Existing features as of alpha 0.0.2:
Authentication
Passwordless: Requires user verification but keys can be stored on the server
Usernameless (passkey): Requires discoverable credentials and user verification.
Second Factor : After an appropriate first factor, only requires a FIDO compliant authenticator and user presence checking
Registration
Admin UI flow for a user to register and remove WebAuthn credentials using the Storage Service API
FIDO Metadata
Download and load the FIDO authenticator metadata
Only allow trusted authenticators
Enhance the registration UI
Features not yet implemented for V1.0.0:
CSP protection : - JWEBAUTHN-4Getting issue details... STATUS
Admin UI for managing user credentials across the organisation : - JWEBAUTHN-8Getting issue details... STATUS
Enhance WebAuthn error messaging : - JWEBAUTHN-10Getting issue details... STATUS
Future features: