Comments (6)
I wrote a prototype PR using webauthn-rs, and it is working (With vaultwarden + yubikey 5c). Still needs clean-up, testing, and integration into the rbw pinentry (currently it expects the pin to be entered via the stdin of the agent), but once complete it solves this issue.
from rbw.
yeah, yubikeys are currently not supported. i'd be willing to look over a patch to make this work, but i'm unfortunately pretty unlikely to get to this anytime soon (it'll be a decent amount of work, because as far as i can tell, there aren't really any u2f client libraries for rust yet, and i don't personally use a yubikey for bitwarden). sorry!
from rbw.
Yep, webauthn-rs would work here.
Keep in mind though, that due to recent changes in webauthn and ctap2, using a yubikey as a "second factor" is no longer really the intent of the spec/standard. These devices are moving to self-contained multifactor, and enforce some behaviours that can confuse users if you try to use them as "single factors" only. We try to guide you away from this in the design of the webauthn-rs api.
But otherwise, yes, webauthn-rs has everything you would need here, and we intend to add support for hmac secret in the future if you need derived keys.
from rbw.
Wondering if https://github.com/kanidm/webauthn-rs is a valid option for getting webauthn support going. It is kinda the successor to U2F and also works directly with phones, that have TPM devices.
from rbw.
@doy i assume the situation has not changed much since then?
I would really like being able to use rbw
with my 2FA-enabled account.
from rbw.
Getting similar issues on darwin m1:
rbw ls
rbw list: TODO
basically on any rbw action is outputs: TODO
.
Sorry, I lied, I've got email 2fa, after disabling it, rbw authenticated no problem. Will create a separate issue then.
from rbw.
Related Issues (20)
- rbw sync: failed to log in to bitwarden instance: Username or password is incorrect. HOT 2
- "email" config option is case sensitive. HOT 1
- rbw login: failed to log in to bitwarden instance: failed to parse JSON: EOF while parsing a value at line 1 column 0 HOT 5
- rbw daemon fails to start on Termux because /run is read-only HOT 1
- rbw 1.9.0 not working with latest vaultwarden HOT 7
- failed to decrypt: failed to decrypt encrypted secret: invalid mac HOT 31
- rbw ANYCOMMAND: failed to log in to bitwarden instance: failed to parse JSON: missing field `Kdf` at line 1 column 120 HOT 38
- Is there a way to use a PIN instead of the password? HOT 1
- git-credential-rbw is broken in 1.10.0 HOT 1
- HTTPS_PROXY being ignored
- `rbw code UUID` doesn't work with v1.10.0 HOT 2
- TOTP with different algorithm not supported
- `rbw unlock` not working. HOT 14
- Feature request: keep vault open indefinitely HOT 3
- How to debug failed logins? HOT 7
- Pinentry script not working with passwords containing spaces
- Pinentry script not working with 2fa codes
- Add Pinentry script auto setup
- Username or Password are incorrect. Try Again HOT 31
- Unable to `get` entries containing colons in the name HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rbw.