Open Bug 1792433 (passkeys) Opened 2 years ago Updated 20 days ago

[meta] Implement support for synced application credentials (passkeys)

Categories

(Core :: DOM: Web Authentication, task)

task

Tracking

()

People

(Reporter: djc, Unassigned)

References

(Depends on 4 open bugs, Blocks 5 open bugs)

Details

(Keywords: meta)

I suppose this might be part of WebAuthentication level 3? While I'm aware that passkeys is the Apple marketing name, I was unable to find an existing issue in the tracker referring to this feature.

Alias: passkeys
Severity: -- → S3
Depends on: webauthn-lvl2
Priority: -- → P1
See Also: → 1768622

There is some useful info and further links at https://fidoalliance.org/passkeys/

There's a passkeys test application here for convenience: https://www.passkeys.io/

Synchronization from one Firefox to another on a different platform through Firefox Accounts?
Create a passkey on Firefox Android and use it with Firefox on Windows?

Depends on: 1821785
Depends on: 1543674

For macOS specifically, Apple has a restricted entitlement that grants full access to the system AuthenticationServices framework, which includes both physical security keys and passkeys via iCloud Keychain. There's some information and a link to apply for the entitlement at https://developer.apple.com/documentation/bundleresources/entitlements/com_apple_developer_web-browser_public-key-credential.

Depends on: 1554397, 1831137
Blocks: 1838015
Depends on: 1853230
Blocks: 1835539
Blocks: 1864917
Blocks: 1862132
Depends on: 1868637
Severity: S3 → N/A
Type: enhancement → task
Priority: P1 → --
Summary: Implement support for synced application credentials (passkeys) → [meta] Implement support for synced application credentials (passkeys)

It seems Firefox implemented passkeys for Windows and MacOS but lack support for Linux as shown in https://www.passkeys.io/compatible-devices

I don't quite understand what is so platform specific. Of course, integration in the native platform password manager is nice but not mandatory. Firefox already stores its passwords and can sync them with Firefox Sync. What's so different with passkeys and what's the status of this feature?

As a web developer if I can provide passkeys as the primary login method, this would be a great step forward, but it'd be better to have full browser compatibility.

You need to log in before you can comment on or make changes to this bug.