undefined | Better HN

0 pointsmbreese3y ago0 comments

Got it. So, it’s a legit SSO process. Being able to control IP addresses has its advantages!

0 comments

Yep! As the author alluded to elsewhere in the comments, if you want to make _really sure_ that the user is a person in a browser instead of a rogue malware process on their machine you can combine this with a yubikey tap or webauthn attestation step.

j / k navigate · click thread line to collapse

0 pointsmbreese3y ago0 comments

Got it. So, it’s a legit SSO process. Being able to control IP addresses has its advantages!

0 comments

zrail3y ago

Yep! As the author alluded to elsewhere in the comments, if you want to make _really sure_ that the user is a person in a browser instead of a rogue malware process on their machine you can combine this with a yubikey tap or webauthn attestation step.

j / k navigate · click thread line to collapse