github-starred/gitea
2
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2026-03-16 21:23:02 -05:00
Code Issues 2.6k Packages Projects Releases 100 Wiki Activity

Support FIDO U2F over USB and NFC. #389

New Issue
Closed
opened 2025-11-02 03:21:14 -06:00 by GiteaMirror · 2 comments
GiteaMirror commented 2025-11-02 03:21:14 -06:00
Owner
Copy Link

Originally created by @crocket on GitHub (Feb 23, 2017).

Why you want U2F

  • It authenticates a user via public key authentication between server and client. Stronger encryption than OTP.
  • Public key authentication prevents phishing and man-in-the-middle attacks.
  • There is no keyboard input, so it is not susceptible to keyboard loggers.
  • A U2F device can generate a new key pair for each (web) application. Automatic generation of application-specific keys prevents websites from tracking you by the same public key.

Desktop (U2F over USB)

Mobile

U2F over NFC is currently supported via google authenticator on android.
However, U2F over USB is still possible if you connect a U2F key device to a smartphone via a USB cable.

Supported Web Services

Originally created by @crocket on GitHub (Feb 23, 2017). ## Why you want U2F * It authenticates a user via public key authentication between server and client. Stronger encryption than OTP. * Public key authentication prevents phishing and man-in-the-middle attacks. * There is no keyboard input, so it is not susceptible to keyboard loggers. * A U2F device **_can_** generate a new key pair for each (web) application. Automatic generation of application-specific keys prevents websites from tracking you by the same public key. ## Desktop (U2F over USB) * Already implemented on chrome and opera. * Available as an addon in firefox. U2F will probably be natively supported in firefox soon. * According to https://developer.microsoft.com/en-us/microsoft-edge/platform/status/fido20webapis/, Microsoft hasn't started working on U2F, yet. ## Mobile U2F over NFC is currently supported via google authenticator on android. However, U2F over USB is still possible if you connect a U2F key device to a smartphone via a USB cable. ## Supported Web Services * Google * Facebook * Github * GitLab * Etc * http://www.dongleauth.info/ * https://twofactorauth.org/
GiteaMirror added the type/feature label 2025-11-02 03:21:14 -06:00
GiteaMirror commented 2025-11-02 03:21:15 -06:00
Author
Owner
Copy Link

@genofire commented on GitHub (Feb 28, 2018):

Works on Firefox native (without addon) since Quantum (v57)
(should be default enabled in next release v60 - before over about:config)

Would be nice ;)

@genofire commented on GitHub (Feb 28, 2018): Works on Firefox native (without addon) since Quantum (v57) (should be default enabled in next release v60 - before [over about:config](https://www.yubico.com/2017/11/how-to-navigate-fido-u2f-in-firefox-quantum/)) Would be nice ;)
GiteaMirror commented 2025-11-02 03:21:15 -06:00
Author
Owner
Copy Link

@jonasfranz commented on GitHub (May 17, 2018):

@ all people interested in FIDO U2F

I've created a PR (#3971) to implement this feature.
I need more feedback regarding support under different operating systems and U2F devices. So if you own a FIDO U2F certified security key, please test if our implementation work for your setup.

Test instance: https://try.h.jonasfranz.software/

Please leave a comment under the PR (#3971) containing the name of your U2F device, OS and Browser (incl. version).

@jonasfranz commented on GitHub (May 17, 2018): @ all people interested in FIDO U2F I've created a PR (#3971) to implement this feature. I need more feedback regarding support under different operating systems and U2F devices. So if you own a FIDO U2F certified security key, please test if our implementation work for your setup. Test instance: https://try.h.jonasfranz.software/ Please leave a comment under the PR (#3971) containing the name of your U2F device, OS and Browser (incl. version).
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
$20
$250
$50
$500
backport/done
💎 Bounty
docs-update-needed
good first issue
hacktoberfest
issue/bounty
issue/confirmed
issue/critical
issue/duplicate
issue/needs-feedback
issue/not-a-bug
issue/regression
issue/stale
issue/workaround
lgtm/need 2
modifies/api
modifies/translation
outdated/backport/v1.18
outdated/theme/markdown
outdated/theme/timetracker
performance/bigrepo
performance/cpu
performance/memory
performance/speed
pr/breaking
proposal/accepted
proposal/rejected
pr/wip
pull-request
Mirrored from GitHub Pull Request
 reviewed/wontfix
💰 Rewarded
skip-changelog
status/blocked
topic/accessibility
topic/api
topic/authentication
topic/build
topic/code-linting
topic/commit-signing
topic/content-rendering
topic/deployment
topic/distribution
topic/federation
topic/gitea-actions
topic/issues
topic/lfs
topic/mobile
topic/moderation
topic/packages
topic/pr
topic/projects
topic/repo
topic/repo-migration
topic/security
topic/theme
topic/ui
topic/ui-interaction
topic/ux
topic/webhooks
topic/wiki
type/bug
type/deprecation
type/docs
type/enhancement
type/feature
type/miscellaneous
type/proposal
type/question
type/refactoring
type/summary
type/testing
type/upstream
No Label type/feature
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/gitea#389
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?