- From: Lonli-Lokli via GitHub <sysbot+gh@w3.org>
- Date: Sat, 05 Feb 2022 23:51:18 +0000
- To: public-webauthn@w3.org
> @paramsinghvc It's going to be the responsibility of the service incorporating Webauthn as an authentication mechanism to coordinate associating multiple authenticators to a single internal user account. > > Some types of FIDO2 devices, like Yubikeys, are most flexible in that they can be plugged into multiple devices and used to authenticate. Users could get away with registering a single such device and use it across their laptop, PC, phone, etc... In the case of, say, a MacBook Pro's Touch ID, the sensor is physically tied to the machine and so the user is going to be incapable of using it to log in from their PC. In this second scenario, it'd be up to the back end service to devise a way to empower a registered user to initiate a second attestation process from a logged-in device that would enable initiating attestation on a second device. > > The solution to this is for dedicated individuals to start building "turnkey" solutions/packages/dependencies/etc... that make it easy for various frameworks to incorporate this into their authentication flows. I don't foresee this happening overnight, though. After building my own [password-less Webauthn-powered OIDC Provider](https://dontneeda.pw/access) (@cjthompson this might interest you 😛) it became clear to me that there's a non-trivial amount of work required to generalize such functionality for reusability... > > EDIT: Here's a simple corresponding RP I created to help demonstrate combining Webauthn with SSO: https://matts-peanut-butter-emporium.netlify.com @MasterKale what IdP you use for magic links & webauthn in your demo, can you please share? Is it possible to use it for free ? -- GitHub Notification of comment by Lonli-Lokli Please view or discuss this issue at https://github.com/w3c/webauthn/issues/151#issuecomment-1030713713 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Saturday, 5 February 2022 23:51:20 UTC