- Notifications
You must be signed in to change notification settings - Fork124
Golang keychain package for iOS and macOS
License
keybase/go-keychain
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
A library for accessing the Keychain for macOS, iOS, and Linux in Go (golang).
Requires macOS 10.9 or greater and iOS 8 or greater. On Linux, communicates toa provider of the DBUS SecretService spec like gnome-keyring or ksecretservice.
import"github.com/keybase/go-keychain"
The API is meant to mirror the macOS/iOS Keychain API and is not necessarily idiomatic go.
item:=keychain.NewItem()item.SetSecClass(keychain.SecClassGenericPassword)item.SetService("MyService")item.SetAccount("gabriel")item.SetLabel("A label")item.SetAccessGroup("A123456789.group.com.mycorp")item.SetData([]byte("toomanysecrets"))item.SetSynchronizable(keychain.SynchronizableNo)item.SetAccessible(keychain.AccessibleWhenUnlocked)err:=keychain.AddItem(item)iferr==keychain.ErrorDuplicateItem {// Duplicate}
Query for multiple results, returning attributes:
query:=keychain.NewItem()query.SetSecClass(keychain.SecClassGenericPassword)query.SetService(service)query.SetAccount(account)query.SetAccessGroup(accessGroup)query.SetMatchLimit(keychain.MatchLimitAll)query.SetReturnAttributes(true)results,err:=keychain.QueryItem(query)iferr!=nil {// Error}else {for_,r:=rangeresults {fmt.Printf("%#v\n",r) }}
Query for a single result, returning data:
query:=keychain.NewItem()query.SetSecClass(keychain.SecClassGenericPassword)query.SetService(service)query.SetAccount(account)query.SetAccessGroup(accessGroup)query.SetMatchLimit(keychain.MatchLimitOne)query.SetReturnData(true)results,err:=keychain.QueryItem(query)iferr!=nil {// Error}elseiflen(results)!=1 {// Not found}else {password:=string(results[0].Data)}
Delete a generic password item with service and account:
item:=keychain.NewItem()item.SetSecClass(keychain.SecClassGenericPassword)item.SetService(service)item.SetAccount(account)err:=keychain.DeleteItem(item)
There are some convenience methods for generic password:
// Create generic password item with service, account, label, password, access groupitem:=keychain.NewGenericPassword("MyService","gabriel","A label", []byte("toomanysecrets"),"A123456789.group.com.mycorp")item.SetSynchronizable(keychain.SynchronizableNo)item.SetAccessible(keychain.AccessibleWhenUnlocked)err:=keychain.AddItem(item)iferr==keychain.ErrorDuplicateItem {// Duplicate}password,err:=keychain.GetGenericPassword("MyService","gabriel","A label","A123456789.group.com.mycorp")accounts,err:=keychain.GetGenericPasswordAccounts("MyService")// Should have 1 account == "gabriel"err:=keychain.DeleteGenericPasswordItem("MyService","gabriel")iferr==keychain.ErrorItemNotFound {// Not found}
Bindable package inbind. iOS project inios. Run that project to test iOS.
To re-generate framework:
(cd bind && gomobile bind -target=ios -tags=ios -o ../ios/bind.framework)Post issues to:https://github.com/keybase/keybase-issues
About
Golang keychain package for iOS and macOS