The Real Python Podcast

Moving Projects Away From Passwords With WebAuthn and Python

Listen Later

What if you didn’t have to worry about managing user passwords as a Python developer? That’s where the WebAuthn protocol and new hardware standards are heading. This week on the show, Dan Moore from FusionAuth returns to discuss a password-less future.

WebAuthn is a way to authenticate users using biometric, secure authentication methods. Dan dives into passkeys, ceremonies, authenticators, and hardware standards. We also cover several projects and libraries that can help you get started with WebAuthn in Python.

Course Spotlight: Refactoring: Prepare Your Code to Get Help

In this Code Conversation video course, you’ll explore the steps you can take to get help when you’re stuck while coding. You’ll investigate how to clean up your code to focus on the question you have. Along the way, you’ll learn how to handle errors and use custom exceptions.

Topics:

  • 00:00:00 – Introduction
  • 00:01:36 – Dan’s WebAuthn article
  • 00:03:26 – FIDO and WebAuthn
  • 00:05:53 – What’s a YubiKey?
  • 00:07:57 – Phones with biometric systems
  • 00:12:03 – Sponsor: CData Software
  • 00:12:45 – Similarities to HTTPS
  • 00:16:13 – A password-less future
  • 00:24:31 – Where’s it being used?
  • 00:30:53 – Video Course Spotlight
  • 00:32:26 – Python WebAuthn projects and packages
  • 00:34:52 – Does a developer need to set up additional auth methods?
  • 00:37:31 – How are the third-party auth services implementing this?
  • 00:39:50 – What are you excited about in the world of Python?
  • 00:41:24 – What do you want to learn next?
  • 00:43:20 – Thanks and goodbye

    • Show Links:

    • WebAuthn Explained - FusionAuth
    • Episode #99: OAuth 2 and Authentication Choices for Your Python Project – The Real Python Podcast
    • All about FIDO2, CTAP2 and WebAuthn - Microsoft Community Hub
    • YubiKey - Hardware Security Keys
    • Apple Adopts Passwordless Authentication Technology – Hideez
    • 1Password is launching passkey support in early 2023 - The Verge
    • duo-labs/py_webauthn: Pythonic WebAuthn
    • python-webauthn: Server side handlers for WebAuthN with support for Apple’s FaceID, and the FIDO metadata service
    • pywarp - PyPI
    • webauthn-rp documentation
    • Going Passwordless With py_webauthn - Duo Security
    • django-webauth: Two Factor Authentication in Django using Web Authentication API (WebAuthn)
    • django-webauthin - PyPI
    • python-fido2
    • Python 3.11.0 Release - Python.org
    • Real Food Fermentation by Alex Lewin - Amazon
    • Auth. Built for Devs, by Devs - FusionAuth

      • Level up your Python skills with our expert-led courses:

      • Exploring HTTPS and Cryptography in Python
      • Python Basics: Finding and Fixing Code Bugs
      • Refactoring: Prepare Your Code to Get Help

        • Support the podcast & join our community of Pythonistas

        ...more
        View all episodesView all episodes
        Download on the App Store
        The Real Python PodcastBy Real Python
        • 4.7
        • 4.7
        • 4.7
        • 4.7
        • 4.7

        4.7

        139 ratings

        More shows like The Real Python Podcast

        View all
        Software Engineering Radio by se-radio@computer.org

        Software Engineering Radio

        271 Listeners

        The Changelog: Software Development, Open Source by Changelog Media

        The Changelog: Software Development, Open Source

        289 Listeners

        Software Engineering Daily by Software Engineering Daily

        Software Engineering Daily

        624 Listeners

        Talk Python To Me by Michael Kennedy

        Talk Python To Me

        585 Listeners

        Soft Skills Engineering by Jamison Dance and Dave Smith

        Soft Skills Engineering

        288 Listeners

        Super Data Science: ML & AI Podcast with Jon Krohn by Jon Krohn

        Super Data Science: ML & AI Podcast with Jon Krohn

        302 Listeners

        Python Bytes by Michael Kennedy and Brian Okken

        Python Bytes

        215 Listeners

        Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

        Syntax - Tasty Web Development Treats

        987 Listeners

        REWORK by 37signals

        REWORK

        210 Listeners

        CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

        CoRecursive: Coding Stories

        190 Listeners

        DataFramed by DataCamp

        DataFramed

        269 Listeners

        Practical AI by Practical AI LLC

        Practical AI

        210 Listeners

        AWS Podcast by Amazon Web Services

        AWS Podcast

        203 Listeners

        The Stack Overflow Podcast by The Stack Overflow Podcast

        The Stack Overflow Podcast

        64 Listeners

        The Pragmatic Engineer by Gergely Orosz

        The Pragmatic Engineer

        64 Listeners