From a6bcbaf5e9e35fc5d41f2a3d15b2bf78da101c97 Mon Sep 17 00:00:00 2001
From: mStar <me@mstar.dev>
Date: Mon, 31 Mar 2025 23:23:35 +0200
Subject: [PATCH] Note about possible encryption of passkey secrets

---
 auth-new/passkey.go | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/auth-new/passkey.go b/auth-new/passkey.go
index 9d1ccc2..e4423a3 100644
--- a/auth-new/passkey.go
+++ b/auth-new/passkey.go
@@ -14,6 +14,14 @@ import (
 	"git.mstar.dev/mstar/linstrom/storage-new/models"
 )
 
+// TODO: Check if passkey encryption is viable
+// Check if encryption for passkey info data is viable to implement
+// and if we should do it.
+// Encrypting it would probably require making a custom wrapper struct,
+// if even possible. Reason being that login completion still requires to update
+// the data post-creation, including matching on unique and stable elements
+// of said data
+
 // Start the login process via passkey for a given username.
 // Returns the credential options the passkey needs to sign
 func (a *Authenticator) StartPasskeyLogin(