Cannot log in to xenforo.com using 3rd party passkey on Android 13

[Sim]

Affected version

2.3 b4

EDIT - after doing some research, I believe this is not a bug, but rather a software limitation

Turns out you cannot use 3rd party passkeys on Android 13 or below - you need Android 14 to use 1Password passkeys or YubiKey passkeys to log in to websites etc.

Reference: https://developers.google.com/identity/passkeys/supported-environments

For Android 13, the only option you have is to use Google Password Manager for managing passkeys on Android.

Also turns out that my Samsung Galaxy S20 is only running Android 13

 

[Mendalla]

Also turns out that my Samsung Galaxy S20 is only running Android 13

Samsung stopped updating the S20 after Android 13 and OneUI 5. I carry an S20 FE but should probably replace it soon. It's a work phone and I'm the head of IT so ... yeah.

 

[Kirby]

Turns out you cannot use 3rd party passkeys on Android 13 or below - you need Android 14 to use 1Password passkeys or YubiKey passkeys to log in to websites etc.

Passkeys based on FIDO2 security keys currently do not work on Android (14) in Chrome (or any other app that uses the FIDO implementation provided by Google Play Services) due to Play Services not (yet) supporting CTAP2 via NFC / USB.

Chromium

issues.chromium.org

There are rumors that this should be supported "soonish", but nobody knows for sure.

Chrome on Android support of security keys

groups.google.com

Currently my Yubikey 5 NFC does not work on my Galaxy S21 / Android 14 for Passkeys in Chrome.
(Works fine on an iPhone / iOS /Safari 17.4)

You can use a Yubikey 5 in "U2F-Mode" though, eg. without resident key and without PIN verification - this should also work on a Galaxy S20.
You can try that at https://webauthn.lubu.ch/_test/client.html