-
-
Notifications
You must be signed in to change notification settings - Fork 570
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Login via QR Code #9642
Comments
Hi, yes this should be possible with the passwordless option but unfortunately it is not working for me right now. You can check the bug I opened and got no answer until now #9513 There is also a video tutorial that explains how to do: https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://www.youtube.com/watch%3Fv%3DaEpT2fYGwLw&ved=2ahUKEwjWwu3lj4GGAxUTk1YBHaH0BE8QwqsBegQIDxAG&usg=AOvVaw1z7CtFPqozw-sBGqMfLxvl Please let me know if you can find out how to make it work as I really would like to have it as well. Thanks |
The Tutorial is not what I try to achieve. |
I can't imagine it working in the way you described but you have other options that may perform something similar to what you need. If you explain better why you want this flow maybe we can help you more. Is it to avoid the slow user/password entry in a small screen? The step above does not need it. Is the step above lacking of security? why not merging it with a mobile phone scan? |
Primary reason for not having a "normal" auth flow with the workers entering a email and a password is the small screen size of the Zebra WS50. The targeted Users are our Production workers. Currently we have implemented a basic authentification into each of our tools. I would be open to other approaches for authenticating on such a small device. In the workflow i imagined, every production worker would receive a SmartCard. Maybe i will have to implement this flow using authentik's REST API. |
I understood you points, and your desire to use the already scanner capable equipment to scan something (a login PC or something like this) to login, but as far as I know the standard is opposite. The already logged in device scan the other. Think that to make the user identification safe and simple as one click you need to give the employees something that will unique identify them like a USB key or a mobile phone. Besides this you will have to implement something less usual and take a risk. Remember that unusual things that are considered niche can take longer time to get devs attention when something break in a new version or in a technology change, unless you are paying a lot. |
We don't want the employees to use their private phones. I think I have enough ideas now to create a example Project to test different auth approaches. |
Describe your question/
We are currently evaluating authentik for handling the authentification for our different internal apps.
Our primary focus lies on developing apps to automate, track and aid with the different processes in our factory.
The workers log in at different stations specialized for a logistics, production or shipping tasks.
We are using Zebra WS50 as an all in one scanner & display solution.
As the WS50 only has a 2 inch display, showing a complete login form is not really great for auth.
Now the idea would be, that the worker could authenticate on a terminal with a larger display.
The terminal could then display a QR Code containing a short lived token.
The WS50 could scan the code and authenticate using the containing token.
This would kinda work like the QR Code Auth in WhatsApp Web, Steam or Discord but in reverse.
Would something like this be possible using authentik?
If so how would some configure such a flow?
The text was updated successfully, but these errors were encountered: