invent.kde.org is now at GitLab. However, in contrary to GitLab, the KDE identity does not support 2 factor authentication via hardware. I can login to GitLab using e.g. the open-source Solo key. Since most of the major developer platforms are offering webauthn like FIDO2, kde.org should to. At the moment KDE is not even listed here: https://www.dongleauth.info/#developer
A replacement for kde identity is planned. See https://phabricator.kde.org/T8449 one of the requirement of the new system will be the support for 2fa. If you like to help with this task, feel free to reach to me in https://phabricator.kde.org/T8449 or per email carl at carlschwan [do] eu.
(In reply to Uwe Stöhr from comment #0) I think the title is a little deceptive: Invent.KDE.org, being a GitLab instance, supports FIDO2 (the U2F/FIDO1 replacement). This issue appears to instead be about KDE Identity, which does indeed lack FIDO support. I've tentatively modified the title to reflect this.
Identity is largely ready to retire now, once Phabricator is migrated away from then we'll be able to proceed with that shutdown. In practice Invent does fully support Webauthn based two factor - and I use it myself - although completely native Passkey only login is something Gitlab upstream have yet to adopt (they have issues for this if memory serves).
(In reply to Ben Cooksley from comment #3) > In practice Invent does fully support Webauthn based two factor - and I use > it myself - although completely native Passkey only login is something Gitlab > upstream have yet to adopt (they have issues for this if memory serves). Yes: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/169365.