[FEATURE]: System Authentication / Fingerprint Auth (without storing)

[LogGits]

I'd like to be able to use system auth to login (e.g. system password or fingerprint biometric auth). It would need to work such that it doesn't store the data in the app. I saw this for mac but never got a chance to test out/implement.

Loving the app, keep up the great work 🙂

[AndresMorelos]

@LogGits Do you mean auth to the app using Biometric or System auth, and store the data (Invoices, contacts, etc) in a server?

I was reading about it, I can implement the biometric or system-auth, but a password is needed to use as an encryption key (A random salt is generated for more security).

I also read about saving the phrase on the system's keychain, or password management app, but I was able to find some information on how to leak that data from these apps.

https://wojciechregula.blog/post/stealing-macos-apps-keychain-entries/

[LogGits]

@LogGits Do you mean auth to the app using Biometric or System auth, and store the data (Invoices, contacts, etc) in a server?

No, that could be cool in the future but I'm referring to the ability to use the mac's touchid or if that doesnt exist the system password to login to the app (e.g. the same thing that happens when you want to unlock the computer) instead of the Invoncify login form.

[AndresMorelos]

@LogGits I got it, well, I think I need to evaluate this because the login password is used to encrypt/decrypt the data and also the export file.