414673 – support to login to invent.kde.org using U2F

Bug 414673 - support to login to invent.kde.org using U2F

Summary: support to login to invent.kde.org using U2F

Status:	REPORTED

Alias:	None

Product:	www.kde.org
Classification:	Websites
Component:	general (show other bugs)
Version:	unspecified
Platform:	Other Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	kde-www mailing-list

URL:
Keywords:

Depends on:
Blocks:

Reported:	2019-11-30 00:45 UTC by Uwe Stöhr
Modified:	2019-11-30 01:32 UTC (History)
CC List:	2 users (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Uwe Stöhr 2019-11-30 00:45:24 UTC

invent.kde.org is now at GitLab. However, in contrary to GitLab, the KDE identity does not support 2 factor authentication via hardware. I can login to GitLab using e.g. the open-source Solo key.

Since most of the major developer platforms are offering webauthn like FIDO2, kde.org should to. At the moment KDE is not even listed here:
https://www.dongleauth.info/#developer

Comment 1 carl 2019-11-30 01:32:26 UTC

A replacement for kde identity is planned. See https://phabricator.kde.org/T8449 one of the requirement of the new system will be the support for 2fa.

If you like to help with this task, feel free to reach to me in https://phabricator.kde.org/T8449  or per email carl at carlschwan [do] eu.