User authentication with biometry.
SDKs
- iOS 8.0+
- macOS 10.12.2+
- Mac Catalyst 13.0+
Framework
- Local
Authentication
Declaration
case deviceOwnerAuthenticationWithBiometrics = 1
Discussion
You use the LAPolicy
policy when calling the evaluate
method to authenticate the user with biometrics.
Policy evaluation fails if Touch ID or Face ID is unavailable or not enrolled. Evaluation also fails after three failed Touch ID attempts. After two failed Face ID attempts, the system offers a fallback option, but stops trying to authenticate with Face ID. Both Touch ID and Face ID authentication are disabled system-wide after five consecutive unsuccessful attempts, even when the attempts span multiple evaluation calls. When this happens, the system requires the user to enter the device passcode to reenable biometry.
During authentication, the system presents the user with an authentication dialog for every attempt to authenticate with Touch ID, or after any failed Face ID attempt. The dialog contains a cancel button with a title that you can customize by setting the localized
property. If the user taps the cancel button, the policy evaluation fails with the user
error.
The authentication dialog also displays a fallback button after the first unsuccessful Touch ID attempt, or after the second unsuccessful Face ID attempt. You can customize the fallback button’s title by setting the localized
property. If the user taps the fallback button, the policy evaluation fails with the user
error. In this case, your app should provide an alternate mechanism for authenticating the user, like asking for a PIN or a password.
To let the system handle the fallback option by asking for the device passcode (in iOS or watchOS) or the user’s password (in macOS), use the LAPolicy
policy instead.