No support for Security Keys for Apple ID

[RichieB2B]

The problem

After enabling Security Keys for my Apple ID, pyiCloud says:

Two-step authentication required. 
Please enter validation code
(string) -->

Like with 2FA but the pop-up on my Apple device only says:

Apple ID Sign-In
Your Apple ID "****@******.com" is being used to sign in to your account.

I get two options to respond:

Ok
That Wasn't Me

But selecting Ok does not give a 2FA code.

Environment

• pyiCloud release with the issue (pip show pyicloud): 1.0.0
• Last working pyiCloud release (if known): this never worked
• Service causing this issue: all
• Python version (python -V): Python 3.9.2
• Operating environment (project deps/Docker/Windows/etc.): macOS 13.13

Additional information

It looks like this is caused by the use of the fake web-login method pyiCloud uses. Instead App-Specific passwords should be used like mentioned in #349

[johannes-mathes]

Think the use of app specific passwords won't work. The whole approach of this project is to use the browser-based API from iCloud.com (via reverse-engineering). I'm currently trying to reverse-engineer the Webauthn / FIDO solution. Unfortunately I currently get a 400 from idmsa.apple.com :|