greenpau/caddy-security

Apple Passkeys

SgtErnestBilko opened this issue · 2 comments

I hope this is not a stupid question. I have tried to find the answer in "issues" but can't see one.

I run the following in docker containers on a linux server (Debian 11): Node-Red, UniFi, Influx, my own website (served reverse proxy by Caddy also in a docker).

At present I only access locally so security is by user/password.

I want to expose the website to the internet so I can access when I'm not home.

I want to do this with apple passkeys. Is this possible with this plugin ? I really like the idea of securing all of my servies behind Caddy running your security plugin.

If it is possible can your 'point me in the right direction'. I have watched your videos but they don't seem to fit.

If it isn't possible. Is this something you are planning ?

Thank you
Ian

@SgtErnestBilko , i did not yet use Apple passkeys. Did you try configuring MFA?

Thank you Paul.

Forgive my newbie questions. I have written my own website in HTML and JavaScript (so I'm not the complete idiot I may seem), but I've always hosted it behind a firewall so security was never an issue. So I'm never really bothered to leran that much about it.

Given I don't have many users (me certainly, my family maybe) and no need to log new users in then do you think Apple passkeys may be unecessaily complicated? Could I use MFA using self signed certificates? Would these function in the same way as ssh public and private keys i.e. disable passwords, providing the right keys are registered on devices, type in the address in a browser and be taken straight to the web page. All the security being taken care of invisibly ?

If that's the case I would like to test your plugin on Glitch (I'm new to that as well), forgive me for being so dumb ...... I presume I can use the Caddy 2 glitch remix. How / where do I add your github project to a working Caddy setup?

Thank you
Ian