FIDO2 / WebAuthn Passwordless
FIDO2 / WebAuthn is implemented in LemonLDAP::NG for 2FA. Another use case is to use the FIDO2 / WebAuthn as main authentication factor, to replace the login/password form. This is called "Passwordless".
To have this feature, we need to decide how the registration of 2FA will be done (do we need to keep login/password for registration or is there another way for a user to enroll its device?) and how the association between the 2FA device and the user account will be done.