Class: Xcode::Keychain

Inherits:

Object

• Object
• Xcode::Keychain

Defined in:

lib/xcode/keychain.rb

Constant Summary

TEMP_PASSWORD =

"build_keychain_password"

Instance Attribute Summary

• #name ⇒ Object

  Returns the value of attribute name.

• #path ⇒ Object

  Returns the value of attribute path.

Class Method Summary

• .create(path, password) {|kc| ... } ⇒ Xcode::Keychain

  Create a new keychain with the given name and password.

• .login {|kc| ... } ⇒ Xcode::Keychain

  Opens the default login.keychain for current user.

• .temp ⇒ Object

  Creates a keychain with the given name that lasts for the duration of the provided block.

Instance Method Summary

• #delete ⇒ Object

  Remove the keychain from the filesystem.

• #identities ⇒ Array<String>

  Returns a list of identities in the keychain.

• #import(cert, password) ⇒ Object

  Import the .p12 certificate file into the keychain using the provided password.

• #initialize(path) {|_self| ... } ⇒ Keychain constructor

  Open the keychain with the specified name.

• #lock ⇒ Object

  Secure the keychain.

• #unlock(password) ⇒ Object

  Unlock the keychain using the provided password.

Constructor Details

#initialize(path) {|_self| ... } ⇒ Keychain

Open the keychain with the specified name. It is assumed that keychains reside in the ~/Library/Keychains directory

Parameters:

• the (String) —

  name of the keychain

Yields:

• (_self)

Yield Parameters:

• _self (Xcode::Keychain) —

  the object that the method was called on

# File 'lib/xcode/keychain.rb', line 59

def initialize(path)
  @path = File.expand_path path
  @name = File.basename path
  
  yield(self) if block_given?
end

Instance Attribute Details

#name ⇒ Object

Returns the value of attribute name.

# File 'lib/xcode/keychain.rb', line 49

def name
  @name
end

#path ⇒ Object

Returns the value of attribute path.

# File 'lib/xcode/keychain.rb', line 49

def path
  @path
end

Class Method Details

.create(path, password) {|kc| ... } ⇒ Xcode::Keychain

Create a new keychain with the given name and password

Parameters:

• the (String) —

  name for the new keychain

• the (String) —

  password for the new keychain

Yields:

• (kc)

Returns:

• (Xcode::Keychain) —

  an object representing the new keychain

# File 'lib/xcode/keychain.rb', line 133

def self.create(path, password)
  cmd = []
  cmd << "security"
  cmd << "create-keychain"
  cmd << "-p #{password}"
  cmd << "\"#{path}\""
  Xcode::Shell.execute(cmd)
  
  kc = Xcode::Keychain.new(path)
  yield(kc) if block_given?
  kc
end

.login {|kc| ... } ⇒ Xcode::Keychain

Opens the default login.keychain for current user

Yields:

• (kc)

Returns:

• (Xcode::Keychain) —

  the current user’s login keychain

# File 'lib/xcode/keychain.rb', line 187

def self.login
  kc = Xcode::Keychain.new("~/Library/Keychains/login.keychain")
  yield(kc) if block_given?
  kc
end

.temp ⇒ Object

Creates a keychain with the given name that lasts for the duration of the provided block.

The keychain is deleted even if the block throws an exception.

If no block is provided, the temporary keychain is returned and it is deleted on system exit

# File 'lib/xcode/keychain.rb', line 164

def self.temp
  kc = Xcode::Keychain.create("/tmp/xcoder#{Time.now.to_i}", TEMP_PASSWORD)
  kc.unlock(TEMP_PASSWORD)
  
  if !block_given?
    at_exit do
      kc.delete
    end
    kc
  else
    begin
      yield(kc)
    ensure
      kc.delete
    end
  end
end

Instance Method Details

#delete ⇒ Object

Remove the keychain from the filesystem

FIXME: dangerous

# File 'lib/xcode/keychain.rb', line 151

def delete
  cmd = []
  cmd << "security"
  cmd << "delete-keychain \"#{@path}\""
  Xcode::Shell.execute(cmd)
end

#identities ⇒ Array<String>

Returns a list of identities in the keychain.

Returns:

• (Array<String>) —

  a list of identity names

# File 'lib/xcode/keychain.rb', line 87

def identities
  names = []
  cmd = []
  cmd << "security"
  cmd << "find-certificate"
  cmd << "-a"
  cmd << "\"#{@path}\""
  data = Xcode::Shell.execute(cmd, false).join("")
  data.scan /\s+"labl"<blob>="([^"]+)"/ do |m|
    names << m[0]
  end
  names
end

#import(cert, password) ⇒ Object

Import the .p12 certificate file into the keychain using the provided password

Parameters:

• the (String) —

  path to the .p12 certificate file

• the (String) —

  password to open the certificate file

# File 'lib/xcode/keychain.rb', line 72

def import(cert, password)
  cmd = []
  cmd << "security"
  cmd << "import '#{cert}'"
  cmd << "-k \"#{@path}\""
  cmd << "-P #{password}"
  cmd << "-T /usr/bin/codesign"
  Xcode::Shell.execute(cmd)
end

#lock ⇒ Object

Secure the keychain

# File 'lib/xcode/keychain.rb', line 104

def lock
  cmd = []
  cmd << "security"
  cmd << "lock-keychain"
  cmd << "\"#{@path}\""
  Xcode::Shell.execute(cmd)
end

#unlock(password) ⇒ Object

Unlock the keychain using the provided password

Parameters:

• the (String) —

  password to open the keychain

# File 'lib/xcode/keychain.rb', line 117

def unlock(password)
  cmd = []
  cmd << "security"
  cmd << "unlock-keychain"
  cmd << "-p #{password}"
  cmd << "\"#{@path}\""
  Xcode::Shell.execute(cmd)
end