Sign into Bitwarden with a passkey / "Login with passkeys" (for all BW apps)

… ah, and PRF support seems to be missing completely for Safari as @Be.ing already wrote implied:

 

 

PS:

I think you mean the “Related Origins Request” (ROR) … that seems to be implemented since Safari 18: Safari 18.0 Release Notes | Apple Developer Documentation – and one can also see that here (there, one can also see that ROR is a stopper for the Firefox extension)

1 Like

Yet, Section 5.1.2 of the Corbado blog article plainly states that (as of macOS 15) “both Safari and Chrome support PRF via iCloud Keychain.”
:person_shrugging:

1 Like

A post was merged into an existing topic: Unlock with FIDO2/“passkeys”

Good day. Is it planned to add a passwordless login to mobile devices using yubikey? My wife is interested in using Bitwarden on her iphone, but she can’t remember anything more complicated that her name. And a computer is not always accessible to use “login with device”, like it is realized now. Using yubikey seems to be good alternative, more secure, than face id.

Hm. It looks like PRF might have been implemented in last November for Safari:

Since Safari on macOS has added PRF support over a year ago, I’d like to know if the Bitwarden browser extension finally supports passwordless login? The documentation still states that only Chromium-based browsers are supported. It that still accurate? Any timeframe when support for Sarafi is going to be implemented?

@tomillr I moved your post into the relevant feature request for this.

If you look at the posts above, maybe one of the last “blockers” might be that – according to this overview from Corbado – the Safari extension still couldn’t make use of PRF-passkeys stored on security keys.

1 Like

According to MDN browser-compat-data, Safari still does not support get() for the PRF extension, and they cite the following bug report thread as a source:

On the positive side, the source indicates that Android has sufficient support for at least Yubikey. Are there other blocking issues for Android? (The FR subject says “for all BW apps”, so I assume this includes the Android mobile platform).

1 Like

Just a possibly related note, it seems to have been stated that Firefox 150 may support some additional passkey features that may allow this functionality (and also PRF unlock):

Since “Craig Lurey,” a possible CTO from Keeper, thinks this “bug” fix is necessary for passkey login, this may be the bug to track. Unfortunately, there is also another filed bug that directly specifies related origins request (ROR).

1 Like

That has now been implemented in Firefox! :tada:

2 Likes

@Be.ing That certainly is a step forward for Firefox – but I tend to aggree with @Neuron5569 that this is still an open issue now:

(and actually, I think “iinuwa” might be a BW developer)

1 Like

It looks like the feature is now available in Firefox 150 ( Firefox 150 release notes for developers (Stable) - Mozilla | MDN ), let’s hope the Firefox extension will implement the feature soon.

2 Likes

It looks like the Related Origins issue has been fixed and closed and is aimed for Firefox 152.

So the schedule for the Firefox releases are:

  • Firefox 152: By June 16
  • Firefox 153.0esr: July 17
1 Like

Issue has been resolved on the Firefox side; for version 152. Will the extension work out of box; then?

@ahmet_of_luxembourg Welcome to the forum!

Well, doesn’t look like it!

Although I must say, because Bitwarden’s doc doesn’t explicitly exclude Firefox, and Firefox appears to have the necessary technical infrastructure, this unavailability can probably be considered a bug.

What?

I don’t think so… https://www.youtube.com/watch?v=PgiKKzkUCbg&t=2476s sounded like it has to be added to the Firefox extension…

1 Like

A bug has been filed:

That report was closed. – @Micah_Edelblut wrote there, that another Firefox bug has to be fixed before this feature can be implemented.

3 Likes