I am experimenting with user authentication methods (more precisely, fingerprints), and I am also learning Android KeyStore. I am trying to create a system that allows the user to configure a fingerprint that will register the user on my server. Currently, the server requires a POST request, which requires a valid username / password.
I have a few questions about how this will work, because I'm just starting to understand how the APIs work Fingerprintand KeyStore.
1) When I request a fingerprint and get a successful response (which is easy enough to do) - How can I translate this into a valid username / password so that I can start my POST request? Do I need to store username and password in KeyStore?
2) How exactly will it look when I set up KeyStore? Do I need to set an alias for username and password? "myapp_user", "myapp_pass", for example?
3) How to save values ββfor username and password in KeyStore?
4) Do I even approach this problem correctly? Is there a better way to reliably attach a fingerprint to a combination of username and password?
Thanks for the help!