Using biometrics in Private Space

Viewpoint0232

I set up a Private Space and selected "Use device screen lock". But when I install some banking apps in the Private Space it says there are no biometrics saved so I can't use my fingerprint to unlock the banking apps. I then disabled "use device screen lock" and set up the same PIN and fingerprint for the private space. Now, biometrics are available in the apps in the Private Space, but every time I launch an app (any app!) in the Private Space it asks me to confirm with my fingerprint first. So with a banking app I will now need 2 fingerprints (one to start app in PS, one to log in in the app).

Is there any way to not have the PS ask for a fingerprint but still allow the apps in the PS to ask for biometrics if needed?

Ammako

The problem is (likely) that fingerprint cannot be used in BFU state, it requires PIN/Password. "Use device screen lock" uses that PIN/Password, not the AFU biometrics.

This could in theory change, but I don't think this is something GrapheneOS would want to implement, because the initial unlock and decryption of a profile (private space here) should require PIN/Password before a fingerprint could be used. but maybe it could be made so the biometrics data can be shared between main and private spaces, then you could set "use device screen lock" as the unlock method, while the apps would have access to the biometrics.

I don't think there is much you can do as a user right now though.

Viewpoint0232

But is there any option to avoid asking the fingerprint after the first unlock of the Private Space? I've set it to "lock only after device restarts" but that just seems to mean that the apps are visible in the starter

golbinex

Viewpoint0232 It means that Private Space apps are allowed to run in background when locked, however it still requires fingerprint to unlock them. Android 15 is in early stage and maybe more options will be implemented later.