[feat] [biometric] Allow using biometric authentication to encrypt/decrypt sensitive data

[charlesschaefer]

It would be great to biometric plugin to allow to encrypt/decrypt sensitive data using the biometric authentication.
I.e. let's think of an app that encrypts some user's sensitive data using a secret key generated based on a password provided by the user. (password-based-key) To access the data, the user must always type the password (that we can use to regenerate the key and decrypt the data).

To improve the experience, the app can store the password-based-key somewhere and, when the user authenticates using the biometric plugin, it reads the key and uses it to decrypt the needed data. But this is insecure because the password-based-key would be stored in a way that someone could read it.

In android (I don't know about iOS), we can create a CryptoObject that can use biometric data to encrypt some data. We could, then, use the cipher provided by Android to encrypt our password-based-key (ensuring it won't be readable by anyone) and we would be able to decrypt it only when the biometric authentication is successful. And if the user cancels the biometric authentication (or registers a new biometric credential), we can just delete the key (because we can regenerate it if the user provides the correct password).

To allow the code to be consistent between platforms, the plugin could receive a modified AuthOptions with fields to configure to use the encryption and a flag to tell if it must encrypt (and the data to be encrypted) or decrypt the data. And the Result returned by the authenticate() could be filled with the data (encrypted or decrypted). Thus, the plugin consumer won't need to deal with different APIs depending on the platform.

Do you think this can be implemented in a way that can be used both on Android and iOS?

[charlesschaefer]

Ok, so I've started to check if what I thought to use in android side would work. And it is working pretty well, just needing to change the possible authentication types from WEAK to STRONG when using the biometric auth to get a key to encrypt/decrypt some data.

Is it ok if I finish the work on the plugin and open a PR to implement this feature on Android, without implementing it on iOS? I know that having different features on each platform, even when the platform has what is needed to implement them (I'm not sure if iOS has, although) is a very bad thing. But I don't have any kind of Mac equipment and never worked with iOS environment/techs before.

If it is not acceptable, I can create an unofficial plugin that provides the feature.

[FabianLars]

Is it ok if I finish the work on the plugin and open a PR to implement this feature on Android, without implementing it on iOS?

Yes, totally. With how hostile Apple is towards developers we do not expect everyone to be able to develop for android and ios (and macos) and many plugins already have platform specific features/differences 🤷

[charlesschaefer]

Cool, I discovered just now that I need to send the api-life.js file to the PR too, right? I'll try to generate and push it this weekend, and so I'll open the PR. Thanks! 🙏🏼

[FabianLars]

yep. simply run pnpm i and pnpm build in the repo root and commit :)

[charlesschaefer]

Ok, so I've just sent the #2454 PR. I'd appreciate some guidance about where/how to change the docs for this plugin 🙏🏼