207

Apple opened an API to allow 3rd party browsers to use passkeys stored in icloud keychain, https://developer.apple.com/documentation/authenticationservices/passkey-use-in-web-browsers
https://developer.apple.com/documentation/authenticationservices/authenticating-people-by-using-passkeys-in-browser-apps

Chrome is already using this, could it be implemented in orion too?

When logging into a website that they already have a passkey for, stored in icloud keychain, they would be able to use it

    Merged 2 posts from Support getting saved passkeys from iCloud Keychain.
      7 days later
      11 days later

      When I try to log in to my Cloudflare account, for example, where I use a 1Password key, I am unable to log in because when there is a 1Password pop-up to confirm the use of the key in the Orion browser, it's missing, as if the bottom is cut off and the confirmation button is missing. Unlike when I tried Firefox, where it worked fine.

      orion:

      As seen on the image there is my CF cloudlare account and clickable button to use the 1password key to login on firefox:

      Version 0.99.128.2.1-beta (WebKit 619.1.11.111.2)

      Sierra (10.12)

        Merged 1 post from Unable to login via 1password key using orion.
          4 days later

          I use a KeePass-compatible password manager, Strongbox, for my passwords. Recently its extension seems to work in Orion (horray!), but one notable downside is that while passwords fill, PassKeys do not.

          In Safari, when I visit a website that uses Webauthn or Passkeys (related technologies), I see this:

          However when I sign in with Orion, I just see this on Amazon:

          On some other websites, Orion does indeed seem to support hardware tokens like a Yubikey (I think?), but it never supports software ones in Strongbox the way Safari does.

          Support for that would be nice.

          I imagine the feature would be useful for any third party password managers that integrate with macOS's autofill API. It helps people who use third party browsers (like Orion) also use their favorite third party password managers (like Strongbox).

            Merged 1 post from Third party passkey support.

              When I installed Bitwarden I managed to login with a passkey from it once, somehow. I was never able to reproduce this again

                20 days later

                Passkeys, (at least on protonmail and GitHub) seem to be entirely broken when using the KeePassXC browser extension.

                I have attached a screenshot of the relevant Passkey settings on KeePassXC.

                Passkeys should "just work" with KeePassXC.

                Version 0.99.128.2.1-beta (WebKit 619.1.11.111.2)

                Sequoia (15)

                  Merged 2 posts from KeePassXC Passkeys not working.
                    a month later

                    Please add support for passkeys stored in iCloud keychain. It is the only missing feature preventing me to ditch Safari.

                    Attempting to use a passkey on any site brings up a 'Use security key' dialog for a split second before it disappears and the site throws an error.
                    e.g.

                    The passkey menu shows up and you use your physical key or touchID to validate it to the website.

                    0.99.128.2.1-beta (WebKit 619.1.11.111.2)

                    Sequoia (15)

                      Merged 1 post from Passkeys bring up a 'Use security key' dialog for a split second.

                        Actually github for me works pretty well with onepassword and passkey so this version I am using (Version 0.99.129-beta) is much better. In my case it works well for sites like cloudflare or github. However when I try to access the AWS console there I still have problem and the use passkey popup doesn't show up.

                          While ideally getting access to iCloud Keychain's passkeys would be best, what about implementing passkey support within Orion's password manager? That way we could store an additional passkey there.

                            Is there an update on expected release? In my case, what entirely blocks me from using Orion at work is the lack of support for cross-device (hybrid transport) passkeys with QR codes. Some browsers like Safari or Firefox seem to use the native macOS solution, others like Chrome look like they roll their own (but it still works).

                            Let me know if there should be a separate request for this or if it's already planned.

                              When trying to sign into linkedin.com orion browser gets stuck in a loop asking for a security key. If you hit cancel the security key dialog immediatly reoccurs. I do not have a security key (I assume it's refering to something like a yubikey) and want to log in with a username and password.

                              No security key prompt, just let me log in via username and password.

                              Version 0.99.128.2.1-beta (WebKit 619.1.11.111.2) Build date Aug 3 2024 Mac Studio (macOS Sonoma 14.4.1 build 23E224)

                              Sonoma (14)

                              • laiz replied to this.

                                macdude22
                                I tried reproducing this on a fresh profile on Orion Version 0.99.128.2.1-beta (WebKit 619.1.11.111.2) on Sonoma but I did not encounter any Security Key prompts.

                                Could you test if you are able to reproduce this on a fresh profile (File -> Profiles -> New Profile) without any extensions installed?