In Bitwarden Desktop App FIDO2/WebAuthN could not be used as a second factor (MFA).
Is it possible or not implemented yet ?
Electron (which the Desktop app is based on) does not support Fido2 on Mac / Linux. There was a PR implementing this for Electron but it was ultimately abandoned.
At this point the most likely way forward would be to use the rust native module and wrap either libfido2 or something like GitHub - kanidm/webauthn-rs: An implementation of webauthn components for Rustlang servers.
Do we know if this will be implemented with passkey support?
It’d be quite a miss if FIDO2 passkeys are only supported for the web vault and mobile apps.
Electron (which the Desktop app is based on) does not support Fido2 on Mac / Linux. There was a PR implementing this for Electron but it was ultimately abandoned.
Interesting question or question possibly interesting,
- could tauri-js which some say is an alternative to electron-js work with webauthn-rs? since tauri-js is written in rust?
- would it be possible to use tauri-js+webauthn-rs?
I’m not suggesting porting the desktop app to a rust based runtime. That would be a whole different discussion.
My suggestion was that since the current Desktop app already uses a native rust module (for biometrics and secure secret storage), this could be used to leverage fido2 directly without relying on electron to support it.