invalidateOnNewOsBiometrics abstract method

Registration invalidateOnNewOsBiometrics(
  1. bool invalidateOnNewOsBiometrics
)

Specifies whether the authenticator must be invalidated if the user adds new biometric credentials in the OS settings. If the authenticator has been invalidated, and you try to authenticate with it, an error with code FidoErrorCodeType.keyDisappearedPermanently will be returned by the authentication operation.

This setting only applies to biometric Aaid.biometric and fingerprint Aaid.fingerprint authenticators. By setting this parameter to true, you increase the security but there is a loss of convenience: adding a new OS biometric credential does not imply necessarily that there is a security risk, but if the end-user does it, a new registration will be required, because an invalidated authenticator cannot be recovered.

If not specified, the authenticator will be invalidated when the user adds a new biometric credential in the OS settings.

Params:

  • invalidateOnNewOsBiometrics: indicates whether an addition of biometric credentials in the OS should invalidate this authenticator.

Returns: a Registration object.

Implementation

Registration invalidateOnNewOsBiometrics(
  bool invalidateOnNewOsBiometrics,
);