Getting started with Android Fingerprint Authentication

13467458873_9ac65da217_b.jpg
With the release of Android 6.0 Marshmallow, Google has introduced best way to authenticate the User- That is Fingerprint Authentication.With this API, Google has created a native approach for fingerprint authentication across all Android devices. Developers can now authenticate their users on an app-by-app basis for everything from mobile purchases to app sign-in screens and more with just the tap of a finger.

Why fingerprint authentication?

let’s look at some of the ways in which fingerprint authentication can improve the user experience:
  • It’s a quick and convenient way of authenticating the user’s identity.
  • You can’t forget a fingerprint!
  • No more struggling with mobile keyboards.
  • No more annoying password recovery or reset.
  • our fingerprint is unique and impossible to guess.

Creating the Fingerprint Authentication Project

Imagine you are developing an app that requires to perform some critical operation like, payment. You want to be sure that your user is authenticated prior wiring any kind of money, right?
Let’s go through a sample application that authenticate the user by fingerprint.

Complete source code for the examples used in this tutorial is available on github.

Creating New Project

Open Android Studio and create a new project. You can use the settings of your choice, but set your project’s SDK version to Android 6.0 (API 23) or higher.
Screen Shot 2017-03-23 at 11.28.37 PM.png

Updating the Manifest

Fingerprint authentication requires that the app request the USE_FINGERPRINT permission within the project manifest file.
<uses-permission android:name="android.permission.USE_FINGERPRINT" />
view raw AndroidManifest.xml hosted with ❤ by GitHub

Creating user interface

Create the fingerprint icon with the help of “Android Image Assets”. To do so, Right click on the drawable folder and Create a New ⇒ Image Asset named ic_action_fingerprint.
You can download fingerprint icons from here and paste in res folder.
Now we have all our resources, let’s create our UI:
<?xml version="1.0" encoding="utf-8"?>
<LinearLayout xmlns:android="http://schemas.android.com/apk/res/android"
xmlns:app="http://schemas.android.com/apk/res-auto"
android:layout_width="match_parent"
android:layout_height="match_parent"
android:orientation="vertical"
android:gravity="center">
<ImageView
android:id="@+id/imageViewFinger"
android:layout_width="128dp"
android:layout_height="128dp"
app:srcCompat="@drawable/ic_fingerprint_black_48dp" />
<TextView
android:text="Authenticate using fingerprint!"
android:layout_width="wrap_content"
android:layout_height="wrap_content"
android:id="@+id/textView"
android:textStyle="bold"
android:textColor="@android:color/black"
android:layout_marginTop="24dp"
android:gravity="center"
android:textSize="25sp" />
</LinearLayout>
view raw activity_main.xml hosted with ❤ by GitHub

Checking the Security Settings

Now time to implement the fingerprint authentication part of our app.As a first step we’re going to check that:
  • The device features a fingerprint sensor.
  • The user has protected their lockscreen.
  • The user has registered at least one fingerprint on their device.
Create a method called checkFingerPrintSensor() on MainAcitivity.java file.
public boolean checkFingerPrintSensor(){
// Initializing both Android Keyguard Manager and Fingerprint Manager
KeyguardManager keyguardManager = (KeyguardManager) getSystemService(KEYGUARD_SERVICE);
fingerprintManager = (FingerprintManager) getSystemService(FINGERPRINT_SERVICE);
try {
// Check if the fingerprint sensor is present
if (!fingerprintManager.isHardwareDetected()) {
// Update the UI with a message
messageTextView.setText("Fingerprint authentication not supported");
return false;
}
if (!fingerprintManager.hasEnrolledFingerprints()) {
messageTextView.setText("No fingerprint configured.");
return false;
}
if (!keyguardManager.isKeyguardSecure()) {
messageTextView.setText("Secure lock screen not enabled");
return false;
}
}
catch(SecurityException se) {
se.printStackTrace();
}
return true;
}
view raw MainActivity.java hosted with ❤ by GitHub

