One site I use fully turned off the ability to sign in without setting up a #Passkey.
Uncategorized
1
Posts
1
Posters
8
Views
-
One site I use fully turned off the ability to sign in without setting up a #Passkey. That's great for them (I guess), but I don't want my phone to hold the passkey, that right belongs to KeePassXC. Turns out, there is no competent flow they made that allows for this, oh and they still force you to verify via an SMS code (very, very insecure). Then it asked me to do a biometric authentication with a biometric device (no such thing on this desktop). Amateur. Can't log in via the old method, and can't set up the new method. This is not how you deploy a passkey future
-
R relay@relay.infosec.exchange shared this topic
