Discoverable credentials (also known as resident keys in WebAuthn specification) are credentials that are stored directly on the authenticator and can be "discovered" by the Relying Party (server) without the user first providing a username or other identifier. This means the authenticator itself stores enough information, including a unique credential identifier, to identify the user and complete the authentication process. These credentials offer the highest level of convenience and phishing resistance, as the user doesn't need to type a username or remember which authenticator is associated with a specific account. They are particularly useful for passwordless login experiences.

This page illustrates the use of discoverable credentials. You'll only need to provide a display name during registration. For subsequent logins, neither your username nor any other identifier will be needed to identify you, as the authenticator will provide the necessary information directly.