feat: Enhance biometric session management and update examples

Author: subhankarmaiti

EXAMPLES.md

@@ -1464,33 +1464,22 @@ BiometricPolicy controls when biometric authentication is required when accessin
 // Always require biometric authentication (default)
 val alwaysPolicy = LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
     .setPolicy(BiometricPolicy.Always)
     .build()
 
 // Require authentication only once per 5-minute session
 val sessionPolicy = LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials") 
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
     .setPolicy(BiometricPolicy.Session(300)) // 5 minutes
     .build()
 
-// Require authentication once per app lifecycle (1 hour timeout)
+// Require authentication once per app lifecycle (1 hour default)
 val appLifecyclePolicy = LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
-    .setPolicy(BiometricPolicy.AppLifecycle()) // Uses default 1 hour timeout
-    .build()
-
-// Custom app lifecycle timeout (2 hours)
-val customAppLifecyclePolicy = LocalAuthenticationOptions.Builder()
-    .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
-    .setAuthenticationLevel(AuthenticationLevel.STRONG)
-    .setPolicy(BiometricPolicy.AppLifecycle(7200)) // 2 hours
+    .setPolicy(BiometricPolicy.AppLifecycle()) // Default: 3600 seconds (1 hour)
     .build()
 ```
 
@@ -1501,29 +1490,38 @@ val customAppLifecyclePolicy = LocalAuthenticationOptions.Builder()
 // Always require biometric authentication (default)
 LocalAuthenticationOptions alwaysPolicy = new LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
     .setPolicy(BiometricPolicy.Always.INSTANCE)
     .build();
 
 // Require authentication only once per 5-minute session  
 LocalAuthenticationOptions sessionPolicy = new LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
     .setPolicy(new BiometricPolicy.Session(300)) // 5 minutes
     .build();
 
-// Require authentication once per app lifecycle (1 hour timeout)
+// Require authentication once per app lifecycle (default 1 hour)
 LocalAuthenticationOptions appLifecyclePolicy = new LocalAuthenticationOptions.Builder()
     .setTitle("Authenticate")
-    .setDescription("Accessing Credentials")
     .setAuthenticationLevel(AuthenticationLevel.STRONG)
-    .setPolicy(new BiometricPolicy.AppLifecycle()) // Uses default 1 hour timeout
+    .setPolicy(new BiometricPolicy.AppLifecycle()) // Default: 3600 seconds
     .build();
 ```
 </details>
 
+**Managing Biometric Sessions**:
+
+You can manually clear the biometric session to force re-authentication on the next credential access:
+
+```kotlin
+// Clear the biometric session
+secureCredentialsManager.clearBiometricSession()
+
+// Check if the current session is valid
+val isValid = secureCredentialsManager.isBiometricSessionValid()
+```
+
 
 ### Other Credentials
 

auth0/src/main/java/com/auth0/android/authentication/storage/BiometricPolicy.kt

@@ -20,5 +20,5 @@ public sealed class BiometricPolicy {
      * The session is invalidated by calling clearBiometricSession() or after the default timeout.
      * @param timeoutInSeconds The duration for which the session remains valid. Defaults to 3600 seconds (1 hour).
      */
-    public data class AppLifecycle(val timeoutInSeconds: Int = 3600) : BiometricPolicy() // Default 1 hour
+    public data class AppLifecycle @JvmOverloads constructor(val timeoutInSeconds: Int = 3600) : BiometricPolicy() // Default 1 hour
 }

auth0/src/main/java/com/auth0/android/authentication/storage/SecureCredentialsManager.kt

@@ -49,6 +49,9 @@ public class SecureCredentialsManager @VisibleForTesting(otherwise = VisibleForT
 ) : BaseCredentialsManager(apiClient, storage, jwtDecoder) {
     private val gson: Gson = GsonProvider.gson
 
+    // Biometric session management
+    private val lastBiometricAuthTime = AtomicLong(NO_SESSION)
+
     /**
      * Creates a new SecureCredentialsManager to handle Credentials
      *
@@ -1136,13 +1139,14 @@ public class SecureCredentialsManager @VisibleForTesting(otherwise = VisibleForT
         val lastAuth = lastBiometricAuthTime.get()
         if (lastAuth == NO_SESSION) return false // No session exists
 
-        return when (biometricPolicy) {
-            is BiometricPolicy.Session -> {
-                val timeoutMillis = biometricPolicy.timeoutInSeconds * 1000L
-                System.currentTimeMillis() - lastAuth < timeoutMillis
-            }
+        return when (val policy = biometricPolicy) {
+            is BiometricPolicy.Session,
             is BiometricPolicy.AppLifecycle -> {
-                val timeoutMillis = biometricPolicy.timeoutInSeconds * 1000L
+                val timeoutMillis = when (policy) {
+                    is BiometricPolicy.Session -> policy.timeoutInSeconds
+                    is BiometricPolicy.AppLifecycle -> policy.timeoutInSeconds
+                    else -> return false
+                } * 1000L
                 System.currentTimeMillis() - lastAuth < timeoutMillis
             }
             is BiometricPolicy.Always -> false
@@ -1183,9 +1187,7 @@ public class SecureCredentialsManager @VisibleForTesting(otherwise = VisibleForT
         @VisibleForTesting(otherwise = VisibleForTesting.PRIVATE)
         internal const val KEY_ALIAS = "com.auth0.key"
 
-        // Biometric session management
         // Using NO_SESSION to represent "no session" (uninitialized state)
         private const val NO_SESSION = -1L
-        private val lastBiometricAuthTime = AtomicLong(NO_SESSION)
     }
 }

auth0/src/test/java/com/auth0/android/authentication/storage/SecureCredentialsManagerBiometricPolicyTest.kt

@@ -73,29 +73,6 @@ public class SecureCredentialsManagerBiometricPolicyTest {
         assert(policy1 == policy2) // Equal
     }
 
-    @Test
-    public fun `BiometricPolicy Session should be data class with timeout parameter`() {
-        val policy1 = BiometricPolicy.Session(300)
-        val policy2 = BiometricPolicy.Session(300)
-        val policy3 = BiometricPolicy.Session(600)
-        
-        assert(policy1 == policy2) // Same timeout, should be equal
-        assert(policy1 != policy3) // Different timeout, should not be equal
-        assert(policy1.timeoutInSeconds == 300)
-    }
-
-    @Test
-    public fun `BiometricPolicy AppLifecycle should be data class with default timeout`() {
-        val policy1 = BiometricPolicy.AppLifecycle()
-        val policy2 = BiometricPolicy.AppLifecycle()
-        val policy3 = BiometricPolicy.AppLifecycle(7200)
-        
-        assert(policy1 == policy2) // Same default timeout, should be equal
-        assert(policy1 != policy3) // Different timeout, should not be equal
-        assert(policy1.timeoutInSeconds == 3600) // Default 1 hour
-        assert(policy3.timeoutInSeconds == 7200) // Custom 2 hours
-    }
-
     @Test
     public fun `AppLifecycle policy should default to 1 hour timeout`() {
         val policy = BiometricPolicy.AppLifecycle()