user not authenticated/key permanently invalidated

2024-11-22 16:32:01 +03:00 · 2023-05-03 14:42:35 +02:00 · 2023-05-03 14:42:35 +02:00 · 41c6bad62f
commit 41c6bad62f
parent 6672ff3245
1 changed files with 6 additions and 6 deletions
--- a/android/app/src/main/kotlin/com/yubico/authenticator/oath/keystore/BiometricProtection.kt
+++ b/android/app/src/main/kotlin/com/yubico/authenticator/oath/keystore/BiometricProtection.kt
@ -95,18 +95,18 @@ class BiometricProtectionSinceM(
                        Log.d(TAG, "User is now verified by biometrics")
                    }

-                    UserAuthenticationStatus.USER_NOT_AUTHENTICATED -> onAuthenticationCancelledOrFailed().also {
-                        Log.e(TAG, "Failed to use the authentication private key")
+                    // explanation for why both statuses trigger onKeyPermanentlyInvalidated:
+                    // we are in onAuthenticationSucceeded callback of BiometricPrompt which means,
+                    // that if the key is still not authenticated, the key is not valid anymore
+                    UserAuthenticationStatus.KEY_PERMANENTLY_INVALIDATED,
+                    UserAuthenticationStatus.USER_NOT_AUTHENTICATED -> onKeyPermanentlyInvalidated().also {
+                        Log.e(TAG, "The private key is not valid for signatures anymore")
                    }

                    UserAuthenticationStatus.SIGNATURE_FAILED -> onAuthenticationCancelledOrFailed().also {
                        Log.e(TAG, "Signature with the key pair failed")
                    }

-                    UserAuthenticationStatus.KEY_PERMANENTLY_INVALIDATED -> onKeyPermanentlyInvalidated().also {
-                        Log.e(TAG, "The private key is not valid for signatures anymore")
-                    }
-
                }
            },
            onAuthenticationFailed = {