Accessing Android Keystore and Generate Encryption Key

We are going to create a method called generateKey() that generate an encryption key which is then stored securely on the device using the Android Keystore system.
The following task are going to do:
  • Gain access to the Android keystore, by generating a Keystore instance.
  • Initialize the KeyGenerator by Specify the operation(s) this key can be used for
  • Configure this key so that the user has to confirm their identity with a fingerprint each time they want to use it
  • Generate the key
private static final String KEY_NAME = "OverrideAndroid";
view raw MainActivity.java hosted with ❤ by GitHub
@TargetApi(VERSION_CODES.M)
public void generateKey() {
// Obtain a reference to the Keystore using the standard Android keystore container identifier (“AndroidKeystore”)//
try {
keyStore = KeyStore.getInstance("AndroidKeyStore");
} catch (KeyStoreException e) {
e.printStackTrace();
}
// Key generator to generate the key
try {
//Initialize an empty KeyStore//
keyStore.load(null);
keyGenerator = KeyGenerator.getInstance(KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
} catch (NoSuchAlgorithmException | NoSuchProviderException
| CertificateException | IOException e) {
e.printStackTrace();
}
//Specify the operation(s) this key can be used for//
KeyGenParameterSpec keyGenParameterSpec = new
Builder(KEY_NAME, KeyProperties.PURPOSE_ENCRYPT
| KeyProperties.PURPOSE_DECRYPT)
.setBlockModes(KeyProperties.BLOCK_MODE_CBC)
//Configure this key so that the user has to confirm their identity with a fingerprint each time they want to use it//
.setUserAuthenticationRequired(true)
.setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_PKCS7)
.build();
try {
keyGenerator.init(keyGenParameterSpec);
//Generate the key//
keyGenerator.generateKey();
} catch (InvalidAlgorithmParameterException e) {
e.printStackTrace();
}
}
view raw MainActivity.java hosted with ❤ by GitHub

Create the Android Cipher

The cipher that will be used to create the encrypted FingerprintManager.CryptoObject instance. This CryptoObject will, in turn, be used during the fingerprint authentication process.
The getInstance method of the Cipher class is called to obtain a Cipher instance which is subsequently configured with the properties required for fingerprint authentication. The previously generated key is then extracted from the Keystore container and used to initialize the Cipher instance.
Create method with name generateCipher() that return a cipher object.
@TargetApi(VERSION_CODES.M)
public Cipher generateCipher() {
Cipher cipher = null;
//Obtain a cipher instance and configure it with the properties required for fingerprint authentication//
try {
cipher = Cipher.getInstance(
KeyProperties.KEY_ALGORITHM_AES + "/" +
KeyProperties.BLOCK_MODE_CBC + "/" +
KeyProperties.ENCRYPTION_PADDING_PKCS7);
} catch (NoSuchAlgorithmException | NoSuchPaddingException e) {
e.printStackTrace();
}
try {
keyStore.load(null);
Key key = keyStore.getKey(KEY_NAME, null);
cipher.init(Cipher.ENCRYPT_MODE, key);
} catch (KeyStoreException | NoSuchAlgorithmException
| UnrecoverableKeyException | InvalidKeyException
| CertificateException | IOException e) {
e.printStackTrace();
}
return cipher;
}
view raw MainActivity.java hosted with ❤ by GitHub

