Support for roaming authenticator/hardware security key #50
Comments
|
Hey @lauravuo, Thanks for raising this issue! In the current implementation, we intentionally omitted the security key (roaming authenticator) option. This decision was based on our experience, as it often led to confusion among non-technical users. However, we are currently revamping our device and passkeys management in our hosted backend and plan to incorporate a feature toggle that will enable you to provide security keys as an option. This will also necessitate an update to the Flutter package, allowing you to offer security keys as well. I'll keep you posted / update this GitHub issue as soon as there are any news. |
|
Hi @vincentdelitz any updates on this? It's a make or break option for this library for us, even if there's a workaround or patch we can apply that'd be fantastic. |
Hey @J-tt, |
|
@vincentdelitz were using our own server, it's an internal facing app so there's less concern about user confusion. |
|
I made a very rough workaround to support just hardware keys (applying this patch will mean you can't use normal passkeys). You can then override just the passkey_ios dependancy in your flutter pubspec.yaml to a local copy. |
Have you considered to add support for roaming authenticators to ios/android?
When using the javascript webauthn APIs (through iOS webview), a following dialog is shown:
This provides an easy way to use same client code for both passkeys and security keys. However, when using the flutter library, as shown in your example app, there is only the passkeys option.
Thanks anyway for publishing the library, it has helped me greatly with my experiments on flutter and passkeys 👍
The text was updated successfully, but these errors were encountered: