Request: Allow log in from browser without forcing authorization from an already authorized device

I would very much like to see this option as well, but I'm afraid it isn't actually possible using the current encryption model. Using passkeys on their own for encryption is quite problematic, and I was looking forward to seeing how 1Password solved that problem. After reading through the details here and the white paper, I have to say the answer is: they didn't.

Even though the feature is marketed as "unlock with passkeys" the encryption is not based on passkeys at all. Instead, each device has its own local keys, and setting up a new device involves a device-to-device data transfer, which is why I think the confirmation on an existing device is unavoidable. The passkeys are merely used to make sure it's you adding the device before a notification to the existing device is sent, so that you can't spam the approval requests for random accounts.

This design is overall a little disappointing because based on all the marketing talk during the year, it did seem passkeys would be playing a more important role here - but it's also understandable given the limitations of using passkeys directly for encryption.

I think at least the recovery process could be simplified a little but it would still require you to know the recovery code: https://1password.community/discussion/143668/feedback-regarding-the-passkey-recovery-flow - and nobody from 1Password responded on that thread so far :(