📄 expo/versions/latest/sdk/local-authentication
File: local-authentication.md | Updated: 11/15/2025
Source: https://docs.expo.dev/versions/latest/sdk/local-authentication
Hide navigation
Search
Ctrl K
Home Guides EAS Reference Learn
Reference version
SDK 54 (latest)
Archive Expo Snack Discord and Forums Newsletter
Expo LocalAuthentication
Ask AI
A library that provides functionality for implementing the Fingerprint API (Android) or FaceID and TouchID (iOS) to authenticate the user with a face or fingerprint scan.
Ask AI
Android
iOS
Bundled version:
~17.0.7
Copy page
expo-local-authentication allows you to use the Biometric Prompt (Android) or FaceID and TouchID (iOS) to authenticate the user with a fingerprint or face scan.
iOS
iOS
The FaceID authentication for iOS is not supported in Expo Go. You will need to create a development build to test FaceID.
Terminal
Copy
- npx expo install expo-local-authentication
If you are installing this in an existing React Native app
, make sure to install expo
in your project.
You can configure expo-local-authentication using its built-in config plugin
if you use config plugins in your project (Continuous Native Generation (CNG)
). The plugin allows you to configure various properties that cannot be set at runtime and require building a new app binary to take effect. If your app does not use CNG, then you'll need to manually configure the library.
Example app.json with config plugin
app.json
Copy
{ "expo": { "plugins": [ [ "expo-local-authentication", { "faceIDPermission": "Allow $(PRODUCT_NAME) to use Face ID." } ] ] } }
Configurable properties
| Name | Default | Description |
| --- | --- | --- |
| faceIDPermission | "Allow $(PRODUCT_NAME) to use Face ID" | Only for: <br><br>iOS<br><br> <br><br>A string to set the NSFaceIDUsageDescription<br> permission message. |
Are you using this library in an existing React Native app?
If you're not using Continuous Native Generation (CNG
) or you're using a native ios project manually, then you need to add NSFaceIDUsageDescription key to your ios/[app]/Info.plist:
Info.plist
Copy
<key>NSFaceIDUsageDescription</key> <string>Allow $(PRODUCT_NAME) to use FaceID</string>
import * as LocalAuthentication from 'expo-local-authentication';
LocalAuthentication.authenticateAsync(options)
Android
iOS
| Parameter | Type |
| --- | --- |
| options(optional) | [LocalAuthenticationOptions](https://docs.expo.dev/versions/latest/sdk/local-authentication#localauthenticationoptions) |
Attempts to authenticate via Fingerprint/TouchID (or FaceID if available on the device).
Note: Apple requires apps which use FaceID to provide a description of why they use this API. If you try to use FaceID on an iPhone with FaceID without providing
infoPlist.NSFaceIDUsageDescriptioninapp.json, the module will authenticate using device passcode. For more information about usage descriptions on iOS, see permissions guide .
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <[LocalAuthenticationResult](https://docs.expo.dev/versions/latest/sdk/local-authentication#localauthenticationresult) >
Returns a promise which fulfils with LocalAuthenticationResult
.
LocalAuthentication.cancelAuthenticate()
Android
Cancels authentication flow.
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <void>
LocalAuthentication.getEnrolledLevelAsync()
Android
iOS
Determine what kind of authentication is enrolled on the device.
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <[SecurityLevel](https://docs.expo.dev/versions/latest/sdk/local-authentication#securitylevel) >
Returns a promise which fulfils with SecurityLevel
.
Note: On Android devices prior to M,
SECRETcan be returned if only the SIM lock has been enrolled, which is not the method thatauthenticateAsyncprompts.
LocalAuthentication.hasHardwareAsync()
Android
iOS
Determine whether a face or fingerprint scanner is available on the device.
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <boolean>
Returns a promise which fulfils with a boolean value indicating whether a face or fingerprint scanner is available on this device.
LocalAuthentication.isEnrolledAsync()
Android
iOS
Determine whether the device has saved fingerprints or facial data to use for authentication.
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <boolean>
Returns a promise which fulfils to boolean value indicating whether the device has saved fingerprints or facial data for authentication.
LocalAuthentication.supportedAuthenticationTypesAsync()
Android
iOS
Determine what kinds of authentications are available on the device.
Returns:
[Promise](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Promise) <[AuthenticationType[]](https://docs.expo.dev/versions/latest/sdk/local-authentication#authenticationtype) >
Returns a promise which fulfils to an array containing AuthenticationTypes
.
Devices can support multiple authentication methods - i.e. [1,2] means the device supports both fingerprint and facial recognition. If none are supported, this method returns an empty array.
