A simple wrapper for the iOS Keychain to allow you to use it in a similar fashion to User Defaults. Written in Swift.
Provides singleton instance that is setup to work for most needs. Use
KeychainWrapper.standard to access the singleton instance.
If you need to customize the keychain access to use a custom identifier or access group, you can create your own instance instead of using the singleton instance.
By default, the Keychain Wrapper saves data as a Generic Password type in the iOS Keychain. It saves items such that they can only be accessed when the app is unlocked and open. If you are not familiar with the iOS Keychain usage, this provides a safe default for using the keychain.
Users that want to deviate from this default implementation, now can do so in in version 2.0 and up. Each request to save/read a key value now allows you to specify the keychain accessibility for that key.
Add a string value to keychain:
let saveSuccessful: Bool = KeychainWrapper.standard.set("Some String", forKey: "myKey")
Retrieve a string value from keychain:
let retrievedString: String? = KeychainWrapper.standard.string(forKey: "myKey")
Remove a string value from keychain:
let removeSuccessful: Bool = KeychainWrapper.standard.removeObject(forKey: "myKey")
When the Keychain Wrapper is used, all keys are linked to a common identifier for your app, called the service name. By default this uses your main bundle identifier. However, you may also change it, or store multiple items to the keycahin under different identifiers.
To share keychain items between your applications, you may specify an access group and use that same access group in each application.
To set a custom service name identifier or access group, you may now create your own instance of the keychain wrapper as follows:
let uniqueServiceName = "customServiceName" let uniqueAccessGroup = "sharedAccessGroupName" let customKeychainWrapperInstance = KeychainWrapper(serviceName: uniqueServiceName, accessGroup: uniqueAccessGroup)
The custom instance can then be used in place of the shared instance or static accessors:
let saveSuccessful: Bool = customKeychainWrapperInstance.set("Some String", forKey: "myKey") let retrievedString: String? = customKeychainWrapperInstance.string(forKey: "myKey") let removeSuccessful: Bool = customKeychainWrapperInstance.removeObject(forKey: "myKey")
By default, all items saved to keychain can only be accessed when the device is unlocked. To change this accessibility, an optional
withAccessibility param can be set on all requests. The enum
KeychainItemAccessibilty provides an easy way to select the accessibility level desired:
KeychainWrapper.standard.set("Some String", forKey: "myKey", withAccessibility: .AfterFirstUnlock)
You can use CocoaPods to install SwiftKeychainWrapper by adding it to your
use_frameworks! platform :ios, '8.0' target 'target_name' do pod 'SwiftKeychainWrapper' end
To use the keychain wrapper in your app, import SwiftKeychainWrapper into the file(s) where you want to use it.
You can use Carthage to install SwiftKeychainWrapper by adding it to your
github "jrendel/SwiftKeychainWrapper" ~> 3.0
github "jrendel/SwiftKeychainWrapper" == 2.1.1
Download and drop
KeychainItemAcessibility.swift into your project.
- Updates for Swift 3.1
- Added a host app for the unit tests to get around the issue with keychain access not working the same on iOS 10 simulators
- Minor update to readme instructions
- Swift 3.0 update. Contains breaking API changes. 2.2.0 and 2.2.1 are now rolled into 3.0
2.2.1 (Removed from Cocoapods)
- Syntax updates to be more Swift 3 like
2.2 (Removed from Cocoapods)
- Updated to support Swift 3.0
- Remove deprecated functions (static access)
- Updated to support Swift 2.3
- Further changes to more closely align the API with how
NSUserDefaultsworks. Access to the default implementation is now done through a singleton instance. Static accessors have been included that wrap this shared instance to maintain backwards compatibility. These will be removed in the next update
- Ability to change keychain service name identifier and access group on the shared instance has been deprecated. Users now have the ability to create their own instance of the keychain if they want to customize these.
- Addtional options have been provided to alter the keychain accessibility for each key value saved.
- Further changes to more closely align the API with how
- Update for Swift 2.0
- Update License info. Merged Pull Request with Carthage support.
- Update for Swift 1.2
- Determined that once provisioned correctly for access groups, using KeychainWrapper on the simulator with access groups works. So I removed the simulator related check and unit tests previously added.
Support for Access Groups
SwiftKeychainWrapperExample has been updated to show usage with an Access Group: https://github.com/jrendel/SwiftKeychainWrapperExample
Access Groups do not work on the simulator. Apps that are built for the simulator aren't signed, so there's no keychain access group for the simulator to check. This means that all apps can see all keychain items when run on the simulator. Attempting to set an access group will result in a failure when attempting to Add or Update keychain items. Because of this, the Keychain Wrapper detects if it is being using on a simulator and will not set an access group property if one is set. This allows the Keychain Wrapper to still be used on the simulator for development of your app. To properly test Keychain Access Groups, you will need to test on a device.
This version converts the project to a proper Swift Framework and adds a podspec file to be compatible with the latest CocoaPods pre-release, which now supports Swift.
To see an example of usage with CocoaPods, I've created the repo SwiftKeychainWrapperExample: https://github.com/jrendel/SwiftKeychainWrapperExample
- Updated for Xcode 6.1
I've been using an Objective-C based wrapper in my own projects for the past couple years. The original library I wrote for myself was based on the following tutorial:
This is a rewrite of that code in Swift.