Planned Authentication Methods in WICKET

WICKET is currently under development, and our goal is to provide a flexible, secure, and fully self-hosted authentication system. Here are the authentication methods we plan to support:

Backend Frontend LinkedIn

1. Username & Password

The classic login method, where users enter a username or email and a password. WICKET will store passwords securely using encryption.

2. Email OTP & Text OTP

One-time codes sent via email or SMS for passwordless logins, quick access, or added security on new devices.

3. TOTP (Time-based One-Time Password)

Codes generated by apps like Google Authenticator or Authy, changing every 30 seconds. Adds extra security even if a password is compromised.

4. Passkeys

A modern, passwordless login method using cryptography. Secure, fast, and works across devices without typing a password.

5. Social Logins

Users will be able to log in using Google, GitHub, or Microsoft accounts, making login faster and easier.

6. Two-Factor Authentication (2FA)

WICKET will allow combining methods, like a password + TOTP or passkey, to add an extra layer of security.

7. Single Sign-On (SSO)

Users will be able to log in once and access multiple apps securely. WICKET plans to support advanced SSO.

8. Hardware Device Authentication & WebAuthn

Future support will include USB security keys and other hardware devices, along with WebAuthn for passwordless and highly secure logins.

Why This Matters

By planning support for multiple authentication methods, WICKET aims to give developers and users flexibility, security, and complete control, all in a self-hosted, open-source system.