u/CalendarSubject4887

Need help, I am going INSANE *Passkeys*

So I have Vaultwarden and i have always ran it locally through Traefik and had my MFA configured through Yubico environmental variables. this allowed me (when i first set it up) to run my security key for totp's. i have been overhauling my compose files recently and seen that this is no longer needed and i wanted to switch to straight fido2 auth with my security key so i don't have to open and get a otp code every time i want to log in. but something just isn't allowing me to register my key. when i go to register it and i click on read key and select the security key option form the pop up it will immediately skip the tough auth and go right to the pin entry. now i put my pin in and it says incorrect pin. my pin is not incorrect i have confirmed that by logging into my other services and through the Yubico authenticator app. Now i was wondering if perhaps Traefik was the culprit. i omitted the entire middlewares section to rule out my securityheaders and no change. I was able to register the key on my windows device but then when i went to log in on both my windows and mac i just got a spinning circle that never resolved the a security key check. I'm going insane and i need to know if anyone has any ideas or have experienced this. please help!! I don't want to run this through Authentik. I'd much rather use the built in auth.

reddit.com
u/CalendarSubject4887 — 7 days ago