> we built the early authentication system entirely around [Passkeys]. It was not a simple setup!
it is though
> Handling passkeys properly is surprisingly complicated on the backend,
it's not though
> but we got it done. Unfortunately, the user experience kinda sucked,
true
> so we ended up ripping it all out again.
fair enough, but don't couch that in misdirection about the spec and work involved.
The relying party not being able to assume the user can take one secret with them is a feature that comes with a cost.. The lack of a reference correct relying party library in each language is a reason that cost is too high.
This rant is utterly factless and at an absolute novice level. It is correct that building a passkey-first system (without fallbacks) is not possible today, but that's like going all in on Google Social login and then ranting about why not all users can access the system.