@capawesome-team/capacitor-biometrics

Capacitor plugin to request biometric authentication, such as using face recognition or fingerprint recognition.

Features

• 🖥️ Cross-platform: Supports Android, iOS and Web.
• 👁️ Fingerprint, Face and Iris: Supports fingerprint, face and iris recognition.
• 🔑 Device Credential: Optionally allow the user to authenticate using their device's credential (e.g., PIN, password) if biometric authentication is not available or fails.
• 🚨 Error Codes: Provides detailed error codes for better error handling.
• ✨ Customizable: Customize the authentication prompt with a title, subtitle, and button text.
• 🤝 Compatibility: Compatible with the Secure Preferences plugin.
• 📦 SPM: Supports Swift Package Manager for iOS.
• 🔁 Up-to-date: Always supports the latest Capacitor version.
• ⭐️ Support: First-class support from the Capawesome Team.

Compatibility

Plugin Version	Capacitor Version	Status
7.x.x	>=7.x.x	Active support

Installation

This plugin is only available to Capawesome Insiders. First, make sure you have the Capawesome npm registry set up. You can do this by running the following commands:

npm config set @capawesome-team:registry https://npm.registry.capawesome.io
npm config set //npm.registry.capawesome.io/:_authToken <YOUR_LICENSE_KEY>

Attention: Replace <YOUR_LICENSE_KEY> with the license key you received from Polar. If you don't have a license key yet, you can get one by becoming a Capawesome Insider.

Next, install the package:

npm install @capawesome-team/capacitor-secure-preferences
npx cap sync

Android

Variables

This plugin will use the following project variables (defined in your app’s variables.gradle file):

• $androidxBiometricVersion version of androidx.biometric:biometric (default: 1.1.0)

iOS

Privacy Descriptions

Add the NSFaceIDUsageDescription key to the ios/App/App/Info.plist file, which tells the user why your app needs access to the biometric authentication:

<key>NSFaceIDUsageDescription</key>
<string>This app uses Face ID for authentication.</string>

Usage

import { Biometrics, ErrorCode } from '@capawesome-team/capacitor-biometrics';

const authenticate = async () => {
  // If the user successfully authenticates, the promise resolves.
  // If the user cancels the authentication or if an error occurs, the promise rejects.
  try {
    await Biometrics.authenticate({
      title: 'Authentication Required',
      subtitle: 'Please authenticate to continue',
      cancelButtonText: 'Cancel',
      iosFallbackButtonText: 'Use Passcode',
      allowDeviceCredential: true,
    });
  } catch (error) {
    if (error.code === ErrorCode.USER_CANCELED) {
      console.log('User canceled the authentication.');
    } else if (error.code === ErrorCode.NOT_ENROLLED) {
      console.log('No biometric authentication enrolled.');
    } else if (error.code === ErrorCode.NOT_AVAILABLE) {
      console.log('Biometric authentication not available.');
    } else {
      console.log('Another error occurred:', error);
    }
  }
};

const getBiometricStrengthLevel = async () => {
  const { strengthLevel } = await Biometrics.getBiometricStrengthLevel();
  return strengthLevel;
};

const hasDeviceCredential = async () => {
  const { hasDeviceCredential } = await Biometrics.hasDeviceCredential();
  return hasDeviceCredential;
};

const isAvailable = async () => {
  const { isAvailable } = await Biometrics.isAvailable();
  return isAvailable;
};

const isEnrolled = async () => {
  const { isEnrolled } = await Biometrics.isEnrolled();
  return isEnrolled;
};

API

• authenticate(...)
• getBiometricStrengthLevel()
• hasDeviceCredential()
• isAvailable()
• isEnrolled()
• Interfaces
• Enums

authenticate(...)

authenticate(options?: AuthenticateOptions | undefined) => Promise<void>

Authenticates the user locally using the device's biometric authentication.

This method will show a prompt to the user asking them to authenticate using their biometrics (e.g., fingerprint, face recognition). If the user successfully authenticates, the promise resolves. If the user cancels the authentication or if an error occurs, the promise rejects.

It is recommended to check if biometrics is available and enrolled using the isAvailable() and isEnrolled() methods before calling this method.

On iOS, the first time the user is prompted to authenticate, they will be asked for permission to use biometrics. If the user denies permission, the promise will reject with an error.

Only available on Android and iOS.

Param	Type
options	AuthenticateOptions

Since: 7.0.0

---

getBiometricStrengthLevel()

getBiometricStrengthLevel() => Promise<GetBiometricStrengthLevelResult>

Returns the biometric strength level of the device.

Only available on Android.

Returns: Promise<GetBiometricStrengthLevelResult>

Since: 7.0.0

---

hasDeviceCredential()

hasDeviceCredential() => Promise<HasDeviceCredentialResult>

Check whether or not the device's credential (e.g., PIN, password) has been set up by the current user of the device.

Only available on Android and iOS.

Returns: Promise<HasDeviceCredentialResult>

Since: 7.0.0

---

isAvailable()

isAvailable() => Promise<IsAvailableResult>

Check whether or not biometrics is available on the device.

Only available on Android and iOS.

Returns: Promise<IsAvailableResult>

Since: 7.0.0

---

isEnrolled()

isEnrolled() => Promise<IsEnrolledResult>

Check whether or not biometrics is available on the device and has been configured by the current user of the device.

Only available on Android and iOS.

Returns: Promise<IsEnrolledResult>

Since: 7.0.0

---

Interfaces

AuthenticateOptions

Prop	Type	Description	Default	Since
allowDeviceCredential	boolean	Whether or not to allow the user to authenticate using their device's credential (e.g., PIN, password) if biometric authentication is not available or fails. You can check if the device's credential is set up using the hasDeviceCredential() method.	false	7.0.0
androidBiometricStrength	BiometricStrength	The Android biometric strength to use for authentication. You can check the supported biometric strength level of the device using the getBiometricStrengthLevel() method. Note: On Android API Level 28 and 29, this will always be set to AndroidBiometricStrength.WEAK regardless of the value passed in if allowDeviceCredential is set to true. This is a known limitation. Only available on Android.	AndroidBiometricStrength.WEAK	7.0.0
cancelButtonText	string	The negative button text of the authentication prompt.		7.0.0
iosFallbackButtonText	string	The fallback button text of the authentication prompt. Only available on iOS.		7.0.0
subtitle	string	The subtitle of the authentication prompt.		7.0.0
title	string	The title of the authentication prompt.		7.0.0

GetBiometricStrengthLevelResult

Prop	Type	Description	Since
strengthLevel	BiometricStrength	The supported biometric strength level of the device.	7.0.0

HasDeviceCredentialResult

Prop	Type	Description	Since
hasDeviceCredential	boolean	Whether or not the device's credential (e.g., PIN, password) has been set up by the current user of the device.	7.0.0

IsAvailableResult

Prop	Type	Description	Since
isAvailable	boolean	Whether or not biometric authentication is available on the device.	7.0.0

IsEnrolledResult

Prop	Type	Description	Since
isEnrolled	boolean	Whether or not biometrics is supported by the device and has been configured by the current user of the device.	7.0.0

Enums

BiometricStrength

Members	Value	Since
Strong	'STRONG'	7.0.0
Weak	'WEAK'	7.0.0