The Real Python Podcast

Moving Projects Away From Passwords With WebAuthn and Python

Listen Later

What if you didn’t have to worry about managing user passwords as a Python developer? That’s where the WebAuthn protocol and new hardware standards are heading. This week on the show, Dan Moore from FusionAuth returns to discuss a password-less future.

WebAuthn is a way to authenticate users using biometric, secure authentication methods. Dan dives into passkeys, ceremonies, authenticators, and hardware standards. We also cover several projects and libraries that can help you get started with WebAuthn in Python.

Course Spotlight: Refactoring: Prepare Your Code to Get Help

In this Code Conversation video course, you’ll explore the steps you can take to get help when you’re stuck while coding. You’ll investigate how to clean up your code to focus on the question you have. Along the way, you’ll learn how to handle errors and use custom exceptions.

Topics:

  • 00:00:00 – Introduction
  • 00:01:36 – Dan’s WebAuthn article
  • 00:03:26 – FIDO and WebAuthn
  • 00:05:53 – What’s a YubiKey?
  • 00:07:57 – Phones with biometric systems
  • 00:12:03 – Sponsor: CData Software
  • 00:12:45 – Similarities to HTTPS
  • 00:16:13 – A password-less future
  • 00:24:31 – Where’s it being used?
  • 00:30:53 – Video Course Spotlight
  • 00:32:26 – Python WebAuthn projects and packages
  • 00:34:52 – Does a developer need to set up additional auth methods?
  • 00:37:31 – How are the third-party auth services implementing this?
  • 00:39:50 – What are you excited about in the world of Python?
  • 00:41:24 – What do you want to learn next?
  • 00:43:20 – Thanks and goodbye

    • Show Links:

    • WebAuthn Explained - FusionAuth
    • Episode #99: OAuth 2 and Authentication Choices for Your Python Project – The Real Python Podcast
    • All about FIDO2, CTAP2 and WebAuthn - Microsoft Community Hub
    • YubiKey - Hardware Security Keys
    • Apple Adopts Passwordless Authentication Technology – Hideez
    • 1Password is launching passkey support in early 2023 - The Verge
    • duo-labs/py_webauthn: Pythonic WebAuthn
    • python-webauthn: Server side handlers for WebAuthN with support for Apple’s FaceID, and the FIDO metadata service
    • pywarp - PyPI
    • webauthn-rp documentation
    • Going Passwordless With py_webauthn - Duo Security
    • django-webauth: Two Factor Authentication in Django using Web Authentication API (WebAuthn)
    • django-webauthin - PyPI
    • python-fido2
    • Python 3.11.0 Release - Python.org
    • Real Food Fermentation by Alex Lewin - Amazon
    • Auth. Built for Devs, by Devs - FusionAuth

      • Level up your Python skills with our expert-led courses:

      • Exploring HTTPS and Cryptography in Python
      • Python Basics: Finding and Fixing Code Bugs
      • Refactoring: Prepare Your Code to Get Help

        • Support the podcast & join our community of Pythonistas

        ...more
        View all episodesView all episodes
        Download on the App Store
        The Real Python PodcastBy Real Python
        • 4.7
        • 4.7
        • 4.7
        • 4.7
        • 4.7

        4.7

        139 ratings

        More shows like The Real Python Podcast

        View all
        The Changelog: Software Development, Open Source by Changelog Media

        The Changelog: Software Development, Open Source

        288 Listeners

        Software Engineering Daily by Software Engineering Daily

        Software Engineering Daily

        625 Listeners

        Talk Python To Me by Michael Kennedy

        Talk Python To Me

        579 Listeners

        Soft Skills Engineering by Jamison Dance and Dave Smith

        Soft Skills Engineering

        289 Listeners

        Super Data Science: ML & AI Podcast with Jon Krohn by Jon Krohn

        Super Data Science: ML & AI Podcast with Jon Krohn

        302 Listeners

        Python Bytes by Michael Kennedy and Brian Okken

        Python Bytes

        213 Listeners

        Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

        Syntax - Tasty Web Development Treats

        988 Listeners

        Darknet Diaries by Jack Rhysider

        Darknet Diaries

        8,088 Listeners

        Tech Brew Ride Home by Morning Brew

        Tech Brew Ride Home

        969 Listeners

        Practical AI by Practical AI LLC

        Practical AI

        200 Listeners

        AWS Podcast by Amazon Web Services

        AWS Podcast

        207 Listeners

        Django Chat by William Vincent and Carlton Gibson

        Django Chat

        75 Listeners

        Last Week in AI by Skynet Today

        Last Week in AI

        310 Listeners

        Machine Learning Street Talk (MLST) by Machine Learning Street Talk (MLST)

        Machine Learning Street Talk (MLST)

        100 Listeners

        The Pragmatic Engineer by Gergely Orosz

        The Pragmatic Engineer

        70 Listeners