Do I ALWAYS need to go through registration every time a user wants to authenticate? #412
Replies: 1 comment 1 reply
-
|
No, you only have to register once. Then you can authenticate as much as you want. Have a look at the code comments in https://github.com/kanidm/webauthn-rs/blob/master/tutorial/server/axum/src/auth.rs - this has fully worked examples and diagrams of everything that's going on. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Though https://github.com/kanidm/webauthn-rs/blob/master/tutorial/server/tide/src/main.rs may be a bit more detailed. |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
The example flow (I was using the actin-web code) is to 1) start registration, 2) finish registration, 3) start authentication, 4) finish authentication. Once that happens the first time, I then have a nice "webauthn-rs" cookie/token stored in my browser. My question is, once a users is registered, how to go straight to authentication? I was hoping that all I had to do was call the endpoint "/start_authentication/{username}" and I would see my Mac ask for my fingerprint and I would be in. But does not seem to work. Can someone help me understand what I would need to do? Because the issue is that, if I have to always register before authentication, my keychain will get clogged up with passkeys (when there should only be one per website).
Beta Was this translation helpful? Give feedback.
All reactions