Android M - Keychain like storage for username/password

About

Asked 24/12, 2015 at 6:19 Answered 28/6, 2017 at 11:3

Here's the workflow from iOS that I'm trying to achieve on Android:

User starts app for the first time and Logs in successfully with credentials (sent to API for validation).
Prompt shows asking to enroll with Touch ID
User chooses YES => Username/Password is stored into Keychain
User logs out, closes, and restarts the app.
Prompt shows asking to use Fingerprint to authenticate
User uses Fingerprint to authenticate => Username/Password are retrieved from Keychain and then sent to the API

Is there an Android equivalent of iOS's Keychain API? From what I've read the Keystore seems to only be able to store Keys and Certificates.

Blearyeyed answered 24/12, 2015 at 6:19 Comment(5)

Go through the below stackoverflow question and try to get the answer ,THe link is #2411781 – Godewyn 24/12, 2015 at 6:26

@Godewyn Thanks, but those posts are dated back to 2010. I think a lot has changed in the Android landscape since then. It looks like there's another post here:#4898274. Even after generating the key pairs and then using them to encrypt credentials, where do you store the encrypted data? – Blearyeyed 24/12, 2015 at 16:15

Now that I think about it, how do those Android apps like Dashlane do their touch id?? – Blearyeyed 24/12, 2015 at 20:9

@AndroidNoob did you get a resolution to this. I too have a similar requirement and need to understand this. – Marriott 12/7, 2016 at 9:4

@FlashAsh99 I ended up encrypting the credentials using KeyStore and storing the encrypted credentials into SharedPreferences. – Blearyeyed 13/7, 2016 at 17:48

Here it is:

By integrating Smart Lock for Passwords into your Android app, you can automatically sign users in to your app using the credentials they have saved. Users can save both username-password credentials and federated identity provider credentials.

Integrate Smart Lock for Passwords into your app by using the Credentials API to retrieve saved credentials on sign-in. Use successfully retrieved credentials to sign the user in, or use the Credentials API to rapidly on-board new users by partially completing your app's sign in or sign up form. Prompt users after sign-in or sign-up to store their credentials for future automatic authentication.

https://developers.google.com/identity/smartlock-passwords/android/

Hoon answered 28/6, 2017 at 11:3 Comment(1)

"Deprecated: Smart Lock for Passwords is deprecated. All Smart Lock for Passwords functionality has migrated to One Tap sign-in. Use One Tap instead." – Moriahmoriarty 29/5, 2023 at 0:31

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags