WebAuthN Biometrics for a subset of users

I want to enable biometrics but only for users with a certain role. For the users not within this role, they should not have the option to enroll in biometrics at all. I can’t find a how to get around this WebAuthN Limitation.

Hi @tomgillthg,

Welcome to the Auth0 Community!

I recommend using a Post-Login Action to conditionally enable WebAuthN Device Biometrics for a subset of users with a certain role.

Here is an example you could use for your use case:

exports.onExecutePostLogin = async (event, api) => {
  if(event.authorization.roles === "Admin"){
    api.authentication.challengeWith({type:'webauthn-platform'})
  }
};

Let me know if you have any questions.

Thanks,
Rueben

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.