Authenticate with Face ID or Fingerprint After Initial Login

After completing initial identity verification via BankID or Vipps, the peer mentor should be prompted to enable biometric authentication for subsequent sessions. On supported devices, the app should invoke the native biometric prompt (Face ID on iOS, fingerprint or face unlock on Android) to resume an authenticated session without requiring a full re-authentication flow. This dramatically reduces the friction for high-frequency users who may register 380+ activities per year.

CRITICAL story-biometric-session-authentication-organization-admin-001 8 pts

Story Points

Critical

Priority

Biometric Session Authentication

Feature

User Story

As a Organization Administrator

I want to use Face ID or fingerprint to unlock the app after my first BankID/Vipps login

So that I can access the app quickly without re-entering credentials every session, making it practical to log multiple short activities throughout a busy day

Acceptance Criteria

Given I have completed initial BankID or Vipps authentication, When I open the app in a new session, Then I am presented with a biometric prompt (Face ID or fingerprint) instead of a login form
Given biometric authentication is enabled, When I successfully authenticate with Face ID or fingerprint, Then I am taken directly to the role-based home screen within 2 seconds
Given biometric authentication is enabled, When I fail biometric authentication 3 times, Then I am offered a fallback option to use my password or re-authenticate via BankID/Vipps
Given I am on a device that does not support biometrics, When I complete initial login, Then biometric setup is skipped and standard session token resumption is used
Given I have enabled biometric auth, When I tap 'Cancel' on the biometric prompt, Then I am offered the option to authenticate with password instead
Given biometric authentication succeeds, When my session is resumed, Then I land on the correct role-specific home screen for my assigned organization context

Business Value

Biometric login is identified as a MUST HAVE for all four partner organizations (NHF, HLF, Blindeforbundet, Barnekreftforeningen). Peer mentors like those at HLF who register 380+ activities annually need near-zero friction for repeated app access. Removing password re-entry as a daily barrier directly increases activity registration rates, reducing the systemic underreporting problem all organizations currently experience. This is core to the product's value proposition.

Components

Biometric Authentication Screen ui
Biometric Authentication Service service
Biometric Prompt Overlay ui
Biometric Authentication Service service
Session Resume Manager service
Secure Session Storage data
Local Auth Integration infrastructure
Supabase Session Manager infrastructure
Authentication Session Manager service
Auth Token Store data
Secure Storage Adapter infrastructure
Role-Based Home Screen ui
Biometric Authentication Service service

Biometric Session Authentication

Related Feature

Organization Administrator

User Role