Mac Users Finally Get Per-App Locks With Free FaceGate Tool

FaceGate brings per-app locking to macOS using on-device face recognition, Touch ID or password. The free open-source tool fills a gap Apple left open. It processes everything locally with strong encryption and liveness checks. Early reviews praise its privacy focus and ease of use.
Mac Users Finally Get Per-App Locks With Free FaceGate Tool
Written by Victoria Mossi

Mac owners have long complained about one glaring gap in Apple’s desktop security. While iPhones gained the ability to lock individual apps behind Face ID or a passcode in iOS 18, macOS offered no native equivalent. Users could lock the entire screen or set broad Screen Time restrictions. Yet nothing stopped a roommate or colleague from opening a specific banking app or private notes folder once the machine was unlocked.

That frustration ends with FaceGate. The free, open-source utility lets anyone lock chosen applications on a Mac and unlock them with facial recognition, Touch ID or a password. All processing stays on the device. No data heads to the cloud.

Digital Trends highlighted the app just as it gained attention. Writer Rachit Agarwal described his own reluctance to share his Mac. He tested FaceGate and found it cured much of his privacy paranoia. The tool intercepts app launches in real time. It demands authentication before granting access. Short. Simple. Effective for everyday protection.

Developer Dweep Desai built FaceGate after noticing the same shortcoming. His GitHub repository calls it the world’s first Face Authentication enabled macOS app-locker. The code sits at github.com/dweep-desai/FaceGate-Mac. As of late June 2026 the project carried 256 stars. Version 1.2.0 arrived days earlier. Desai emphasizes three points in the documentation: 100 percent free, 100 percent open source, 100 percent local.

Installation takes little effort. The recommended route runs a one-line Terminal command that pulls the latest release, drops it into the Applications folder and clears Apple’s Gatekeeper quarantine. Users can also download a DMG from the releases page or install via a custom Homebrew cask. Each method ends with the same xattr command to remove the quarantine flag. Once running, FaceGate lives in the menu bar. No dock icon. No distractions.

Face recognition relies on the Apple Neural Engine inside M-series chips. The pipeline generates face embeddings entirely offline. Those embeddings receive AES-256-GCM encryption before storage. Keys stay inside the macOS Keychain. Users can enroll up to three faces or alternate appearances. The system adds a liveness check. It prompts the person to turn their head left, right or tilt. Photos and simple videos fail the test.

But. The built-in FaceTime camera offers only 2D sensing. FaceGate therefore positions itself as defense against casual snooping rather than sophisticated spoofing attacks. Desai notes this limit plainly in the README. He recommends Touch ID where available. Password fallback works on Macs without biometric hardware such as the Mac mini. Sensitivity adjusts. A default similarity threshold of 0.65 balances convenience against false rejects.

Locking rules add real flexibility. Administrators set per-app timers that count from last successful unlock or from loss of focus. Apps can stay unlocked indefinitely or lock the instant they lose foreground. Automatic rules trigger on sleep, screen lock or wake. Schedules let users define hours when Face Unlock disables and the system falls back to Touch ID or password. Useful in low light or public spaces.

Tamper protection raises the bar. FaceGate makes its own bundle immutable. Uninstalling or quitting requires admin privileges and re-authentication. An emergency global hotkey can kill the process instantly if needed. Menu-bar controls show locked and unlocked apps at a glance. Extra options boost display brightness or activate Center Stage to improve camera performance during authentication.

Privacy stands central. Zero telemetry. No accounts. No subscriptions. No network requests at all. Passwords hash with SHA-256 and a random 32-byte salt before Keychain storage. Facial data can delete with one command. These choices separate FaceGate from many commercial alternatives that phone home or bundle analytics.

Other tools already exist. Cisdem reviewed several in an article updated in June 2026. AppLocker from the Mac App Store offers password and Touch ID protection. Its free tier limits users to one app. Paid plans unlock multiples. The software sometimes stops working, according to the review, though the developer responds to support requests. Activity logs record every access attempt. Extra security modules attempt to block bypasses.

AppCrypt, also from Cisdem, adds scheduling, website blocking and screenshot capture on failed attempts. It provides a free download yet targets broader productivity control rather than pure biometric app locking. Built-in macOS options remain blunt instruments. Screen Time can enforce one-minute minimum limits with a passcode, but the experience feels punitive. Disk Utility lets users encrypt a DMG container and move apps inside it. That approach fails for system utilities or apps that refuse relocation.

Recent coverage shows growing interest. A French technology blog noted FaceGate’s arrival within hours of the Digital Trends piece. Korben.info published on July 1, 2026, calling the utility a small open-source third-party tool that finally adds per-app locking with face unlock. The post compared it to MakLock, another open-source project focused on Touch ID, Apple Watch and trusted networks. MakLock lacks FaceGate’s facial recognition but claims status as the only open-source app locker before Desai’s release.

Reddit threads in r/macapps and r/mac echo the demand. One post from a day earlier carried the title “I built FaceGate — World’s first macOS app locker with on-device face recognition.” Users asked about compatibility with the latest macOS releases, external camera support and whether the tool survives software updates. Early feedback praises the local-only design. Some worry about the software-based face system in high-security environments. Others simply want the ability to lock Messages or Photos without locking the whole computer.

FaceGate does not pretend to replace enterprise MDM solutions or hardware-level protections. It targets individuals who share a family Mac, work in open offices or simply dislike leaving sensitive apps exposed. The menu-bar agent runs quietly. Authentication happens quickly on Apple Silicon. Multi-display setups receive full support so a locked app stays protected even when dragged to a second monitor.

Apple has given no public signal that native per-app locking will arrive in macOS 16 or beyond. The company tightened biometric requirements for Apple ID changes years ago. It expanded Face ID use across iOS. Desktop users still wait. In the meantime developers like Desai fill the void with transparent, auditable code.

Anyone can inspect the source. The MIT license invites contributions. Future updates could add depth-camera support if Apple opens new APIs or improves external hardware compatibility. For now the combination of real-time interception, on-device neural processing and strong tamper resistance delivers a practical answer to a years-old request.

Security experts will remind users that no software lock survives physical access forever. A determined person with enough time and tools can bypass most consumer protections. FaceGate raises the effort required. It keeps honest people honest. And for many Mac users that improvement feels overdue.

Downloads and documentation live on the GitHub page. The project site at facegate-applocker.vercel.app offers a clean overview. Early adopters report smooth experiences on M1 through M4 machines running macOS 14 and later. Camera permissions must grant once. After that FaceGate operates without further prompts.

The arrival of this tool highlights a broader pattern. When Apple leaves a feature missing for long enough, the open-source community steps in. FaceGate joins a short but growing list of utilities that bring iOS-like conveniences to the Mac without compromising the platform’s focus on privacy and local control. Its timing, just after iOS 18’s app-locking debut, makes the contrast even sharper.

Subscribe for Updates

AppSecurityUpdate Newsletter

Critical application security news and insights developers and security teams need—covering real-world vulnerabilities, emerging risks, and practical remediation without the noise.

By signing up for our newsletter you agree to receive content related to ientry.com / webpronews.com and our affiliate partners. For additional information refer to our terms of service.

Notice an error?

Help us improve our content by reporting any issues you find.

Get the WebProNews newsletter delivered to your inbox

Get the free daily newsletter read by decision makers

Subscribe
Advertise with Us

Ready to get started?

Get our media kit

Advertise with Us