Biometric Authentication
This plugin enables biometric authentication for users in your Shopify application. Follow the steps below to configure and use the plugin effectively.
Last updated
Was this helpful?
This plugin enables biometric authentication for users in your Shopify application. Follow the steps below to configure and use the plugin effectively.
Last updated
Was this helpful?
The WebToNative Biometric Authentication Plugin enhances your Shopify mobile app's security while providing a seamless user experience. This plugin allows customers to authenticate using their device's biometric capabilities (fingerprint or facial recognition) instead of repeatedly entering passwords.
App Resume Authentication: Prompt users for biometric verification when returning to the app after a set period of inactivity
App Launch Authentication: Secure app access with biometric verification when the app is first opened
Biometric Login: Allow users to log in using biometrics instead of username/password
User Preference Controls: Let users enable or disable biometric authentication according to their preferences
Configurable Timeout: Set custom timeouts for when authentication is required
After installing the WebToNative app, you need to enable biometric authentication:
Navigate to the Apps section in your Shopify admin
Find and click on Webtonative from the list of installed apps
In the side navigation menu, click on Biometric Authentication
Toggle the Enable switch to turn on biometric authentication functionality
Click the Save button to confirm your changes
To give your customers control over their biometric authentication preferences:
Go to Online Store > Themes in your Shopify admin
Click Customize next to your current theme
Navigate to the Template section and select Account or your profile page template
Under the Apps section, click Add block
Select the ON/OFF Biometric Auth block by WebToNative
Click Save to apply the changes
Note: This block will only be visible to users on native mobile devices. Desktop users won't see this option.
Configure when and how biometric authentication is triggered:
Go to Online Store > Themes in your Shopify admin
Click Customize next to your current theme
Find the App Embeds section or navigate to where app blocks are managed
Locate and enable the Biometric Authentication block
Configure the following settings:
Prompt on Resume: Toggle ON to require authentication when users return to the app after switching to another app
Biometric Timeout (Minutes): Set how long the app can be inactive before requiring reauthentication (e.g., 1 minute)
Prompt on Open: Toggle ON to require authentication when the app is first launched
Click Save to apply your configuration
To enable users to log in with biometrics instead of passwords:
Go to Online Store > Themes in your Shopify admin
Click Customize next to your current theme
Navigate to the Login Page section
Click Add block
Select the Biometric Login block by WebToNative
Click Save to apply the changes
Note: The biometric login option will only appear for users on mobile devices who have previously logged in and enabled biometric authentication. User Experience: When a customer clicks the Login with Biometric button, they will be prompted to authenticate using their device's biometric system (fingerprint or facial recognition). Upon successful authentication, the user will be automatically logged in and redirected to their profile/account page without needing to enter their username or password.
When enabled, this option requires users to authenticate using their biometrics when returning to your app after using another app or after the device has been locked. This prevents unauthorized access if users leave their device unlocked with your app open.
This setting determines how long (in minutes) a user can be away from the app before needing to re-authenticate. A shorter timeout provides more security, while a longer timeout offers more convenience.
When enabled, users must authenticate with biometrics each time they open the app, even if they've recently used it. This provides the highest level of security but may impact user experience if users frequently access your app.
Balance Security and Convenience: Consider your customers' needs when setting timeout durations. Shorter timeouts increase security but may frustrate users if too frequent.
Educate Your Customers: Inform users about the biometric features through in-app messages or email communications. Explain the benefits of using biometric authentication.
Provide Alternatives: Some users may not have biometric capabilities on their devices or may prefer not to use them. Always ensure traditional login methods remain available.
Test Thoroughly: Before fully deploying, test the biometric authentication on various devices to ensure a smooth experience across different platforms and operating systems.
Ensure the app has been updated to the latest version
Verify that blocks have been properly added to your theme
Confirm the device supports biometric authentication
Check that the user has set up biometrics on their device
Advise users to ensure their biometric settings are up-to-date on their device
Suggest cleaning the fingerprint sensor or ensuring facial recognition cameras are unobstructed
Provide password login as a fallback method
Q: Is biometric data stored on your servers? A: No. All biometric data remains securely on the user's device. The plugin only receives authentication confirmation, not the actual biometric data.
Q: Which devices support this feature? A: The plugin works on iOS devices with Touch ID or Face ID and Android devices with fingerprint or facial recognition capabilities.
Q: Can users disable biometric authentication if they prefer not to use it? A: Yes. Users can toggle this feature off through the profile/account page where you've added the ON/OFF Biometric Auth block.
Q: Will this slow down my app? A: No. Biometric authentication is designed to be fast and efficient, often faster than typing passwords.
Q: Does this replace the need for passwords? A: After initial setup, it provides an alternative to password entry, but passwords remain as a backup authentication method.