https://d946ac66.passkeys-dev.pages.dev/docs/advanced/Recent content in Advanced on passkeys.devHugoen-ushttps://d946ac66.passkeys-dev.pages.dev/docs/advanced/client-hints/Wed, 24 Sep 2025 05:07:38 +0000https://d946ac66.passkeys-dev.pages.dev/docs/advanced/client-hints/<h2 id="overview" class="heading ">Overview<a href="#overview" aria-labelledby="overview"> <svg class="svg-inline--fa fas fa-link anchor" fill="currentColor" aria-hidden="true" role="img" viewBox="0 0 576 512" overflow="visible"><use href="#fas-link"></use></svg>&nbsp; </a> </h2> <p>When creating a passkey, WebAuthn Clients display a credential manager selection screen asking users to choose where to store their new passkey. The selector typically defaults to local credential managers because they offer immediate availability and support for synced passkeys, the default credential type in unmanaged, consumer contexts.</p> <p>During a sign in flow, the WebAuthn Client will do its best to help the user select a passkey which is immediately available, and fall back to an external authenticator selection screen. This typically shows an option for <a href="https://d946ac66.passkeys-dev.pages.dev/docs/reference/terms#cross-device-authentication-cda">FIDO Cross-Device Authentication</a> and security keys. In environments where only security keys are allowed, having additional options such as displaying a QR code for cross-device authentication flows can confuse users and lead to unnecessary support costs.</p>https://d946ac66.passkeys-dev.pages.dev/docs/advanced/related-origins/Thu, 22 Aug 2024 15:20:51 +0000https://d946ac66.passkeys-dev.pages.dev/docs/advanced/related-origins/<h2 id="use-cases" class="heading ">Use Cases<a href="#use-cases" aria-labelledby="use-cases"> <svg class="svg-inline--fa fas fa-link anchor" fill="currentColor" aria-hidden="true" role="img" viewBox="0 0 576 512" overflow="visible"><use href="#fas-link"></use></svg>&nbsp; </a> </h2> <p>Where suppoted, Related Origin Requests (ROR) can help Relying Parties offer users the ability to use a single origin-bound passkey across the following deployment patterns:</p> <ol> <li>Deployments that use different country code top-level domains (ccTLD) across the world</li> <li>Deployments where a single company&rsquo;s different services are served from different domains</li> </ol> <blockquote class="blockquote-alert blockquote-alert-warning"> <p class="blockquote-alert-heading"> <svg class="svg-inline--fa fas fa-triangle-exclamation fa-fw" fill="currentColor" aria-hidden="true" role="img" viewBox="0 0 512 512" overflow="visible"><use href="#fas-triangle-exclamation"></use></svg>&nbsp; Warning </p>