Sign In, 2Fa with Security Keys(YubiKey) not working, "Not Registered with this website" #14111

New Issue

Open

opened 2025-11-02 11:03:13 -06:00 by GiteaMirror · 5 comments

GiteaMirror commented 2025-11-02 11:03:13 -06:00

Owner

Copy Link

Originally created by @jalanga on GitHub (Feb 7, 2025).

Description

Adding security key is working.
Signing in with it, I get: "You're using a security key that's not registered with this website"

Using inside docker with traefik as reverse proxy.

ROOT_URL and DOMAIN are set correctly
GITEA__server__ROOT_URL=https://gitea.example.com/
GITEA__server__DOMAIN=gitea.example.com

The demo website is not working, but the issue can be reproduced on the main site, actually now I can't access the account created.

Gitea Version

docker.io/gitea/gitea:1.23.3-rootless

Can you reproduce the bug on the Gitea demo site?

Yes

Log Gist

No response

Screenshots

Git Version

Operating System

ubuntu

How are you running Gitea?

Docker + traefik

Database

PostgreSQL

Originally created by @jalanga on GitHub (Feb 7, 2025). ### Description Adding security key is working. Signing in with it, I get: "You're using a security key that's not registered with this website" Using inside docker with traefik as reverse proxy. ROOT_URL and DOMAIN are set correctly GITEA__server__ROOT_URL=https://gitea.example.com/ GITEA__server__DOMAIN=gitea.example.com The demo website is not working, but the issue can be reproduced on the **main site**, actually now I can't access the account created. ### Gitea Version docker.io/gitea/gitea:1.23.3-rootless ### Can you reproduce the bug on the Gitea demo site? Yes ### Log Gist _No response_ ### Screenshots  ### Git Version - ### Operating System ubuntu ### How are you running Gitea? Docker + traefik ### Database PostgreSQL

GiteaMirror added the topic/authenticationtype/bug labels 2025-11-02 11:03:13 -06:00

GiteaMirror commented 2025-11-02 11:03:14 -06:00

Author

Owner

Copy Link

@techknowlogick commented on GitHub (Feb 8, 2025):

Which tool/device are you using for your passkey?

@techknowlogick commented on GitHub (Feb 8, 2025): Which tool/device are you using for your passkey?

GiteaMirror commented 2025-11-02 11:03:14 -06:00

Author

Owner

Copy Link

@jalanga commented on GitHub (Feb 8, 2025):

YubiKey 5c Nfc. On MacOS

I had tested more:

Adding the security key through chromium browser (Google Chrome, Brave) will result in the error above. KO
Adding the security key through Safari, Sign in will work with all browsers. OK

@jalanga commented on GitHub (Feb 8, 2025): YubiKey 5c Nfc. On MacOS I had tested more: Adding the security key through chromium browser (Google Chrome, Brave) will result in the error above. KO Adding the security key through Safari, Sign in will work with all browsers. OK

GiteaMirror commented 2025-11-02 11:03:14 -06:00

Author

Owner

Copy Link

@tiran133 commented on GitHub (Feb 13, 2025):

Yes, I can confirm this.

Creating a Passkey with chromium based browsers does not seem to work. I used Vivaldi.
Creating a Passkey with Safari and then logging in with Vivaldi via Passkey works.
I used a YubiKey 5c NCF and a Nano both the same result.

@tiran133 commented on GitHub (Feb 13, 2025): Yes, I can confirm this. Creating a Passkey with chromium based browsers does not seem to work. I used Vivaldi. Creating a Passkey with Safari and then logging in with Vivaldi via Passkey works. I used a YubiKey 5c NCF and a Nano both the same result.

GiteaMirror commented 2025-11-02 11:03:15 -06:00

Author

Owner

Copy Link

@BingYanchi commented on GitHub (Aug 12, 2025):

Yes. This issue only occurs during secondary verification after logging in.

If you directly use the "Sign in with a passkey" option at the bottom of the login page without logging in first, the problem does not occur. The issue has also been reproduced on the official site.

Using Yubikey 5 NFC, Chrome

@BingYanchi commented on GitHub (Aug 12, 2025): Yes. This issue only occurs during secondary verification after logging in. If you directly use the "Sign in with a passkey" option at the bottom of the login page without logging in first, the problem does not occur. The issue has also been reproduced on the official site. Using Yubikey 5 NFC, Chrome

GiteaMirror commented 2025-11-02 11:03:15 -06:00

Author

Owner

Copy Link

@alanzheng88 commented on GitHub (Aug 30, 2025):

i'm also getting the same error with yubikey 5c nano when going through the user/pass + webauth flow

this doesnt happen if we go through the "Sign in with a passkey" flow.

shouldn't both behave the same?

@alanzheng88 commented on GitHub (Aug 30, 2025): i'm also getting the same error with yubikey 5c nano when going through the user/pass + webauth flow this doesnt happen if we go through the "Sign in with a passkey" flow. shouldn't both behave the same?

