104 questions
0
votes
0
answers
40
views
Implement Biometric Passkey Login for Smart Contract Authentication Using X and Y Coordinates in React Native?
We attempted various approaches using different npm packages, such as react-native-passkey and @turnkey/react-native-passkey-stamper, but these solutions didn't fully address our requirements for ...
0
votes
1
answer
33
views
WebAuthN Won't Display rp name
I've tried over and over to get passkey auth to show the rp name instead of the rp id. Initially I had my backend url (rp id) set to a subdomain (api.project.ca) and my frontend was projectname....
0
votes
1
answer
53
views
Encrytion with Passkeys - PRF extension and hmacCreateSecret extension, which one to use?
On latest version of Chrome (130.0.6723.117 as of today), the Passkey API in navigator.credentials supports both prf and hmacCreateSecret as extensions. Both APIs are very similar: they accept 1 ...
- 78
0
votes
0
answers
62
views
Android check google account in login on device
I want to intergrate passkey on Android device.
So l want to check wether my device had login google.
How can l do that? GetGoogleIdOption always need a serverid, but i do not need my google account ...
0
votes
1
answer
39
views
Extract/export resident/private key created inside `navigator.credentials.create`?
I want to know if its possible to extract/export the resident/private key created inside navigator.credentials.create?
Please don't ask me what I'm trying to do so you can tell me "well actually, ...
- 3,450
0
votes
1
answer
122
views
rpId validation failed in Passkeys PoC on Android using Jetpack Compose
I am working on a Passkeys Proof of Concept (PoC) for an Android app using Jetpack Compose. I've set up the required digital asset links (assetlinks.json) and domain verification for app-to-web ...
-1
votes
1
answer
45
views
Different PRF output when using platform or cross-platform authentication attachement
I am using the prf extension for passkeys that is available since ios 18 and macos15. I am using a fixed, hardcoded prf input when creating or geting the credentials. After creating a passkey, i try ...
1
vote
1
answer
152
views
Why navigator.credentials.create return Credential instead of PublicKeyCredential in typescript?
I am using typescript 5.6 ("typescript": "~5.6")
When I trying to use WebAuth, I found that navigator.credentials.create return Promise<Credential | null>
But in MDN, I ...
- 87
0
votes
1
answer
115
views
How to intgrate Passkey in iOS App with custom Python backend using WebAuthn
Intro
I've my own backend serving API's to Android and iOS Apps written Python using the Flask framework and the py_webauthn library (https://github.com/duo-labs/py_webauthn).
I've succesfully managed ...
- 155
0
votes
0
answers
250
views
Passkeys Registration and Login Flow Not Working on Android - Google Password Manager Issue
I'm currently implementing passkeys for user authentication in my web application. The passkey registration and login flow works perfectly on iOS and Windows. However, I'm encountering an issue on ...
1
vote
1
answer
179
views
Challenge mismatch during authenticator attestion on iOS
I am implementing a simple PoC application in React Native for iOS and trying to attest an authenticator using react-native-passkey library, however, I am struggling to verify the attestation response ...
user26530591
1
vote
1
answer
72
views
What options should I pass to node-cbor to decode WebAuthN passkey authenticatorData?
To decode the AuthenticatorAttestationResponse: attestationObject property returned when attestationType: 'direct' is passed to .create(), this works:
const {decodeAllSync} = require("cbor");...
- 739
0
votes
1
answer
260
views
How to access private key of a passkey on the client?
I am building an app with sveltekit and I have decided to implement passkeys as a form of authentication.
So, I started researching about them and found out that in their foundation is the concept of ...
- 21
1
vote
2
answers
163
views
AT+PASSKEY in BLE 5.0 . How to set and use?
I would like to use the EBYTE E104-BT52 module on my device and connect to it via an Android smartphone.
But what if the client device is running BLE 4.2 and it will be unsecure pairing.
To avoid this ...
- 11
0
votes
0
answers
56
views
native support of passkey on Android
Got one quick tech point to confirm with you around passkey.
If any android app DOES NOT want to use any full-browser OR custom-tab OR even embedded-web-view to complete passkey-authentication, can ...
0
votes
1
answer
146
views
Why does Chrome on Android not save my passkey?
I'm trying to implement passkey authentication but it looks like the (imo simple) solution I've created works fine on Chrome for Windows, but on Chrome on Android my registration prompts for ...
- 8,274
0
votes
2
answers
229
views
Android CredentialManager: createCredential() method returns error in CredentialManager
I'm testing the abilities of the Android Credential Manager APIs to work with passkeys over W3C standards. While everything is set up according to documentation. I am getting error everytime in ...