Authenticating

We’re ready to authenticate.This is done by calling FingerprintManager’s authenticate(CryptoObject, CancellationSignal, int, AuthenticationCallback, Handler) method.
CryptoObject
The crypto object is passed to fingerprint manager to protect the integrity of the fingerprint authentication.There is a chance that third party can intercept the results returned by fingerprint scanner. Crypto object is used to encrypt the results returned by fingerprint scanner.
CancellationSignal
This gives us the ability to stop listening for fingerprints. In a typical implementation, this class's cancel() method will be called in the onPause() lifecycle method. This ensures we aren’t listening for fingerprints while the application isn’t available.
AuthenticationCallback
This is the listener for fingerprint events. Create an AuthenticationCallback object like below:
AuthenticationCallback authenticationCallback = new AuthenticationCallback() {
@Override
public void onAuthenticationError(int errorCode, CharSequence errString) {
//onAuthenticationError is called when a fatal error has occurred.//
//It provides the error code and error message as its parameters//
super.onAuthenticationError(errorCode, errString);
}
@Override
public void onAuthenticationHelp(int helpCode, CharSequence helpString) {
//onAuthenticationHelp is called when a non-fatal error has occurred.
//This method provides additional information about the error//
super.onAuthenticationHelp(helpCode, helpString);
}
@Override
public void onAuthenticationSucceeded(AuthenticationResult result) {
//onAuthenticationSucceeded is called when a fingerprint has been successfully matched
//to one of the fingerprints stored on the user’s device//
super.onAuthenticationSucceeded(result);
}
@Override
public void onAuthenticationFailed() {
//onAuthenticationFailed is called when the fingerprint doesn’t match
//with any of the fingerprints registered on the device//
super.onAuthenticationFailed();
}
};
view raw MainActivity.java hosted with ❤ by GitHub

Finally the onCreate() method will look like this:
@Override
protected void onCreate(Bundle savedInstanceState) {
super.onCreate(savedInstanceState);
setContentView(R.layout.activity_main);
messageTextView = (TextView) findViewById(R.id.textView);
fingerPrintImageView = (ImageView) findViewById(R.id.imageViewFinger);
if (checkFingerPrintSensor()) {
generateKey();
Cipher cipher = generateCipher();
if (cipher != null) {
//If the cipher is initialized successfully, then
// create a CryptoObject instance//
CryptoObject cryptoObject = new CryptoObject(cipher);
CancellationSignal cancellationSignal = new CancellationSignal();
if (ActivityCompat.checkSelfPermission(this, permission.USE_FINGERPRINT) != PackageManager.PERMISSION_GRANTED) {
return;
}
fingerprintManager.authenticate(cryptoObject, cancellationSignal, 0, authenticationCallback, null);
}
}
}
view raw MainActivity.java hosted with ❤ by GitHub


Updating user interface

Next step is to update the user interface with authentication success or failure.Just create two method to handle this.
public void showAuthSucceededMessage() {
fingerPrintImageView.setImageResource(R.drawable.ic_fingerprint_green_500_48dp);
messageTextView.setText("Authentication succeeded.");
}
public void showAuthFailedMessage() {
fingerPrintImageView.setImageResource(R.drawable.ic_fingerprint_red_500_48dp);
messageTextView.setText("Authentication failed.");
}
view raw MainActivity.java hosted with ❤ by GitHub
@Override
public void onAuthenticationSucceeded(AuthenticationResult result) {
super.onAuthenticationSucceeded(result);
showAuthSucceededMessage();
}
@Override
public void onAuthenticationFailed() {
super.onAuthenticationFailed();
showAuthFailedMessage();
}
view raw MainActivity.java hosted with ❤ by GitHub

Testing the project

Whenever you’re working on an Android app, you should test that app across a wide range of Android Virtual Devices (AVDs) plus at least one physical Android smartphone or tablet.
First, make sure your Android smartphone or tablet is configured to support fingerprint authentication by securing your lockscreen with a PIN, password or pattern and then registering at least one fingerprint on your device. Typically, you register a fingerprint by going to  Settings ⇒ Security ⇒ Fingerprint and then following the onscreen instructions.
When it comes to testing Android’s fingerprint authentication on an AVD, there’s an immediate problem: an emulated Android device doesn’t have any physical hardware.The solution is to use the extended controls of the AVD.

