Discoverable credentials (also known as resident keys in the WebAuthn specification) are credentials stored directly on the authenticator and can be "discovered" by the Relying Party (server) without the user first providing a username or other identifier. This means the authenticator itself stores enough information, including a unique credential identifier, to identify the user and complete the authentication process. These credentials offer the highest level of convenience and phishing resistance, as the user doesn't need to provide a username or remember which authenticator is linked to a specific account.

This page demonstrates the use of discoverable credentials. You'll need to type a username and a display name during sign-up. For subsequent sign-ins, neither your username nor any other identifier will be required, as the authenticator will provide the necessary information.