Registration username input required even after authentication
Basics
Logistics
Basics
Logistics
Description
If youāve already authenticated to the IdP and want to register a new credential, the registration flow still asks you to enter your username (if that is not disabled) before reusing the authentication result to SSO you into the registration page.
That input happens in the registration flow before authentication. Maybe this can be improved in some way.
Environment
None
Activity
Philip SmartFebruary 17, 2025 at 9:27 AM
Note, that the forceAuthn setting has now been exposed on both the admins flows (idp.authn.webauthn.admin.registration.forceAuthn and idp.authn.webauthn.admin.management.forceAuthn) , see.
Timo TunturiJanuary 10, 2025 at 11:30 AM
I prefer to do forced re-authentication when registering credentials. So the current behaviour where username collection takes place regardless of prior authentication works for me.
So if there is gonna be some restructuring of how this works Iād like to be able to still have the current behaviour in the future.
If youāve already authenticated to the IdP and want to register a new credential, the registration flow still asks you to enter your username (if that is not disabled) before reusing the authentication result to SSO you into the registration page.
That input happens in the registration flow before authentication. Maybe this can be improved in some way.