Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FIDO U2F action authentication (Yubikey) #4

Open
SindreBrurberg opened this issue Mar 10, 2023 · 2 comments
Open

FIDO U2F action authentication (Yubikey) #4

SindreBrurberg opened this issue Mar 10, 2023 · 2 comments
Labels
enhancement New feature or request

Comments

@SindreBrurberg
Copy link
Contributor

There could be good reasons to lock certain changes or all actions behind individual authentications. So that you will have to actually use the key when you want a new server or update a config or something like that.

Adding some good reading on how to implement.
https://rodneylab.com/sveltekit-fido-u2f-login/ # Good for frontend
https://github.com/tstranex/u2f # Seems to be simpel for backend, but might be outdated
https://github.com/CaliOpen/gofido # Seems to be actively used, but something looks strange at first glance

@SindreBrurberg SindreBrurberg added the enhancement New feature or request label Mar 10, 2023
@SindreBrurberg
Copy link
Contributor Author

Webauthn or fido2 might be a better goal.
https://github.com/fxamacker/webauthn

@SindreBrurberg
Copy link
Contributor Author

This is probably the best base.
https://github.com/go-webauthn/webauthn

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

1 participant