Manage Biometric Authentication Settings

• Given a user with biometrics enrolled, when they navigate to authentication settings, then they see their current status as 'Face ID enabled' (iOS) or 'Fingerprint enabled' (Android) with an option to disable
• Given a user who disables biometric authentication in settings, when they confirm the action, then the encrypted token reference is removed from Secure Storage and subsequent app launches go to the BankID/Vipps selection screen
• Given a user without biometrics enrolled, when they navigate to authentication settings, then they see an 'Enable biometric login' option that launches the enrollment flow on tap
• Given a user who re-enrolls biometrics (e.g., after updating fingerprints at OS level), when they complete the new biometric challenge, then the previous token reference is replaced with a fresh encrypted reference
• Given a device where biometrics are not supported or not configured at OS level, when the user views authentication settings, then the biometric section shows 'Face ID / fingerprint not available on this device' with a link to device settings
• Given any change to biometric settings, when the user exits the settings screen, then the new setting is persisted and applied to the next app launch

User control over authentication settings is important for both usability and privacy. Users who change phones, update their biometric data at the OS level, or share a device need a clear path to manage their biometric enrollment. Providing settings management reduces support burden, prevents users from getting stuck with a non-functional biometric setup, and builds user confidence that they are in control of how they access their sensitive account data.

• Biometric Auth Screen ui
• Biometric Auth Service service
• Auth Token Repository data