ASP.NET Core 8.0 - Users With Device 2FA Project


Get KH Authenticator Now!

KH Authenticator App Icon
.NET MAUI App for Windows and Android
Online Registration and Authentication
No Password Or Email Address Required!

The Users With Device 2FA Project (UWD2FAP) is the source code for UsersWithPasswords. Com. The UWD2FAP is developed with Visual Studio 2022 and the MS Long Term Support (LTS) version .NET 8.0 framework. All Errors, Warnings, and Messages from Code Analysis have been mitigated. The UWD2FAP is a combination of the Users Without Identity Project and the Users Without Passwords Project. The project implements WebAuthn, also known as FIDO2, instead of authenticator apps for two-factor authentication (2FA). After a user registers, they can enable 2FA with Windows Hello, Apple Face ID and Touch ID, Android Lock Screen, or a FIDO2 security key.

I developed KH Authenticator, an application which registers and authenticates a user without a password or email address. The authentication process qualifies as multifactor. The application is installed on something you have. To access the online account, you must provide a PIN (something you know) or a recognized fingerprint scan (something you are). The KH Authenticator application is developed with Visual Studio 2022 and .NET MAUI and is available for Windows and Android. See KH Authenticator Server. Version 2.x and above of the UWD2FAP implements the KH Authenticator API.

The UWD2FA was initially developed back in 2021 with framework .NET 6.0. I enabled the nullable context and mitigated all warnings and issues. See Nullable reference types. Version 2.x of the project integrates the ASP.NET Core 6.0 - Homegrown Analytics Project and implements multiple email addresses per user. The latest version of the UWD2FAP is published at UsersWithPasswords. Com. I encourage you to download the KH Authenticator App. Use the app to register a user without a password or email address. Then authenticate a login with the app. The project supports multiple KH Authenticator apps and multiple FIDO2 two factor authenticators. Users can self-manage authenticators in Manage Account. Admins can list users, authenticators, and histories.