YubiKey OTP

[wdetter]

Hi,

seems like MFA is not working yet with YubiKey, so I'd suggest to extend this plugin. There is django-otp-yubikey library which could be helpful: https://django-otp-yubikey.readthedocs.io/en/latest/ - unfortunatly I'm not a Python developer.

thanks, Werner

[Faabvk]

Hi,

I'd like to extend on this feature request by proposing integration of the Web Authentication API. It's an API that's slowly being baked into many browsers and devices that allows for YubiKeys, but also much more methods of multi-factor authentication, like Touch ID and Face ID on Apple devices, phones as security keys using BLE, etc.

There is a Django app for it: https://github.com/mkalioby/django-mfa2/ More about WebAuthn: https://webauthn.guide/ WebAuthn Demo: https://webauthn.io/

[k1nky]

WebAuthn looks very interesting. However, this will require significant changes to the plugin. I think it's worth to try with django-mfa2.