[DigitalPoint] Security & Passkeys 1.1.8

No permission to download

Author digitalpoint
Creation date May 12, 2022

Overview Updates (15) Reviews (6) History Discussion

Adopt Passkey nomenclature

Sep 13, 2022

This is purely a semantic update that renames security key to Passkey for user-facing verbiage.

Passkey is the new term that's going to be used by Apple, Google and Microsoft going forward for what used to be known as security keys or WebAuthn/FIDO2.

The term is also being adopted by Yubikey for their hardware keys.

Yubikey said:

But passkeys aren’t a new thing. It’s just a new name starting to be used for WebAuthn/FIDO2 credentials that enable fully passwordless experiences. These types of credentials are also called discoverable credentials, or sometimes resident credentials.

We like the new term and will use it, because it helps people understand they’re a password replacement with a simple term. “Passkey” is much more understandable by most people than “discoverable WebAuthn/FIDO credential.”

...

Passkey is a term that the industry is rallying around for FIDO credentials that can fully replace, rather than only augment, passwords. These are called resident or discoverable credentials in the specs. We think “passkey” is a better term than “discoverable webauthn/fido credential,” because it evokes its ability to replace passwords in an accessible way.

Passkeys in YubiKeys have been supported since discoverable credentials were added in the WebAuthn/FIDO standards around 2018. However, it’s important to note that passkeys in YubiKeys are not copyable, meaning the passkey is bound to the YubiKey.

Click to expand...

See: https://www.yubico.com/blog/a-yubico-faq-about-passkeys/

Reactions: eva2000 and S4m'

Make XenForo's two-step verification block easier to read

Jun 1, 2022

This is purely a cosmetic change that reworks how XenForo presents two-step verification options to users.

It changes this:

...to this:

Reactions: btmgreg, Joe Link and eva2000

Removal of Duotone icons

May 25, 2022

No functional changes, just the removal of Font Awesome Duotone icon usage

Reactions: thumped

Phrase update when using custom days to trust TFA

May 19, 2022

There are no functional changes, just phrasing. If you override the default 30 days to trust a TFA device, the phrase presented to the user when they are choosing to trust their device is fixed to show the right number of days.

Fix for PHP 8.1

May 12, 2022

Update for PHP 8.1

Enforce requirement that server has OpenSSL PHP extension installed

We value your privacy

We use essential cookies to make this site work, and optional cookies to enhance your experience.

See further information and configure your preferences

Accept all cookies Reject optional cookies
Essential cookies

These cookies are required to enable core functionality such as security, network management, and accessibility. You may not reject these.

Optional cookies

We deliver enhanced functionality for your browsing experience by setting these cookies. If you reject them, enhanced functionality will be unavailable.

Third-party cookies

Cookies set by third parties may be required to power functionality in conjunction with various service providers for security, analytics, performance or advertising purposes.

Detailed cookie usage

Privacy policy

[DigitalPoint] Security & Passkeys 1.1.8

Adopt Passkey nomenclature

Make XenForo's two-step verification block easier to read

Removal of Duotone icons

Phrase update when using custom days to trust TFA

Fix for PHP 8.1

We value your privacy