yes.
On Android, the biometric API does not register users within your app. Fingerprint or face registration is handled by the operating system in the device settings.
Your application can only invoke authentication and receive a success or failure result.
Therefore, if you want to have registered users within your application, you must do so with your own internal account logic.
Biometrics only serves as an additional validation method.
Typical user registration flow in an app with biometrics:
1. Initial registration in the app:
The user creates an account with data such as email, username, and password.
You save this information in your database (local or remote).
2. Traditional login:
The user logs in with their email/password.
Once validated, you offer them the option to activate biometrics for future access.
3. Associate biometrics:
You use BiometricPrompt to authenticate the user with their fingerprint/face.
If authentication is successful, you store a secure token (e.g., in SharedPreferences encrypted with EncryptedSharedPreferences or in the Android Keystore).
This token indicates that the user can use biometric authentication instead of typing their password.
4. Future Access:
When the user opens the app, you invoke BiometricPrompt.
If biometric authentication is successful, you retrieve the token and automatically authenticate the user.
This class replaces FingerprintManager (https://www.b4x.com/android/forum/threads/fingerprint-authentication.72500/#content). It works with all the device supported biometric authentication features. Setup: 1. Open B4A Sdk Manager, search for biometric and install androidx.biometric:biometric...
www.b4x.com