- 11
1
vote
1
answer
129
views
Why is the metadata for the Google Password Manager aaguid:ea9b8d66-4d01-1d21-3ce4-b6b48cb575d4 not in the public FIDO Alliance MDS V3 Service?
Is there a reason why the Google Password Manager aaguid: ea9b8d66-4d01-1d21-3ce4-b6b48cb575d4 is not present in the list of public metadata which is hosted in the Fido Alliance Metadata service V3 ...
- 1,197
0
votes
1
answer
141
views
Issue while signature verification in Fido server while authentication
I am trying to implement passkeys authentication using Java Fido server and JS Webauthn api. While authenticating i am getting the signature verification error.
Here is the stack trace,
java.security....
1
vote
1
answer
191
views
Getting No data error on verifying Authentication using passkey using SimpleWebAuthn and Node.js and react.js
I am trying to use my passkey for login in my react.js app using node.js for backend and using MongoDB for my database.
following is my backend code:
const registerWebAuthentication = async (req, res) ...
- 19
3
votes
2
answers
374
views
Try to authenticate using PassKeys using SimpleWebAuthn package, React and Nodejs
I'm trying to authenticate user using passkey, at the VerifyAuthenticateResponse method, I faced an issue of no getting logged in, instead the server thrown this kind of error which I didn't exepected....
- 41
0
votes
0
answers
148
views
Passkey registration failing while implementing a third party passkeys manager
We are implementing a 3rd party Passkeys Manager app for ios. In the ios app in the CredentialProviderViewController I've implemented:
func prepareCredentialList(
for serviceIdentifiers: [...
0
votes
1
answer
140
views
Do passkeys require discrete user flows for registration vs. authentication?
UX designer here working on an update to our authentication flow, ideally replacing passwordless email login with passkeys as a primary authentication method.
Today, our product does not distinguish ...
0
votes
0
answers
59
views
What if I clean cache on safari ? Passkey
What should be if I create passkey on apple device on safari with webauthn navigator.credentials.create(). Then I see a one passkey on device. If I clear cache in safari and try again. It force me to ...
1
vote
0
answers
80
views
Is there a way to call a windows security key prompt (passkeys) with java?
Im developing a java application which implements the passkeys authentication. Is there a native java call to get access to this windows prompt, which opens up when a user is expected to authenticate ...
- 11
0
votes
0
answers
18
views
How do I access passkeys seamlessly in an iMessage app?
Does anyone know how to access passkeys from an iMessage app? I'd like to do it seamlessly without having to re-route users through Safari.
I've looked through Apple developer docs and forums. ...
0
votes
1
answer
205
views
Passkey with typescript library simplewebauthn & password manager
I have implemented Passkey in ts with the library https://simplewebauthn.dev/docs/
It saved passkey in my browser Keychain or mac keychain.
But I also want that my password manager (dashlane, ...
- 551
0
votes
0
answers
24
views
ChromeCustomTab passkeys unexpected behaviour on finger input
I am experimenting passkeys but I have very strange problem.
From my Expo mobile app I open a ChromeCustomTab
It points to a web application that does webauthN.create
Than Android prompts me for ...
- 658
0
votes
1
answer
211
views
Webauthn AuthenticatorAttestationResponse "getPublicKey" returns a restricted object?
I'm trying to implement passkeys for my web app according to these guides, and I'm primarily working on the registration flow. After I've created the passkey using navigator.credential.create, I try ...
0
votes
0
answers
115
views
How to correctly implement passkeys for web?
No passkeys available
I have a django app and I'm trying to implement passkeys login. Initially user signs up with password and then registers a passkey using either a PC or a phone. When I register ...
- 698
1
vote
0
answers
92
views
Android 10 Passkey authentication issue
Today, I'm reaching out for help from everyone, especially those who have experience with Passkeys.
The situation is that I'm implementing Passkeys for a Flutter app, but I'm encountering some issues ...
- 11
-1
votes
1
answer
291
views
NodeJs Crypto failing to verify a Fido2 Public Key and Signature
Whilst trying to implement Passkey login using AWS Cognito, I found a guide written by AWS (https://github.com/aws-samples/webauthn-with-amazon-cognito/). It shows how to use lambda triggers to ...
0
votes
1
answer
132
views
Using IP address as relying party ID in passkey
Im trying to implement passkey using yubico passkey library in spring boot and angular and it is working fine in local machine, but when deployed to a server it's not working and showing error.
