7Hazard
commented
4 years ago Never heard of this. The fact that you have to obtain a piece of hardware for this tech to work makes me reluctant to put early efforts into implementing this.
Open ThomasMarangoni opened 4 years ago
7Hazard
commented
4 years ago Never heard of this. The fact that you have to obtain a piece of hardware for this tech to work makes me reluctant to put early efforts into implementing this.
ThomasMarangoni
commented
4 years ago As already mentioned in discord, windows 10 is supporting it without special hardware since update 1904. Its implemented in Windows Hello.
Is your feature request related to a problem? Please describe. CEF and I think also EA WebKit don't support FIDO2 for login. FIDO2 is a password less authentication method, which also became a webstandard and is implemented in all major browsers (except safari) and Operating Systems (except MacOS and iOS). It's working with a public and private key, the private key is saved on hardware and can't be accessed without destroying the hardware. Its also easy to use, just plugin the USB dongle and press the hardware button and you are logged in. Its a good password less and safe alternative to discord auth. It can also be used as 2 Factor.
Describe the solution you'd like It would be cool to get the option to verify a FIDO2/WebAuthn token on client side or early auth.
Additional context There are a lot of examples for web implementations and also a public library from Yubico for c++. Yubico is one of the largest vendors for such keys.
Link to library: https://github.com/Yubico/libfido2