Passkeys and multiple accounts for a site is broken

Hey @billvortex, what website are you seeing this on?

@Backspaze if you select your account from this, you should be brought to this screen. From there, select Continue. 1Password should sign you in with the correct passkey for the account that has been selected.

It does work on my end when testing. Could you try that and let me know how it goes?

@Backspaze that's strange. It works for me no matter which account I choose, as long as there is a saved passkey. You had mentioned this earlier:

Once I click on one of the accounts, it asks me to confirm my identity with the key, and there's a button to proceed with this and a link for trying with another method as shown below. When choosing the option to try with another method, I get two options; use the key or use my password, of which the latter will then ask me for the TOTP code for regular 2FA.

Can you confirm if you are clicking "Try Another Way" or if you are clicking "Continue"? Are you saying that when you click "Continue", you are prompted to sign in with your password or 2fa?

Make sure you're trying this in your regular profile and not in a private session. The passkeys for Google seem to be linked to the browser that they're saved in, and it wouldn't be possible to save that in a private session.

Hey again @Backspaze!

Thanks for confirming that. It seems a bit odd to link the key to a browser as this makes it more difficult to use passkeys effectively. You'd have to register a passkey for every browser on every device you use, and can't use the passkey in an incognito session.

1Password doesn't tie passkeys to the browser, but it appears that Google is doing so. This is something that we're only seeing for passkeys created for Google accounts. Passkeys for other accounts and websites saved to 1Password do not run into this issue.

There's not much that we can do our end about this limitation, but we do hope that Google will be able to improve on their implementation of passkeys after some time. We also encourage you to leave feedback about this to Google. Here's a guide on how to do that: https://support.google.com/chrome/answer/95315

When I click on Continue, the authentication loop I'm talking about is that 1Password in the browser shows a notification in top right corner about trying to sign in with the passkey, but it's always trying to use the Google account listed at the top in 1Password.

I just tested again and as long as I select the account beforehand on the website via Google, I don't run into this issue. Are you able to record the behavior that you're seeing and share that with us?

Make sure to include the account selection in your recording so that we can review the entire process from your end and so that we can figure out where things are going wrong.

After you have the video, please attach it to an email message addressed to support+forum@1password.com. With your email please include:

• A link to this thread: https://1password.community/discussion/140854/passkeys-and-multiple-accounts-for-a-site-is-broken
• Your forum username: Backspaze

You should receive an automated reply from our BitBot assistant with a Support ID number. Please post that number here. Thanks!

@Backspaze

Yep, I'm aware that the issue with tying passkeys to the browser lies with Google, and my comment was in regards to that. But as you said (wrote?), we can only hope that Google does something about it in the future. For what it's worth, I've sent feedback to Google according to the instructions in the link you provided. Those instructions though, are for feedback regarding Chrome, and the passkey issue is system wide. But getting in touch with Google isn't the easiest, so I guess we'll have to make do with what we got and hopefully the feedback will find its way to the right department.

Gotcha! I misunderstood and had wanted to clarify. I do find that it is hard to get in touch with Google, but their developers do seem to be active on https://bugs.chromium.org. If you take a look, you'll find some reports of passkey-related bugs on there. So it does seem like they're working hard from their end too. It might be worth making a report to see if you get a response.

I've made a recording and sent to the email address according to your instructions. In the email I also included step by step information to clarify what's happening in the recording. The Support ID is: [#APA-73863-462]

Thanks for sending us the recording! I do see that one of our support specialists have responded. Let's continue the conversation from there.

ref: APA-73863-462

Thanks folks. The team is working with how to selecting a specific passkey out of multiple passkeys for any give site. I hope we'll be able to address this soon.

Cross posting this post from one of the developers.

https://1password.community/discussion/comment/691745/#Comment_691745