-
Notifications
You must be signed in to change notification settings - Fork 8
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Authenticator should support Biometric authentication #190
Comments
Thank you for the feature request. Will leave this ticket open to allow others to provide +1 reactions or additional comments. |
Amplify is adding support for WebAuthn passkeys in this PR: aws-amplify/amplify-android#2952. We will be building on this to offer the option of biometric login in the near future. |
Good to hear, I think this is great news! |
Hey @pmellaaho. Existing users are able to register their device as a passkey once webauthn is enabled for the user pool. Whether Authenticator itself will prompt the user for this or defer to the application to call into Amplify is TBD. Sign-up with passkeys is not supported - users need to sign up either with a password or via an OTP sms or email code first, and then register the passkey after acccount creation. You can check out the Cognito documentation for a lot more information about how Passkeys work. |
Before opening, please confirm:
Which UI component is this feature-request for?
Authenticator
Please include any relevant guides or documentation you're referencing
No response
Please describe your feature-request in detail.
Currently the Authenticator supports the sign-in with username and password. There are many reasons why modern applications would like to move on to passwordless sign-in but one of main pain points is the usability and things like Password managers are too cumbersome for most users to use. The Authenticator could complement the sign-in experience by offering the possibility to activate and use biometrics (e.g. fingerprint) to access username and password safely (encrypted) stored in device with the help of Android KeyStore. So, the user would be given an option to type in username and password in every sign-in or activate biometric login to get easier sign-in experience. In the of biometric login prompt the fall back option to use app credentials would still be offered.
Initialization steps (if applicable)
No response
Code Snippet
// Put your code below this line.
amplifyconfiguration.json
No response
Additional information and screenshots
No response
The text was updated successfully, but these errors were encountered: