admin
16. 08. 2025 07:02:59
FITstagram now supports passkeys!
Features:
- Unlimited number of passkeys
- You can name each passkey
- For each passkey, you can allow it for passwordless sign-in (otherwise it's just an alternative to TOTP-based 2FA)
Limitations:
- Unlike TOTP, passkey 2nd factor isn't required for a password change. If you don't have TOTP-based two-factor authentication, then someone could hijack your session and change your password without a second factor, even if you have a passkey.
- You cannot have a passkey for optional paswordless sign-in (if you have passkeys in your account, you're always going to need a second factor to log in: either TOTP or one of the passkeys).
These limitations are the reason why only users with TOTP two-factor authentication can create passkeys.
Picture by Freepik: https://www.freepik.com/free-vector/3d-cartoon-style-bunch-keys-icon-white-background-realistic-modern-keys-new-apartment-house-hotel-room-ring-flat-vector-illustration-entrance-security-property-concept_42331751.htm
admin
Note: All of the passkeys are required to be "resident" passkeys. This improves usability and reliability, however, it comes with limitations. For example, it means that yubikeys can apparently only be used via USB, not NFC