Implementing Passkeys in Oracle APEX: Building a Passwordless Future

Passkeys—built on the WebAuthn API—are rapidly becoming the standard for secure, password-free authentication. Rather than relying on memorized passwords, passkeys allow users to authenticate via device-native biometrics or hardware-backed credentials—offering high assurance and a frictionless experience.

In this session, you’ll learn how to integrate passkeys into your Oracle APEX applications: from credential enrollment, to secure storage, through to authentication flows. We’ll walk through the end-to-end architecture, demonstrate how to store and verify credentials in the database, and show you how to build scalable, passwordless workflows. For developers who prefer a streamlined approach, we’ll also introduce a custom APEX plugin that simplifies this implementation—but the core focus remains on how to build the system yourself so you understand every component.

You’ll discover how to:

• Use passkeys to eliminate passwords and reduce the risk of phishing or stolen credentials.
• Configure Oracle APEX for passkey workflows, including enrollment, authentication, and device-status checks.
• Implement secure credential storage and verification using publicly-available tools and best practices.

With broader platform support in 2025 and a shift toward passkeys as the preferred authentication method, this session is ideal whether you’re a developer ready to build passwordless logins or a technology leader exploring modern authentication for your enterprise.