Backport PassKeys support to 2.7.7 #10189
Conversation
droidmonkey
force-pushed
the
backport/passkeys
branch
from
ff38b2c to
6a9b4c7
Compare
droidmonkey
force-pushed
the
backport/passkeys
branch
from
6a9b4c7 to
6363b61
Compare
|
Not sure if I should open a new issue on this PR given that it has not landed to the release branch yet, so for the moment I will just report my findings here. I am happy to open a new issue if that is prefered. So I built this PR on Linux and am using the KeePassXC-Browser extension currently available in the Chrome Web Store. I am able to create a use a passkey with github.com but bestbuy.com tells me _ The browser or operating system you're using doesn't support passkeys_. I am able to create a passkey on bestbuy.com using BitWarden though, so it seems that bestbuy.com is functional for passkeys in general. For my Google account, when I try to create a passkey the page has a warning:
Like bestbuy.com creating passkeys in my Google account works with BitWarden. |
|
@brianjmurrell Strange. Google was one of the things I tested. What browser are you using? |
Chrome 120.0.6099.129 (Official Build) (64-bit) |
I just tested this with Debian Bookworm, and it created the Passkey normally. Google complains that user should use Windows or macOS (Linux is not officially supported?), but when I tried to create a Passkey, I selected "Use another device" and it immediately prompted KeePassXC for the Passkey creation. After that logging in with the Passkey also worked normally. For the Bestbuy, I'm not sure how I can create an account as a non-US resident. |
|
I can test best buy. I hope I don't end up buying a new tv.... |
I was also able to get a GH passkey created. I thought I had come back here and updated as such, but it seems not.
I'm not a US resident either. I don't recall there being anything about creating an account there that required any evidence of US residency. It did ask for a phone number but I put in a fake and it was not required to be validated or any such thing to create the account. |
I still could no create an account. This is why I'm complaining. EDIT: I tested GitHub also, and there were no problems logging in with a Passkey created months ago. I also tried creating a new Passkey for login and it also worked directly without any errors. |
Could you expand on what is stopping you? It was a very straightforward process here. |
|
I don't seem to be able to create a passkey with KeePassXC[-Browser] on https://www.passkeys.io/ either. I create and log into an account there (using a passkey from my phone) and then try to create a new passkey there:
So then click the circled button. But I am prompted by the browser instead of KeePassXC[-Browser]:
|
|
You are likely running into the "resident key" issue. We made a mistake in interpreting the documentation. However, that was removed from this PR. Are you building the latest head of this PR? Recommend doing a git reset --hard onto the current remote head after a fetch. |
I believe I am. I am building 6363b61 (plus b65d0a8 of course, which I patch onto 6363b61 at the moment -- since I already have the tarball for 6363b61 present locally). |
|
Thank you for that amazing work. I have created a build from this PR and tested it with Chromium and Firefox on some websites (see list below). System: Arch Linux KeePassXC - Version 2.7.7-snapshot KeePassXC-Browser-Version: 1.8.11 Chromium 121.0.6167.85
Firefox 122.0
Observations (in both browsers)
|
|
Awesome thanks for testing. @phoerious good to merge? I have a couple more fixes to throw into 2.7.7 this weekend. |
|
On bestbuy.com it doesn't work for me in Chromium and Firefox. Trying to setup a new passkey in account settings gives the following error message:
|
droidmonkey
force-pushed
the
backport/passkeys
branch
from
b65d0a8 to
d04ce6e
Compare
|
Am I correct in assessing that:
has nothing significant enough over b65d0a8 to warrant rebuilding to update to d04ce6e? Is there anything anyone (i.e. I) can do to help diagnose the problem with bestbuy.com? Are they likely to be an outlier in not working with KeePassCX[-Browser] or are we going to see more sites with the same kind of problem? homedepot.com seems to be another site where I am able to create a passkey on my Android phone but there is no acknowledgement at all of being able to create passkeys using KeePassXC built from this PR. |
You could enable Debug Logging in the extension settings and paste the console log messages after the error happens. You could also create a new issue to https://github.com/keepassxreboot/keepassxc-browser/issues. Btw, have you tried the current extension |
Co-authored-by: varjolintu <[email protected]>
Co-authored-by: Sami Vänttinen <[email protected]>
--------- Co-authored-by: varjolintu <[email protected]> Co-authored-by: droidmonkey <[email protected]>
Includes "Fix ifdefs with UrlTools"
--------- Co-authored-by: Jonathan White <[email protected]>
Co-authored-by: Brian J. Murrell <[email protected]>
droidmonkey
force-pushed
the
backport/passkeys
branch
from
d04ce6e to
6e796d4
Compare
|
I think the BestBuy website is just plain broken, it is throwing errors for me when I try to login, change my password, and after registering a passkey:
When I go to sign in with the passkey, the dialog shows up just fine but it sits there and does nothing. I have no issues with passkey.io NOTE: This is with the latest Edge Browser and KeePassXC-Browser extension. |
phoerious
added
pr: new feature
Collection of browser PR's that fix various bugs and add support for PassKeys.
Testing strategy
Tested with latest released version of browser extension and snapshot build of this PR.
Type of change