For all the hype around passkeys, I can’t wrap my head around if or how they work in Vaultwarden. Maybe my understanding is way off.
Is the following possible? I’d like Vaultwarden to maintain a single passkey for each site across all my devices (Android, Windows, Linux) so that Bitwarden on each can log in. I don’t want Windows or Chrome or Firefox or Android to know my passkeys - just Vaultwarden.
Is this a reasonable expectation of Bit/Vaultwarden?
Yes, Vaultwarden will maintain a passkey for any site you request it to, and sync that across any and all of its clients (eg, phone, desktop, laptop).
It’s unfortunately possible that those client devices will sometimes get confused about where the passkey resides and attempt to sign a passkey challenge using their own built in passkey management software. This is a passkey industry wide issue. I don’t know the dynamics of the problem in detail though.