Account recovery
Last updated
Was this helpful?
Last updated
Was this helpful?
Keyless is able to recover an account from what we refer to as temporary state.
The temporary state is obtained:
from your backend through Keyless Identity Verification Bridge. More in .
from your client app using the Keyless Mobile SDK.
What follows refers to option 2: obtain the temporary state from the Keyless Mobile SDK.
The Keyless temporary state contains all the necessary information to restore an account. It can be created during enrollment and authentication.
To create and use the temporary state Keyless requires the user biometric.
The temporay state internals are not important but you can expect a string similar to the following that you should pass as-is to recover the account:
Use the shouldRetrieveTemporaryState
parameter of the BiomEnrollConfig
or BiomAuthConfig
depending if you want to retrieve the temporary state during enrollment or authencation flows.
Dunring the enrollment flow:
During the authentication flow:
Pass the temporary state during the enrollment flow to recover the account. The temporary state is the one you obtained and stored securely in the previous step.
The account is recovered and it's now possible to authenticate the user.