Add StytchBiometrics Demo App

Author: nidal-stytch

Sources/StytchCore/Networking/NetworkingRouter.swift

@@ -117,13 +117,6 @@ public extension NetworkingRouter {
         }
     }
 
-    private func cleanupPotentiallyOrphanedBiometricRegistrations(_ user: User) {
-        // if we have a local biometric registration that doesn't exist on the user object, delete the local
-        if let queryResult: KeychainClient.QueryResult = try? keychainClient.get(.privateKeyRegistration).first, let biometricRegistrationId = try? queryResult.generic.map({ try jsonDecoder.decode(KeychainClient.KeyRegistration.self, from: $0) }), !user.biometricRegistrations.map(\.id).contains(biometricRegistrationId.registrationId) {
-            try? keychainClient.removeItem(.privateKeyRegistration)
-        }
-    }
-
     // swiftlint:disable:next function_body_length
     private func performRequest<Response: Decodable>(
         _ method: NetworkingClient.Method,
@@ -146,7 +139,7 @@ public extension NetworkingRouter {
                     hostUrl: configuration.hostUrl
                 )
                 userStorage.update(sessionResponse.user)
-                cleanupPotentiallyOrphanedBiometricRegistrations(sessionResponse.user)
+                StytchClient.biometrics.cleanupPotentiallyOrphanedBiometricRegistrations()
             } else if let sessionResponse = dataContainer.data as? B2BAuthenticateResponseType {
                 sessionManager.updateSession(
                     sessionType: .member(sessionResponse.memberSession),

Sources/StytchCore/StytchClient/Biometrics/StytchClient+Biometrics.swift

@@ -74,6 +74,11 @@ public extension StytchClient {
                 throw StytchSDKError.noCurrentSession
             }
 
+            // Attempt to remove the current registration if it exists.
+            // If we don't remove the current one before creating a new one, the user record will retain an unused biometric registration indefinitely.
+            // The error thrown here can be safely ignored. If it fails, we don't want to prevent the creation of the new biometric registration.
+            try? await removeRegistration()
+
             let (privateKey, publicKey) = cryptoClient.generateKeyPair()
 
             let startResponse: RegisterStartResponse = try await router.post(
@@ -123,16 +128,49 @@ public extension StytchClient {
                 parameters: AuthenticateStartParameters(publicKey: publicKey)
             )
 
+            let authenticateCompleteParameters = AuthenticateCompleteParameters(
+                signature: try cryptoClient.signChallengeWithPrivateKey(startResponse.challenge, privateKey),
+                biometricRegistrationId: startResponse.biometricRegistrationId,
+                sessionDurationMinutes: parameters.sessionDuration
+            )
+
             // NOTE: - We could return separate concrete type which deserializes/contains biometric_registration_id, but this doesn't currently add much value
-            return try await router.post(
+            let authenticateResponse: AuthenticateResponse = try await router.post(
                 to: .authenticate(.complete),
-                parameters: AuthenticateCompleteParameters(
-                    signature: cryptoClient.signChallengeWithPrivateKey(startResponse.challenge, privateKey),
-                    biometricRegistrationId: startResponse.biometricRegistrationId,
-                    sessionDurationMinutes: parameters.sessionDuration
-                ),
+                parameters: authenticateCompleteParameters,
                 useDFPPA: true
             )
+            return authenticateResponse
+        }
+
+        func cleanupPotentiallyOrphanedBiometricRegistrations() {
+            guard let user = StytchClient.user.getSync() else {
+                return
+            }
+
+            // if we have a local biometric registration that doesn't exist on the user object, delete the local
+            if user.biometricRegistrations.isEmpty {
+                try? keychainClient.removeItem(.privateKeyRegistration)
+            } else if !user.biometricRegistrations.isEmpty {
+                let queryResult = try? keychainClient.get(.privateKeyRegistration).first
+                cleanupBiometricRegistrationIfOrphaned(queryResult: queryResult, user: user)
+            }
+        }
+
+        private func cleanupBiometricRegistrationIfOrphaned(
+            queryResult: KeychainClient.QueryResult?,
+            user: User
+        ) {
+            // Decode the biometric registration ID from the query result
+            let biometricRegistrationId = try? queryResult?.generic.map {
+                try jsonDecoder.decode(KeychainClient.KeyRegistration.self, from: $0)
+            }
+
+            // Check if the user's biometric registrations contain the ID
+            if user.biometricRegistrations.map(\.id).contains(biometricRegistrationId?.registrationId) == false {
+                // Remove the orphaned biometric registration
+                try? keychainClient.removeItem(.privateKeyRegistration)
+            }
         }
     }
 }

