Is there an existing issue for this?
Describe the bug
When I authenticate using passkeys, the amr claim is returned with a value of pwd. This is incorrect.
Expected Behavior
Using the OpenID spec, the value should be set to: pop
https://openid.net/specs/openid-connect-eap-acr-values-1_0-final.html
Older specs:
The value should be "hwk", or "swk" using this:
Spec: https://datatracker.ietf.org/doc/html/rfc8176
Steps To Reproduce
Create a new ASP.NET Core Blazor app using Identity and authenticate using passkeys
Exceptions (if any)
No response
.NET Version
.NET 10
Anything else?
This is important because secure applications must identify the level of authentication.
Is there an existing issue for this?
Describe the bug
When I authenticate using passkeys, the amr claim is returned with a value of pwd. This is incorrect.
Expected Behavior
Using the OpenID spec, the value should be set to: pop
https://openid.net/specs/openid-connect-eap-acr-values-1_0-final.html
Older specs:
The value should be "hwk", or "swk" using this:
Spec: https://datatracker.ietf.org/doc/html/rfc8176
Steps To Reproduce
Create a new ASP.NET Core Blazor app using Identity and authenticate using passkeys
Exceptions (if any)
No response
.NET Version
.NET 10
Anything else?
This is important because secure applications must identify the level of authentication.