Passkeys (WebAuthn)
Passwordless authentication using hardware security keys, biometrics, or passkeys.
What is WebAuthn?
WebAuthn enables authentication using:
- Platform Authenticators: Face ID, Touch ID, Windows Hello
- Security Keys: YubiKey, Titan Security Key
- Passkeys: iCloud Keychain, Google Password Manager
Benefits
- Hardware-backed security
- Phishing-resistant
- No MFA required for WebAuthn login
- User-friendly
Warning: Password Login Still Available
WebAuthn does not disable password authentication. You should enable MFA for password login as an additional security layer.
Setting Up WebAuthn
- Login to portal.cloudpirates.io
- Navigate to security page
- Click "Register WebAuthn Device"
- Enter device label (e.g., "MacBook Touch ID")
- Follow browser prompts to complete registration
Using WebAuthn
- Go to portal.cloudpirates.io
- Click "Sign in with WebAuthn"
- Use biometrics or security key
Tip: No MFA Required
WebAuthn provides strong authentication by default. MFA is not needed for WebAuthn login.
Managing Devices
View Devices
Access the security page to see all registered devices.
Remove Device
- Navigate to security page
- Find device to remove
- Click "Delete"
- Confirm
Warning: Keep at Least One Authentication Method
You must keep at least one active authentication method to maintain access to your account.
Multiple Devices
Register multiple devices for flexibility:
- Primary device (laptop/phone)
- Backup security key
- Mobile device
- Desktop device
API Reference
Register Device
POST /v1/auth/webauthn/register
Authorization: Bearer <access-token>
Content-Type: application/json
{
"label": "My Device",
"credential": {...}
}Login with WebAuthn
POST /v1/auth/webauthn/login
Content-Type: application/json
{
"credential": {...}
}List Devices
GET /v1/auth/webauthn/devices
Authorization: Bearer <access-token>Delete Device
DELETE /v1/auth/webauthn/devices/{deviceId}
Authorization: Bearer <access-token>Info: Full API Documentation Available
These are example requests. For complete API documentation including all parameters, response schemas, and authentication details, visit api.cloudpirates.io/docs.