Stytch/DemoApps/B2BWorkbench/Extensions.swift

@@ -2,10 +2,6 @@ import Foundation
 import StytchCore
 import UIKit
 
-enum TextFieldAlertError: Error {
-    case emptyString
-}
-
 extension UIViewController {
     var organizationId: String? {
         UserDefaults.standard.string(forKey: Constants.orgIdDefaultsKey)
@@ -14,105 +10,6 @@ extension UIViewController {
     var memberId: String? {
         StytchB2BClient.member.getSync()?.id.rawValue
     }
-
-    func presentAlertWithTitle(
-        alertTitle: String,
-        buttonTitle: String = "OK",
-        completion: (() -> Void)? = nil
-    ) {
-        let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
-        let okAction = UIAlertAction(title: buttonTitle, style: .cancel) { _ in
-            completion?()
-        }
-        alertController.addAction(okAction)
-        present(alertController, animated: true)
-    }
-
-    func presentTextFieldAlertWithTitle(
-        alertTitle: String,
-        buttonTitle: String = "Submit",
-        cancelButtonTitle: String = "Cancel",
-        completion: ((String?) -> Void)? = nil
-    ) {
-        let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
-        alertController.addTextField()
-
-        let submitAction = UIAlertAction(title: buttonTitle, style: .default) { [unowned alertController] _ in
-            if let text = alertController.textFields?[0].text {
-                completion?(text)
-            }
-        }
-        alertController.addAction(.init(title: cancelButtonTitle, style: .cancel, handler: { _ in
-            completion?(nil)
-        }))
-
-        alertController.addAction(submitAction)
-        present(alertController, animated: true)
-    }
-
-    @MainActor
-    func presentTextFieldAlertWithTitle(
-        alertTitle: String,
-        buttonTitle: String = "Submit",
-        cancelButtonTitle: String = "Cancel"
-    ) async throws -> String? {
-        try await withCheckedThrowingContinuation { continuation in
-            let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
-            alertController.addTextField()
-
-            let submitAction = UIAlertAction(title: buttonTitle, style: .default) { [unowned alertController] _ in
-                if let text = alertController.textFields?[0].text, text.isEmpty == false {
-                    continuation.resume(returning: text)
-                } else {
-                    continuation.resume(returning: nil)
-                }
-            }
-
-            alertController.addAction(submitAction)
-
-            alertController.addAction(.init(title: cancelButtonTitle, style: .cancel, handler: { _ in
-                continuation.resume(returning: nil)
-            }))
-
-            present(alertController, animated: true)
-        }
-    }
-
-    func presentErrorWithDescription(error: Error, description: String) {
-        presentAlertWithTitle(alertTitle: "\(description) - \(error.errorInfo)")
-    }
-
-    func presentAlertAndLogMessage(description: String, object: Any) {
-        if let error = object as? Error {
-            presentAlertWithTitle(alertTitle: "\(description)\n\ncheck logs for more info")
-            print("\(description)\n\(error.errorInfo)\n\(error)\n")
-        } else {
-            presentAlertWithTitle(alertTitle: "\(description)\n\ncheck logs for more info")
-            print("\(description)\n\(object)\n")
-        }
-    }
-}
-
-extension UIButton {
-    convenience init(title: String, primaryAction: UIAction) {
-        var configuration: UIButton.Configuration = .borderedProminent()
-        configuration.title = title
-        self.init(configuration: configuration, primaryAction: primaryAction)
-    }
-}
-
-extension UITextField {
-    convenience init(title: String, primaryAction: UIAction, keyboardType: UIKeyboardType = .default, password: Bool = false) {
-        self.init(frame: .zero, primaryAction: primaryAction)
-        borderStyle = .roundedRect
-        placeholder = title
-        autocorrectionType = .no
-        autocapitalizationType = .none
-        self.keyboardType = keyboardType
-        if password == true {
-            textContentType = .password
-        }
-    }
 }
 
