~sircmpwn/meta.sr.ht#62: Add U2F support for 2FA

Status
REPORTED
Submitter
~sircmpwn
Assigned to
No-one
Submitted
8 months ago
Updated
5 months ago
Labels
No labels applied.

~anarcat 8 months ago

i'd love to see that as well. i was trying to setup 2FA and was confused by the result... U2F is pretty much standard at this point and i would much rather use it (and my Yubikey token) than TOTP...

~akavel 8 months ago

IIUC, u2f/WebAuthn probably requires some basic JS to work (at the moments the token needs to be accessed). Would that be OK for the site, given its no JS architecture?

~martijnbraam 8 months ago

the javascript is only needed for users that actually enable u2f for their account if you redirect to the u2f page after login, same thing for the setup page.

~martijnbraam 8 months ago

the javascript is only needed for users that actually enable u2f for their account if you redirect to the u2f page after login, same thing for the setup page.

~anarcat 8 months ago

I think it would be an acceptable tradeoff.

Javascript is not satan. As much as I dislike the thing, it has its purpose for such things... :)

~amyers 5 months ago

I would also like to be able to use my yubikey for sr.ht