It would be really nice to be able to use hardware security keys (like Yubico 5, which support Webauthn) also for Jitbit Helpdesk.

I understand that by adding another security mechanism, the attack surface widens and thus security is weakened, but in this case the gross result should be that security is increased. In sites where i use it already (Gitea platform for example), it is used as a second factor, so if one looses the hardware key, the TOTP can still be used to get in and remove the key.

Thank you for considering :)

Petr