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

release/v1.25

release/v1.24

release/v1.23

release/v1.22

release/v1.21

release/v1.20

release/v1.19

release/v1.18

release/v1.17

release/v1.16

release/v1.15

release/v1.14

release/v1.13

release/v1.12

release/v1.11

release/v1.10

release/v1.9

release/v1.8

v1.25.3

v1.25.2

v1.25.1

v1.25.0

v1.24.7

v1.25.0-rc0

v1.26.0-dev

v1.24.6

v1.24.5

v1.24.4

v1.24.3

v1.24.2

v1.24.1

v1.24.0

v1.23.8

v1.24.0-rc0

v1.25.0-dev

v1.23.7

v1.23.6

v1.23.5

v1.23.4

v1.23.3

v1.23.2

v1.23.1

v1.23.0

v1.23.0-rc0

v1.24.0-dev

v1.22.6

v1.22.5

v1.22.4

v1.22.3

v1.22.2

v1.22.1

v1.22.0

v1.23.0-dev

v1.22.0-rc1

v1.21.11

v1.22.0-rc0

v1.21.10

v1.21.9

v1.21.8

v1.21.7

v1.21.6

v1.21.5

v1.21.4

v1.21.3

v1.21.2

v1.20.6

v1.21.1

v1.21.0

v1.21.0-rc2

v1.21.0-rc1

v1.20.5

v1.22.0-dev

v1.21.0-rc0

v1.20.4

v1.20.3

v1.20.2

v1.20.1

v1.20.0

v1.19.4

v1.21.0-dev

v1.20.0-rc2

v1.20.0-rc1

v1.20.0-rc0

v1.19.3

v1.19.2

v1.19.1

v1.19.0

v1.19.0-rc1

v1.20.0-dev

v1.19.0-rc0

v1.18.5

v1.18.4

v1.18.3

v1.18.2

v1.18.1

v1.18.0

v1.17.4

v1.18.0-rc1

v1.19.0-dev

v1.18.0-rc0

v1.17.3

v1.17.2

v1.17.1

v1.17.0

v1.17.0-rc2

v1.16.9

v1.17.0-rc1

v1.18.0-dev

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.11

v1.17.0-dev

v1.16.0-rc1

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.14.7

v1.15.0

v1.15.0-rc3

v1.14.6

v1.15.0-rc2

v1.14.5

v1.16.0-dev

v1.15.0-rc1

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.7

v1.14.0-rc2

v1.13.6

v1.13.5

v1.14.0-rc1

v1.15.0-dev

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.6

v1.13.0-rc2

v1.14.0-dev

v1.13.0-rc1

v1.12.5

v1.12.4

v1.12.3

v1.12.2

v1.12.1

v1.11.8

v1.12.0

v1.11.7

v1.12.0-rc2

v1.11.6

v1.12.0-rc1

v1.13.0-dev

v1.11.5

v1.11.4

v1.11.3

v1.10.6

v1.12.0-dev

v1.11.2

v1.10.5

v1.11.1

v1.10.4

v1.11.0

v1.11.0-rc2

v1.10.3

v1.11.0-rc1

v1.10.2

v1.10.1

v1.10.0

v1.9.6

v1.9.5

v1.10.0-rc2

v1.11.0-dev

v1.10.0-rc1

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc2

v1.10.0-dev

v1.9.0-rc1

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc3

v1.7.6

v1.8.0-rc2

v1.7.5

v1.8.0-rc1

v1.9.0-dev

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc3

v1.6.4

v1.7.0-rc2

v1.6.3

v1.7.0-rc1

v1.7.0-dev

v1.6.2

v1.6.1

v1.6.0

v1.6.0-rc2

v1.5.3

v1.6.0-rc1

v1.6.0-dev

v1.5.2

v1.5.1

v1.5.0

v1.5.0-rc2

v1.5.0-rc1

v1.5.0-dev

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc3

v1.4.0-rc2

v1.3.3

v1.4.0-rc1

v1.3.2

v1.3.1

v1.3.0

v1.3.0-rc2

v1.3.0-rc1

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc2

v1.1.4

v1.2.0-rc1

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

v0.9.99

Labels

Clear labels

$20

$250

$50

$500

backport/done

💎 Bounty

docs-update-needed

good first issue

hacktoberfest

issue/bounty

issue/confirmed

issue/critical

issue/duplicate

issue/needs-feedback

issue/not-a-bug

issue/regression

issue/stale

issue/workaround

lgtm/need 2

modifies/api

modifies/translation

outdated/backport/v1.18

outdated/theme/markdown

outdated/theme/timetracker

performance/bigrepo

performance/cpu

performance/memory

performance/speed

pr/breaking

proposal/accepted

proposal/rejected

pr/wip

pull-request

Mirrored from GitHub Pull Request

reviewed/wontfix

💰 Rewarded

skip-changelog

status/blocked

topic/accessibility

topic/api

topic/authentication

topic/build

topic/code-linting

topic/commit-signing

topic/content-rendering

topic/deployment

topic/distribution

topic/federation

topic/gitea-actions

topic/issues

topic/lfs

topic/mobile

topic/moderation

topic/packages

topic/pr

topic/projects

topic/repo

topic/repo-migration

topic/security

topic/theme

topic/ui

topic/ui-interaction

topic/ux

topic/webhooks

topic/wiki

type/bug

type/deprecation

type/docs

type/enhancement

type/feature

type/miscellaneous

type/proposal

type/question

type/refactoring

type/summary

type/testing

type/upstream

No Label topic/authentication type/bug

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/gitea#14111