@coder.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Tyler Finethy

coder.bsky.social

did:plc:eshr3ptc4jzf4ql3mcyzuucr

Passkeys improve the login experience, but many implementations don’t invalidate them after a password change, leaving a backdoor. This happened to me. Whenever one authentication method is updated, all existing sessions and alternative methods should be invalidated. https://news.ycombinator.com/item?id=42413539

2024-12-20T15:39:20.919Z