Screen Shot 2017-03-23 at 10.54.46 PM.png
Screen Shot 2017-03-23 at 11.05.23 PM.png




Comments

  1. Unknown27 May 2017 at 21:57

    How to display the finger scan results based on the id, the example displays the results of a different finger scan, so each finger d scan and display the scan results

    ReplyDelete
    Replies
    1. Rahul Mohan12 June 2017 at 09:26

      Hi,

      It's not possible. Registered fingerprints are treated equally.
      Because each registered fingerprint can unlock device for the account who registered the fingerprint equally. At least for now, these are treated as equally.

      Maybe in the future, there is a change that identify multiple fingerprints. But current Android M doesn't support it.

      Delete

Post a Comment

Popular posts from this blog

Android Debug Database: A Library for Debugging Android Databases and Shared Preferences

Image
Android comes with a powerful built-in database called SQLite , but it doesn't come with the best set of debugging tools. When it comes to debugging databases in an android application, it is very difficult to see what’s happening inside the database. The same is true with Shared Preferences . In fact, unless you have a rooted device, you can't even get the SQLite tables off your device without jumping through some hoops. Android Debug Database Android Debug Database is a powerful library for debugging SQLite databases and Shared Preferences in Android applications. It allows you to view databases and shared preferences directly in your browser in a very simple way. By using the Android Debug Database we can do the following: See all the databases. See all the data in the shared preferences used in your application. Run any sql query on the given database to update and delete your data. Directly edit the database values. Directly edit shared prefer...
Keep reading

How to Use Kotlin in Your Android Projects

Image
One great news of moving to Kotlin is, do not need to start from a new project. You could add it to your existing Java Android project. The language is interoperable with Java. So you could use steps below either for a new or existing project. Setting up Your Environment By default, Android Studio has no idea what to do with Kotlin, so the first step is to install the Kotlin plugin and configure Kotlin in your project. Installing the Kotlin Plugin Launch Android Studio and install the kotlin plugin. In Android Studio's quick start menu, select Configure >> Plugins . click on Install JetBrains plugin… Search for and select Kotlin from the list and click Install . When the installation completes, restart Android Studio to activate the plugins. Configuring Your Project to Use Kotlin Now IDE can understand and run Kotlin code, but need to configure kotlin for every project. Create a new project in Android Studio from File >> New ...
Keep reading

Reactive Programming with RxBinding

Image
Developing a complex Android app that has lots of network connections, user interactions, and animations often means writing code that is full of nested callbacks. ReactiveX offers an alternative approach that is both clear and concise, to manage asynchronous tasks and events. ReactiveX ReactiveX is a combination of the best ideas from the Observer pattern, the Iterator pattern, and functional programming RxJava RxJava is a JVM implementation of ReactiveX, developed by NetFlix, and is very popular among Java developers. What is Reactive Programming Reactive programming is an asynchronous programming paradigm oriented around data streams and the propagation of change. This means that it should be possible to express static (e.g. arrays) or dynamic (e.g. event emitters) data streams with ease in the programming languages used, and that the underlying execution model will automatically propagate the changes through the data flow. For example, in an imperative p...
Keep reading

Introduction to Spring Animation

Image
When writing an application, it's important to consider exactly what your graphical demands will be. Varying graphical tasks are best accomplished with varying techniques. Android provides a variety of powerful APIs for applying animation to UI elements and drawing custom 2D and 3D graphics. Dynamic-animation is a new module introduced in revision 25.3.0 of the Android Support Library . It provides a small set of classes for making realistic Physics-based Animations . What is Physics-based Animation Physics-based animation uses the fundamentals of physics to build animations. An animation is driven by force. The animation comes to rest when the force reaches equilibrium. The new set of animation APIs embeds physics to render a more natural-looking and flexible animation. Spring Animation Spring Animation is one of the animation API provided by the Dynamic-animation module. Physics-based animations are driven by force. Spring force, is one such force that guides in...
Keep reading

