chaitya/bio-metric-2fa-bundle

This package is abandoned and no longer maintained. No replacement package was suggested.

Symfony bundle for biometric 2FA using WebAuthn

Maintainers

Details

github.com/Chaity18/biometric-2fa-bundle

Source

Issues

Installs: 10

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 0

Open Issues: 0

Type:symfony-bundle

v1.0.1 2025-05-13 08:59 UTC

Requires

MIT 467093af129e666a274415038692a0570749b89d

  • Chaitya Panchal <chaityapanchal.woop@gmail.com>

This package is auto-updated.

Last update: 2025-05-13 12:48:27 UTC

README

A Symfony bundle to enable secure biometric-based 2FA using WebAuthn (FIDO2).
Supports fingerprint, Face ID, and other platform authenticators across modern browsers.

πŸš€ Features

  • WebAuthn-based 2FA (FIDO2)
  • Register multiple biometric devices per user
  • Seamless post-login verification
  • Easily toggle biometric 2FA per user
  • Works with Symfony 6.3+ and 7.x

πŸ“¦ Installation

composer require vivan/biometric-2fa-bundle

Then enable the bundle (if using Symfony without Flex):

// config/bundles.php
return [
    Biometric2FABundle\Biometric2FABundle::class => ['all' => true],
];

βš™οΈ Configuration

Add this config file to your app:

# config/packages/biometric_2fa.yaml
biometric_2fa:
  rp_id: "yourdomain.com"
  rp_name: "Your App Name"
  attestation_formats: ["packed", "fido-u2f"]

πŸ—ΊοΈ Routes

Import all routes provided by the bundle:

# config/routes.yaml
biometric_2fa:
  resource: '@Biometric2FABundle/Resources/config/routes.yaml'

🧩 Setup in User Entity

Your User class must implement the provided interface and use the trait:

use Biometric2FABundle\Security\BiometricUserInterface;
use Biometric2FABundle\Security\BiometricUserTrait;

class User implements BiometricUserInterface
{
    use BiometricUserTrait;
}

Then run a migration to add the biometric2FAEnabled field.

πŸ’» WebAuthn UI

Register Device

Use the /biometric/register route to let users register a new fingerprint device.

Authenticate

Once registered, users are redirected to /biometric/auth for biometric login after entering credentials.

πŸ“ Files Included

  • Entity/UserDevice – stores WebAuthn credentials
  • Helper/UserDeviceHelper – handles registration and verification logic
  • BiometricController – provides REST endpoints
  • BiometricAuthSubscriber – enforces post-login biometric check
  • Views and JS for:
    • biometrics_auth.html.twig
    • register_device.html.twig
    • settings.html.twig

πŸ” Security Flow

  1. User logs in (normal password)
  2. If biometric 2FA is enabled:
    • Redirects to /biometric/auth
    • Verifies using browser credentials
    • Access granted after success

πŸ“š Resources

πŸ“ƒ License

MIT Β© Vivan – Free to use and modify.