We live in a world where everybody uses passwords every day to sign in to all kind of websites and services.
So it is clear that passwords are a critical point in cyber security. Unfortunately, they are also the biggest weakness in IT systems as they're responsible for 80% of all security breaches.
However, better solutions exist. For example, the FIDO2 project with the standard WebAuthn allows users to connect to websites without a password.
This presentation introduces the standard, how it works and its implementation in a Symfony project. It also covers the JavaScript API implementations and some Symfony bundles. I will detail how to implement bundles and to which points it’s important to pay attention.