Open Bug 1530370 (webauthn-ctap2) Opened 1 year ago Updated 1 day ago

[meta] Support CTAP2 (FIDO2) Passwordless Web Authentication

Categories

(Core :: DOM: Web Authentication, enhancement, P3)

66 Branch
enhancement

Tracking

()

Webcompat Priority revisit

People

(Reporter: jcj, Unassigned)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

(Keywords: meta, Whiteboard: [webauthn])

Web Authentication is specified for the second-factor-only CTAP 1.1 protocol and a passwordless-supporting CTAP 2.0 protocol. This meta-bug tracks support for CTAP 2 and passwordless support.

Depends on: 1508115
Depends on: 1530373
Depends on: 1391438
Alias: webauthn-ctap2
Priority: -- → P1
Duplicate of this bug: 1535730

Given that the live.com site only supports passwordless login via CTAP2, and this metabug is marked as a P1 for the last 7 months, could we get an update? It's unclear what the status is for authenticator-rs to support CTAP2, and that's the only dependency I'm seeing (which is curiously marked as a P3 for this P1 metabug).

Webcompat Priority: --- → ?

I'm busy elsewhere at present; I keep hoping I'll have some free time to work on WebAuthn soonish, but there's nothing definitive planned. Realistically, I have to rework the UX before I can really integrate the CTAP2 branch of authenticator-rs properly (since I need to do things like solicit PINs) and what passes for a WebAuthn UX today is currently broken anyway (Bug 1573190, Bug 1540309, Bug 1579927). So I need to learn how to do UX design as a practical prereq, which makes it harder to just casually work on.

Priority: P1 → P3

Thanks for the update, here's hoping we can get some assistance for you on the UX end.

Webcompat Priority: ? → revisit
Blocks: 1593571
You need to log in before you can comment on or make changes to this bug.