Class: Keyring::Backend::MacosxKeychain

Inherits:

Keyring::Backend

• Object
• Keyring::Backend
• Keyring::Backend::MacosxKeychain

Defined in:

lib/keyring/backends/macosx_keychain.rb

Instance Attribute Summary

• #security ⇒ Object

  Returns the value of attribute security.

Instance Method Summary

• #delete_password(service, username) ⇒ Object
• #get_password(service, username) ⇒ Object
• #initialize ⇒ MacosxKeychain constructor

  A new instance of MacosxKeychain.

• #priority ⇒ Object
• #security_command(operation) ⇒ Object
• #set_password(service, username, password) ⇒ Object
• #supported? ⇒ Boolean

Methods inherited from Keyring::Backend

create, register_implementation

Constructor Details

#initialize ⇒ MacosxKeychain

Returns a new instance of MacosxKeychain.

# File 'lib/keyring/backends/macosx_keychain.rb', line 13

def initialize
  @security = '/usr/bin/security'
end

Instance Attribute Details

#security ⇒ Object

Returns the value of attribute security.

# File 'lib/keyring/backends/macosx_keychain.rb', line 12

def security
  @security
end

Instance Method Details

#delete_password(service, username) ⇒ Object

# File 'lib/keyring/backends/macosx_keychain.rb', line 73

def delete_password(service, username)
  cmd = [
    @security,
    security_command('delete'),
    '-s', service,
    '-a', username,
  ]
  Open3.popen3(*cmd) do |stdin, stdout, stderr, wait_thr|
    case wait_thr.value.exitstatus
    when 0
      return true
    when 44
      return false
    else
      raise
    end
  end
end

#get_password(service, username) ⇒ Object

# File 'lib/keyring/backends/macosx_keychain.rb', line 42

def get_password(service, username)
  password = nil
  cmd = [
    @security,
    security_command('find'),
    '-s', service,
    '-a', username,
    '-g',
    # '-w',
  ]
  Open3.popen3(*cmd) do |stdin, stdout, stderr, wait_thr|
    stderr.each do |line|
      if line =~ /\Apassword: (.*)/
        pw = $1
        if pw == ''
          password = pw
        elsif pw =~ /\A"(.*)"\z/
          password = $1
        elsif pw =~ /\A0x(\h+)/
          password = [$1].pack("H*")
        end
      end
    end
    # security exits with 44 if the entry does not exist.  We just want to return
    # nil rather than raise an exception in that case.
    if ![0,44].include?(wait_thr.value.exitstatus)
      raise
    end
  end
  password
end

#priority ⇒ Object

# File 'lib/keyring/backends/macosx_keychain.rb', line 19

def priority
  1
end

#security_command(operation) ⇒ Object

# File 'lib/keyring/backends/macosx_keychain.rb', line 23

def security_command(operation)
  "#{operation}-generic-password"
end

#set_password(service, username, password) ⇒ Object

# File 'lib/keyring/backends/macosx_keychain.rb', line 27

def set_password(service, username, password)
  cmd = [
    @security,
    security_command('add'),
    '-s', service,
    '-a', username,
    # FIXME: password in command line, sad panda!
    '-w', password,
    '-U',
  ]
  system(*cmd)
  if !$?.success?
    raise
  end
end

#supported? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/keyring/backends/macosx_keychain.rb', line 16

def supported?
  File.exist?(@security) && `#{@security} -h`.include?('find-generic-password')
end