 extension UIStackView {

Stytch/DemoApps/Shared/Extensions.swift

@@ -0,0 +1,110 @@
+import Foundation
+import StytchCore
+import UIKit
+
+enum TextFieldAlertError: Error {
+    case emptyString
+}
+
+extension UIViewController {
+    func presentAlertWithTitle(
+        alertTitle: String,
+        buttonTitle: String = "OK",
+        completion: (() -> Void)? = nil
+    ) {
+        let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
+        let okAction = UIAlertAction(title: buttonTitle, style: .cancel) { _ in
+            completion?()
+        }
+        alertController.addAction(okAction)
+        present(alertController, animated: true)
+    }
+
+    func presentTextFieldAlertWithTitle(
+        alertTitle: String,
+        buttonTitle: String = "Submit",
+        cancelButtonTitle: String = "Cancel",
+        completion: ((String?) -> Void)? = nil
+    ) {
+        let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
+        alertController.addTextField()
+
+        let submitAction = UIAlertAction(title: buttonTitle, style: .default) { [unowned alertController] _ in
+            if let text = alertController.textFields?[0].text {
+                completion?(text)
+            }
+        }
+        alertController.addAction(.init(title: cancelButtonTitle, style: .cancel, handler: { _ in
+            completion?(nil)
+        }))
+
+        alertController.addAction(submitAction)
+        present(alertController, animated: true)
+    }
+
+    @MainActor
+    func presentTextFieldAlertWithTitle(
+        alertTitle: String,
+        buttonTitle: String = "Submit",
+        cancelButtonTitle: String = "Cancel",
+        keyboardType: UIKeyboardType = .default
+    ) async throws -> String? {
+        try await withCheckedThrowingContinuation { continuation in
+            let alertController = UIAlertController(title: alertTitle, message: nil, preferredStyle: .alert)
+            alertController.addTextField()
+            alertController.textFields?[0].keyboardType = keyboardType
+
+            let submitAction = UIAlertAction(title: buttonTitle, style: .default) { [unowned alertController] _ in
+                if let text = alertController.textFields?[0].text, text.isEmpty == false {
+                    continuation.resume(returning: text)
+                } else {
+                    continuation.resume(returning: nil)
+                }
+            }
+
+            alertController.addAction(submitAction)
+
+            alertController.addAction(.init(title: cancelButtonTitle, style: .cancel, handler: { _ in
+                continuation.resume(returning: nil)
+            }))
+
+            present(alertController, animated: true)
+        }
+    }
+
+    func presentErrorWithDescription(error: Error, description: String) {
+        presentAlertWithTitle(alertTitle: "\(description) - \(error.errorInfo)")
+    }
+
+    func presentAlertAndLogMessage(description: String, object: Any) {
+        if let error = object as? Error {
+            presentAlertWithTitle(alertTitle: "\(description)\n\ncheck logs for more info")
+            print("\(description)\n\(error.errorInfo)\n\(error)\n")
+        } else {
+            presentAlertWithTitle(alertTitle: "\(description)\n\ncheck logs for more info")
+            print("\(description)\n\(object)\n")
+        }
+    }
+}
+
+extension UIButton {
+    convenience init(title: String, primaryAction: UIAction) {
+        var configuration: UIButton.Configuration = .borderedProminent()
+        configuration.title = title
+        self.init(configuration: configuration, primaryAction: primaryAction)
+    }
+}
+
+extension UITextField {
+    convenience init(title: String, primaryAction: UIAction, keyboardType: UIKeyboardType = .default, password: Bool = false) {
+        self.init(frame: .zero, primaryAction: primaryAction)
+        borderStyle = .roundedRect
+        placeholder = title
+        autocorrectionType = .no
+        autocapitalizationType = .none
+        self.keyboardType = keyboardType
+        if password == true {
+            textContentType = .password
+        }
+    }
+}

Stytch/DemoApps/StytchBiometrics/AppDelegate.swift

@@ -0,0 +1,23 @@
+import UIKit
+
+@main
+class AppDelegate: UIResponder, UIApplicationDelegate {
+    func application(_: UIApplication, didFinishLaunchingWithOptions _: [UIApplication.LaunchOptionsKey: Any]?) -> Bool {
+        // Override point for customization after application launch.
+        true
+    }
+
+    // MARK: UISceneSession Lifecycle
+
+    func application(_: UIApplication, configurationForConnecting connectingSceneSession: UISceneSession, options _: UIScene.ConnectionOptions) -> UISceneConfiguration {
+        // Called when a new scene session is being created.
+        // Use this method to select a configuration to create the new scene with.
+        UISceneConfiguration(name: "Default Configuration", sessionRole: connectingSceneSession.role)
+    }
+
+    func application(_: UIApplication, didDiscardSceneSessions _: Set<UISceneSession>) {
+        // Called when the user discards a scene session.
+        // If any sessions were discarded while the application was not running, this will be called shortly after application:didFinishLaunchingWithOptions.
+        // Use this method to release any resources that were specific to the discarded scenes, as they will not return.
+    }
+}

Stytch/DemoApps/StytchBiometrics/Assets.xcassets/AccentColor.colorset/Contents.json

@@ -0,0 +1,11 @@
+{
+  "colors" : [
+    {
+      "idiom" : "universal"
+    }
+  ],
+  "info" : {
+    "author" : "xcode",
+    "version" : 1
+  }
+}

Stytch/DemoApps/StytchBiometrics/Assets.xcassets/AppIcon.appiconset/App icon1024x1024 1.png

@@ -0,0 +1,38 @@
+{
+  "images" : [
+    {
+      "filename" : "App icon1024x1024.png",
+      "idiom" : "universal",
+      "platform" : "ios",
+      "size" : "1024x1024"
+    },
+    {
+      "appearances" : [
+        {
+          "appearance" : "luminosity",
+          "value" : "dark"
+        }
+      ],
+      "filename" : "App icon1024x1024 1.png",
+      "idiom" : "universal",
+      "platform" : "ios",
+      "size" : "1024x1024"
+    },
+    {
+      "appearances" : [
+        {
+          "appearance" : "luminosity",
+          "value" : "tinted"
+        }
+      ],
+      "filename" : "App icon1024x1024 2.png",
+      "idiom" : "universal",
+      "platform" : "ios",
+      "size" : "1024x1024"
+    }
+  ],
+  "info" : {
+    "author" : "xcode",
+    "version" : 1
+  }
+}