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mdevaev @panda2134