BiometricsSecurityLevel
Android
Literal Type: string
Security level of the biometric authentication to allow.
Acceptable values are: 'weak' | 'strong'
LocalAuthenticationError
Android
iOS
Literal Type: string
One of the error values returned by the LocalAuthenticationResult
object.
Acceptable values are: 'not_enrolled' | 'user_cancel' | 'app_cancel' | 'not_available' | 'lockout' | 'no_space' | 'timeout' | 'unable_to_process' | 'unknown' | 'system_cancel' | 'user_fallback' | 'invalid_context' | 'passcode_not_set' | 'authentication_failed'
LocalAuthenticationOptions
Android
iOS
| Property | Type | Description |
| --- | --- | --- |
| biometricsSecurityLevel(optional) | [BiometricsSecurityLevel](https://docs.expo.dev/versions/latest/sdk/local-authentication#biometricssecuritylevel) | Only for: <br><br>Android<br><br> <br><br>Sets the security class of biometric authentication to allow. strong allows only Android Class 3 biometrics. For example, a fingerprint or a 3D face scan. weak allows both Android Class 3 and Class 2 biometrics. Class 2 biometrics are less secure than Class 3. For example, a camera-based face unlock.<br><br>Default:'weak' |
| cancelLabel(optional) | string | Allows customizing the default Cancel label shown. |
| disableDeviceFallback(optional) | boolean | After several failed attempts, the system falls back to the device passcode. This setting allows you to disable this option and instead handle the fallback yourself. This can be preferable in certain custom authentication workflows. This behaviour maps to using the iOS LAPolicyDeviceOwnerAuthenticationWithBiometrics<br> policy rather than the LAPolicyDeviceOwnerAuthentication<br> policy. Defaults to false. |
| fallbackLabel(optional) | string | Only for: <br><br>iOS<br><br> <br><br>Allows to customize the default Use Passcode label shown after several failed authentication attempts. Setting this option to an empty string disables this button from showing in the prompt. |
| promptDescription(optional) | string | Only for: <br><br>Android<br><br> <br><br>A description displayed in the middle of the authentication prompt. |
| promptMessage(optional) | string | A message that is shown alongside the TouchID or FaceID prompt. |
| promptSubtitle(optional) | string | Only for: <br><br>Android<br><br> <br><br>A subtitle displayed below the prompt message in the authentication prompt. |
| requireConfirmation(optional) | boolean | Only for: <br><br>Android<br><br> <br><br>Sets a hint to the system for whether to require user confirmation after authentication. This may be ignored by the system if the user has disabled implicit authentication in Settings or if it does not apply to a particular biometric modality. Defaults to true. |
LocalAuthenticationResult
Android
iOS
Type: object shaped as below:
| Property | Type | Description |
| --- | --- | --- |
| success | true | - |
Or object shaped as below:
| Property | Type | Description |
| --- | --- | --- |
| error | [LocalAuthenticationError](https://docs.expo.dev/versions/latest/sdk/local-authentication#localauthenticationerror) | - |
| success | false | - |
| warning(optional) | string | - |
AuthenticationType
Android
iOS
FINGERPRINT
AuthenticationType.FINGERPRINT = 1
Indicates fingerprint support.
FACIAL_RECOGNITION
AuthenticationType.FACIAL_RECOGNITION = 2
Indicates facial recognition support.
IRIS
Android
AuthenticationType.IRIS = 3
Indicates iris recognition support.
SecurityLevel
Android
iOS
NONE
SecurityLevel.NONE = 0
Indicates no enrolled authentication.
SECRET
SecurityLevel.SECRET = 1
Indicates non-biometric authentication (e.g. PIN, Pattern).
BIOMETRIC_WEAK
SecurityLevel.BIOMETRIC_WEAK = 2
Indicates weak biometric authentication. For example, a 2D image-based face unlock.
There are currently no weak biometric authentication options on iOS.
BIOMETRIC_STRONG
SecurityLevel.BIOMETRIC_STRONG = 3
Indicates strong biometric authentication. For example, a fingerprint scan or 3D face unlock.
Android
The following permissions are added automatically through this library's AndroidManifest.xml:
| Android Permission | Description |
| --- | --- |
| USE_BIOMETRIC | Allows an app to use device supported biometric modalities. |
| USE_FINGERPRINT | > This constant was deprecated in API level 28. Applications should request USE_BIOMETRIC instead |
iOS
The following usage description keys are used by this library:
| Info.plist Key | Description |
| --- | --- |
| NSFaceIDUsageDescription | A message that tells the user why the app is requesting the ability to authenticate with Face ID. |