Are there any resources that list the meta data used in TouchID attestation? I would like to only allow TouchID as the FIDO2 method and want to block the other FIDO2 methods.

I am creating a react app and am making use of Webauthn to use TouchID or FaceID for user authentication. I have built my app so that when the button is clicked, navigator.credentials.create is the only call made. With attestation set to none, there are no issues however as soon as I set attestation to direct I get an alert saying 'The operation can't be completed' and 'NotAllowedError: This request has been cancelled by the user.' is logged to console. The issue only presents itself on Safari and iOS devices however works perfectly on other browsers like Chrome. Has anyone encountered a similar issue and possibly know how to resolve it? Thanks Shay

Apple's touch ID external keyboard will work on all macs with apple silicon. But they must be running Big Sur 11.4. What binary was added in that version that made the computer capable of using the touch ID keyboard?

I only need to call a couple of lines of code with privilege escalation, I think I understand the reasoning behind creating a separate 'helper' application to perform these tasks. Is there a way to get AuthorizationCreate to display the authentication dialog with TouchID? I see localAuthentation can display a TouchID dialog. Is there (apart from AppleScript) a non-deprecated way to simply request authorization, launch a helper with privileges and arguments, then easily obtain the results from it? I get the impression that with SMJobBless (a non-deprecated API, but a ton of work), the helper will then permanently have escalated privileges, surely this is less secure? Also with SMJobBless, it appears that I need to use an installer package to install the helper in the correct place, is this correct? Is there a replacement for SMJobSubmit in the works? What am I missing, or misunderstanding?

My Safari Extension on iOS needs access to a Keychain item (password) that is secured by the userPresence and devicePasscode flag. In other words, FaceID/TouchID or the device PIN is necessary to access the password. Is there a way for the extension to access the password? SafariWebExtensionHandler.swift has access to the Keychain, but can't present FaceID/TouchID/device PIN interface to the user. Popup.js has UI access, but can't access the iOS Keychain. One hack is to set touchIDAuthenticationAllowableReuseDuration of the Keychain item to an arbitrary time and have the user authenticate in the containing app. However, in case of a time-out, the containing app has be opened by the extension with a custom URL scheme. openURL is not accessible in SafariWebExtensionHandler.swift either (I assume it can be handled by popup.js). This is a user-unfriendly solution. What is the best way to give the Safari extension access to a Keychain item?

Whenever user tries to login with biometric and it failed multiple times then the passcode screen appears and this is the screen which we don't want for our perfectly secure applications. We are looking to authenticate user with biometric only and not fallback to passcode which is same as the Apple internal API https://developer.apple.com/documentation/security/secaccesscontrolcreateflags where we can enforce user to use biometric based login. Although we like WebAuth framework but this is the only reason we cannot move forward with the WebAuthn framework. is it something Apple can think about providing to make application more secure ?

I have a macOS application designed as an agent with several daemons/cmd helper tools. Various parts of my application use touchID before executing privileged operations. The icon that shows up in Touch ID is the generic white building block. How can I use a different icon with different types of targets?

Dear Apple , I discovered a bug about iPhones and even made a video of it and uploaded it to the following address: https://feedbackassistant.apple.com/feedback/9184844 In the last few days, he has not received any response from any of Apple's backers Apple app development consultants also listed the site address in my replies: https://www.apple.com/feedback/iphone.html I'm on this site and I wrote everything about the bug I discovered, but I still did not get a response from the Apple team Please select this important topic and announce my answer My goal is to work with the Apple team to fix the iPhone fingerprint bug Please be sure to check my feedback on this bug along with the video I made myself My Feedback Address: https://feedbackassistant.apple.com/feedback/9184844 Regards , Hamed Hamedi

How do we test TouchID in simulator from Xcode 13? There is no more "Hardware" option on the menu bar.

I am working on implementing the local authentication on my app so I have to test both Face Id and Touch Id from the simulator. Face Id is visible like below but unable to find out Touch Id option. I have checked on both iOS 13.00 simulator and iOS 14.00 simulator but Touch ID option is hidden in both simulator.

Hi everyone I've updated an iPhone 6S to iOS 14 Beta 4 and after that, Touch ID got disabled. Whenever I try to set it up, a message saying “FAILED - Unable to activate Touch ID on this iPhone". Even i have tried downgrade ios to the 13.5.1 and done a full reset but problem is still on the same. What should I do..? Please suggest.. Leave a comment below.

In the video https://developer.apple.com/videos/play/wwdc2020/10670/ this refers to "user activated events" for navigator.credentials.get. Hovever, this term of "user activated events" is very hard to find online, and no example code exists. Is a more complete example of html + js available for the interaction of navigator.credentials.get available that highlights the correct method of using this api in ios?