I ...
- 5
1
vote
1
answer
810
views
Passkey creation with Google Credential Manager fails without an `authenticatorSelection` claim in the request
After following Sign in your user with Credential Manager, I adapted it to my use case and backend.
Creating a passkey worked fine with Samsung Pass and Dashlane, but not with Google Password Manager ...
- 98
0
votes
1
answer
277
views
Android not working as cross platform authenticator
Tested using various sites like webauthn.me,
Similar to this question (same error message), but different Cross-device passkeys are not working on Android
LG phone latest updates (android 12), also ...
- 1,080
0
votes
0
answers
213
views
Force Passkey to be generated in Google instead of Samsung Pass in an Android Device
Is there a way to force passkey generation to Google password manager instead of Samsung Pass.
The code I share below currently uses the default option chosen by the user in an Android Device.
I don't ...
- 13
1
vote
0
answers
333
views
Passkeys and Apple Associated Domains
I've been trying to implement passkeys. I keep running into apple-app-site-association issues.
Error: The operation couldn’t be completed. Application with identifier abc is not associated with ...
- 1,140
0
votes
2
answers
553
views
passkey authentication on android platform
I have one quick point to confirm.
On Android platform with google-password-manager, on any device is it correct that
there can NOT be more than one passkey of same account (eg., [email protected] ) ...
2
votes
0
answers
251
views
End to end test for Passkey in mobile App
Passkey requires an Authenticator to store and validate the credentials during registration and authentication phase.
This requires user-presence and user-verification depending on the Relying Party ...
- 126
0
votes
1
answer
636
views
Local development with the apple-app-site-association file
I’m trying to locally test my passkey implementation. My Vapor server is hosted on localhost, on port 8080.
During the passkey authentication process the apple-app-site-association file must be within ...
- 1,140
1
vote
0
answers
131
views
Is there a way to determine which keys exist on a device when using Apple's public-private key authentication?
I'm trying to make a good UX for allowing a user to refresh their authentication with a public-private key via the public-private key functions in AuthenticationServices. I would like to only show a &...
- 2,046
0
votes
1
answer
426
views
Is there a way to end to end test an application that relies on passkey for authentication?
We are using a 3rd party application to authenticate our users before they login to carry out transactions with our product.
The authentication is tightly coupled with our backend as we verify the ...
- 103
1
vote
0
answers
351
views
Error with createCredential in React Native Passkey on Android 14
I'm integrating the f-23/react-native-passkey (link) library into a React Native app for passkey functionality. It works on iOS 17.2, but on Android 14 (Pixel 7 API 34, Model: sdk_gphone64_arm64), I ...
- 11
0
votes
1
answer
99
views
Consistent derivation of private key from PassKey?
Can I consistently derive a private key that isn’t the PassKey from a PassKey?
Eg. so that I could use that derived key in-application across multiple different devices without having to use a both-...
- 5,594
0
votes
0
answers
449
views
iOS Associated Domains not recognised on some devices
I have an app that uses webauthn (Passkey) login, and for that we have associated our app with our auth host domain. But sometimes, let's say on 1% of devices we get an error:
Request cancelled after ...
- 5,320
0
votes
1
answer
453
views
Supporting multiple Relying Party origins / domains
How to go about supporting multiple origins if my service is hosted in multiple domains?
Example: I've a service called MyJuiceShop and it's available in myjuiceshop.com and also in myjuiceshop.jp. ...
- 126
1
vote
1
answer
791
views
How to properly extract public key from attestationObject?
I'm digging around passkeys and can't find a way to properly extract the Public Key from the attestationData sent from the client during the attestation (rigistration) step. Most tutorials I found ...
- 1,816
4
votes
1
answer
794
views
WebAuthn not registering/validating on oneplus devices
I was trying to implement WebAuthn in my web application when I encountered a weird issue. WebAuthn is working fine, I'm able to register with every mobile device using scan QR code and verify later ...
- 301
0
votes
2
answers
301
views
Does the Security Key C NFC from Yubico support Fido2 largeBlob extension, using the browser?
I would like to use a Security Key C NFC with Fido2 largeBlobs
https://docs.yubico.com/yesdk/users-manual/application-fido2/large-blobs.html
According to the documentation, the device should support ...
- 1
0
votes
2
answers
572
views
Error when integrating passkey with Android
I'm currently working on implementing passkey authentication for an Android application, using this documentation: https://developer.android.com/training/sign-in/passkeys#kotlin
For authentication, I'...
- 3,277