I'm currently working on a project, which has a Web API, which is to be consumed by a native application. For the sake of brevity, assume that the application cannot be re-written to be a Web Application.
Right now, user registration and authentication works via a simple API request, returning a JWT upon submitting the correct user credentials. Now the wish has been voiced to support FIDO2 for YubiKey-based authentication, either to replace passwords or as second factor. However, from the documents I have read so far, the talk is always about web applications, browsers and JavaScript frameworks.
This raises the question, is it possible to implement FIDO2 authentication in a native application? Or is it strictly for browsers?