# Biometric authentication

Mini Program through SOTER The following biometric authentication methods are available.

Currently only fingerprint recognition is supported. Device supported biometric authentication methods can be used wx.checkIsSupportSoterAuthentication query

# Call process

# Process Steps Dxplaination

  1. call wx.startSoterAuthentication, Get resultJSON and resultJSONSignature

  2. (Optional) Signature verification. this place resultJSONSignature use SHA256withRSA/PSS Check as a signature algorithm. This formula is mathematically defined as follows: bool Result = verify(Original string used for signature, signature string, public key to verify signature)

  3. WeChat provides a background interface for trusted key verification services, and WeChat will ensure the correctness and reliability of the verification results returned by the interface. Android root If the interface has the above characteristics (will return whether root case security is guaranteed).

Interface Address:

POST http://api.weixin.qq .com /cgi-bin/soter/verify_signature?access_token=%access_Token

post Data Content (JSON Code):

{"openid":"$openid,"  "json_string" : "$resultJSON", "json_signature" : "$resultJSONSignature"  }

Request to return data content (JSON Code):

// Verify successful return
{"is_ok":true}
// Validation failure return
{"is_ok":false}
// Failed interface call
{"errcode":"xxx,"errmsg":"xxxxx"}