Exploring Android O: Autosizing TextViews

Image
With the release of first developer preview of Android O, Google come with a solution to auto-size text in a TextView similar to the way the iOS SDK allows to select “ fit text to box ”. Let’s take a look at this exciting new feature and how we can implement it into our Android applications! Autosizing TextViews Android O allows to instruct a TextView to let the size of the text expand or contract automatically to fill its layout based on the TextView's characteristics and boundaries. This setting makes it easier to optimize the text size on different screens with dynamic content. Creating New Project We’ll start by creating new project in Android Studio and do the basic setup required.Create a new project in Android Studio from File > New Project and fill the project details. While creating the project, select the API O: Android 7+(O preview) as Minimum SDK. Update Build Configuration Open build.gradle located under app module and Update compileSdk...
Keep reading

Exploring Android O: Fonts in XML

Image
Google just released a few information about the next version of Android, which arrives later this year and is known for now as Android O . With the first developer preview, we saw some exciting stuff that will have a big impact for developers and the apps they can make. New ways to use custom fonts and icons, a better way to deliver professional-level audio and awesome ways to connect with others for things like head-to-head gaming or local social applications. One of the features of this announcement includes Fonts in XML — in this article we’re going to take a look at exactly what this and how we can make use of them within our applications! Get started with Android O SDK Android O Developer Preview , a program that gives you everything you need to make your apps compatible and build for the next version of Android. Install Android Studio 2.4 To access the O Developer Preview, you must first update to Android Studio 2.4 . Only Android Studio 2...
Keep reading

Kotlin: Do more with less code

Image
Java is the most widely used language for Android development, but that doesn’t mean it is always the best choice.The biggest problem with Java is that it is old , verbose , not a “ modern language ” and don’t forget the infamous NullPointerException . Java 8 , bringing some modern flavors to the language but Android certainly doesn’t use all the features of Java 8 and we are still stuck in the old Java 7 and 6.That's where Kotlin comes in: This relatively new open source language, based on the Java Virtual Machine (JVM), is gaining traction with Android software engineers. What is Kotlin? Kotlin is a statically-typed programming language(sometimes referred to as Swift for Android) that runs on the JVM, developed by the JetBrains team , and is now in its 1.1 version. What makes it useful in Android development is that it compiles to JVM bytecode. It is fully compatible with Java, and Kotlin code can be simply converted to Java code and vice versa (there is a plugin ...
Keep reading

Introduction to Android Bottom Navigation View

Image
Bottom navigation with tabs has been quite a common primary navigation pattern over on iOS for a long time.It enables navigation through a series of hierarchical app screen. Android guidelines already included tabs too, but they were at the top of the screen, combined with swipeable pages, implemented with a ViewPager. Google officially added Bottom Navigation to version 25 of the Design Support Library and released new versions of its Photos and Google+ app with this component as its main navigation.Let’s take a dive into how we can use it! I made a really simple app, you can find it from GitHub Usage Bottom navigation provides quick navigation between top-level views of an app. It is primarily designed for use on mobile. When to use Bottom navigation should be used for: Three to five top-level destinations of similar importance (alternative: a persistent navigation drawer accessible from anywhere in the app) Destinatio...
Keep reading

Picture-in-Picture: Working in Android Oreo

Image
From release of the Android O , which saw some exciting new additions for us to get our hands on! One of the most noticeable user-facing changes is the introduction of a picture in picture (PIP) option – similar to an Apple iPad feature added in iOS 9 – which should make multitasking easier in some circumstances.   PIP is a special type of multi-window mode mostly used for video playback. PIP mode is already available for Android TV; Android O makes the feature available on other Android devices. Let’s take a look at this exciting new feature and how we can implement it into our Android applications! To learn more about Picture-in-Picture I created a playground project to have a play with the new features. You can check this out for yourself here! What is Picture-In-Picture? Picture-in-Picture (PiP) allows you to keep videos open as they play on top of of another screen. This wouldn’t be the same as the multi-window feature which allows users to keep...
Keep reading