Request: Allow log in from browser without forcing authorization from an already authorized device

Hello rednaxela123! 👋

Thank you for helping us test passkey unlock in our public beta! The requirement to use an existing trusted device to add your 1Password account to a new device or browser is part of the architecture of passkey unlock and isn't merely an additional verification step that can be turned off.

As MaKolarik mentioned, your passkey authenticates you to the 1Password server which then sends a notification to all of your existing trusted devices. Your trusted devices will then ask you if you'd like to setup a new device, if you provide confirmation then the keys to unlock your account are sent to your new device via an end-to-end encrypted tunnel from that existing trusted device. While the passkey authenticates you to our server, it is the keys from your trusted device that allow you to decrypt your account data on the new device.

Without the keys from an existing trusted device you wouldn't be able to decrypt your items. You can read more about the security of passkey unlock here: About the security of unlocking 1Password with a passkey

... So simply by getting my phone stolen I am locked out of my digital identity because of that authorization : no emails, no social media account access, no banking app access ! Just a few examples of how annoying this can be.

I'm happy to pass along your feedback to the team but I was curious about this portion from your post. Isn't this the same situation as what you'd already be facing if your phone was stolen when using a traditional 1Password account secured by your account password and Secret Key? Or do you currently carry a printed copy of your Secret Key or Emergency Kit with you when on vacation?

I look forward to hearing from you.

-Dave