jazz icon indicating copy to clipboard operation
jazz copied to clipboard
verified publisher icon gardencmp

PasskeyAuth: provide fallback API for moving between vendors

Open gdorsi opened this issue 1 year ago • 1 comments

While Passkeys provide robust security, they present limitations for users needing to access their accounts across multiple devices, as they are bound to specific OS/browser environments.

We should provide a secure fallback API that devs can use to provide users a way to authenticate to another device without using Passkeys.

This solution can be similar to the Passphrase login but without the wordlist requirement.

Ideally it should be something that can be transmitted by URL so it would be possible to authenticate using QRCodes

gdorsi avatar Oct 16 '24 15:10 gdorsi

Status: We have an initial draft https://github.com/garden-co/jazz/pull/1379

The next step would be to implement the CoMap based exchange as suggested here https://github.com/garden-co/jazz/pull/1379#pullrequestreview-2617232320

gdorsi avatar Mar 11 '25 16:03 gdorsi