passless-rs 0.0.0

passless-rs-0.0.0 is not a library.

Build status passless license

Software FIDO2 authenticator that emulates a hardware security key. Built with rust-keylib and runs as a virtual UHID device on Linux.

Features
Configuration
Installation
- Cargo
- Arch Linux

Features

FIDO2/WebAuthn authentication without hardware tokens
Passkey support (resident credentials)
User verification via desktop notifications
Storage backends:
- Local filesystem (JSON)
- password-store (encrypted, git-synced)
Security hardening (memory locking, core dump prevention)
Credential management via CTAP commands

Configuration

Passless can be configured using a TOML configuration file. By default, the configuration file is located at ~/.config/passless/config.toml.

To generate a default configuration file:

mkdir -p ~/.config/passless
passless config print > ~/.config/passless/config.toml

You can then edit this file to customize the storage backend, security settings, and other options. Command-line arguments will override settings from the configuration file.

Installation

Cargo

Install from source with full system integration:

# Clone the repository
git clone https://github.com/pando85/passless.git
cd passless

# Install everything (binary, systemd service, udev rules, sysusers config)
make install

# Follow the post-install instructions to:
# 1. Add yourself to the fido group
# 2. Load the uhid kernel module
# 3. Log out and back in
# 4. Enable the systemd service

Arch Linux

yay -S passless

or the binary from AUR:

yay -S passless-bin