-
Notifications
You must be signed in to change notification settings - Fork 285
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Login with Passkeys!! #1599
Login with Passkeys!! #1599
Conversation
Generated by 🚫 Danger |
You can test the changes in simplenote-ios from this Pull Request by:
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Sending you a few notes, looking great Charlie!!
…ge by ensuring it is url safe.
7e524e0
to
23ed723
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@charliescheer We'd need to polish all of the flows:
- Entering the wrong password during the Passkey Registration results in no feedback
- I was unable to associate the 1P entry I had, with the new Passkey
- The Onboarding flow also results in no feedback, if you previously didn't have a Passkey
That being said, since we're targetting a feature branch, no blockers to merge this one!
Nice work!!
static let alertTitle = NSLocalizedString("Passkey Setup", comment: "Alert title for setting up passkeys") | ||
static let message = NSLocalizedString("To add passkeys you must enter your password", comment: "Message prompting user for password to create passkey") | ||
static let submit = NSLocalizedString("Submit", comment: "Submit button title") | ||
static let cancel = NSLocalizedString("cancel", comment: "Cancel button title") |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nipticky: We should prob. capitalize this one
Entering the wrong password during the Passkey Registration results in no feedback Yes! All of that stuff is coming in a future PR |
Fix
To improve the security of Simplenote accounts we are trying to move away from email/password authentication as it is insecure at best. One of the things we are implementing is Passkeys. This will allow users to create and store passkeys on their apple device and when they go to log into their account rather than using an email and password they only need to put in their email and then use the local biometrics to receive a passkey and then authenticate into Simplenote.
This has a bunch of security benefits and should also help users keep from losing their passwords.
Sign up for passkeys:
RPReplay_Final1718384460.mp4
Login with passkeys:
RPReplay_Final1718384268.mp4
Test
Review
(Required) Add instructions for reviewers. For example:
Release
(Required) Add a concise statement to
RELEASE-NOTES.txt
if the changes should be included in release notes. Include details about updating the notes in this section. For example: