Web Tunnels

Passwordless authentication for the web


What are Webtunnels?

By leveraging SSH tunnels, we can use pubkey cryptography to authenticate users on the web. No passwords, no JWTs, no bearer tokens, no complicated webauthn, and no passkeys. All we need is an SSH keypair.

SSH port forwarding, also known as SSH tunneling, is the process of transmitting data over an encrypted secure shell connection between a local and distant server. It allows users to access services that firewalls would otherwise restrict or prevent. In our case, it allows us to authenticate and authorize users using only their SSH keypair.

Here is the source code for the tunkit library.

<< PREV
IRC
NEXT >>
Lab
Built by pico.sh LLC
206 E Huron St, Ann Arbor MI 48104