Ricky MondelloJun 8, 2023

đŸ”‘đŸ§” iOS 17, macOS Sonoma, and passkeys (1/n)

Password manager apps can now save and sign in with passkeys across the entire OS — all apps and websites — by integrating with the AuthenticationServices framework's updated Credential Provider Extensions!
https://developer.apple.com/documentation/authenticationservices/ascredentialproviderviewcontroller

This will include third-party web browsers like Chrome and Firefox on macOS, because macOS 13.3 added support for web browsers to use iCloud Keychain’s passkeys (and now third-party app’s passkeys)!
https://developer.apple.com/documentation/authenticationservices/asauthorizationwebbrowserpublickeycredentialmanager

ASCredentialProviderViewController | Apple Developer Documentation

A view controller that a password manager app uses to extend AutoFill.

Apple Developer Documentation
Show threadTorstein
@rmondello @siracusa maybe i have misunderstood, but doesn't passkeys make passeord managers such as 1Password superflous? I was hoping i could quit my sub to the terrible 1P 8.0.
Jun 9, 2023 at 7:10amIvory for iOS
Show threadAndy NormanJun 9, 2023
@torsteinv @rmondello @siracusa no, you still have to store all the passkeys for the sites you visit somewhere. So you still either need an app like 1Password or use the built in OS password manager. Though I really don’t get the hate for 1P8, it feels fine to me.
Show threadRicky MondelloJun 9, 2023
@andynormancx @torsteinv A little nit that isn't important for the topic of this conversation, but I think is important in general: “passkey” is a common noun, just like “password”, so it's spelled in all lower-case.
Show threadAndy NormanJun 9, 2023
@rmondello @torsteinv I read the transcript of the session pointing out just after posting that 😉
Show threadAndy NormanJun 9, 2023
@torsteinv @rmondello @siracusa there are password-less schemes out there, which avoid storing separate tokens for each site, like https://en.m.wikipedia.org/wiki/SQRL for example. But even then you still need a client app (or something in the OS) to manage the authentication process for you
SQRL - Wikipedia