This is a fork of the node-keytar package that is designed to run as a standalone C++ library outside of a Node.js environment.
This package is designed to add, get, find, replace, and delete passwords in the system's keychain. On OS X the passwords are managed by the Keychain, on Linux they are managed by GNOME Keyring, and on Windows they are managed by Credential Vault.
The module is currently tested1 on the following platforms:
| Windows | OS X/Linux |
|---|---|
 |
On Windows and OS X, all dependencies are met by the system.
On Linux, you need to ensure that the GNOME Keyring development package is installed. On Ubuntu systems, do:
sudo apt-get install libgnome-keyring-dev
On Red Hat systems, do:
sudo yum install gnome-keyring-devel
For all other Linux systems, consult your package manager.
The build system is CMake-based, with standard behavior. To build, simply do something like:
mkdir build
cd build
cmake ..
make
Adjust for your particular platform, generator, and desired settings. The build system supports the following options:
- BUILD_SHARED_LIBS: Whether to build libuv as a shared library (
ONby default) or a static library (OFF) - BUILD_TESTS: Whether or not to build libuv tests (
ONby default) - BIN_INSTALL_DIR: The subdirectory of
CMAKE_INSTALL_PREFIXwhich will be used to install runtime binaries (binby default) (note that, on Windows, CMake considers.dllfiles to be runtime binaries, and will stick them in the binary install directory, while the corresponding export.libfiles will be stuck in the library install directory) - LIB_INSTALL_DIR: The subdirectory of
CMAKE_INSTALL_PREFIXwhich will be used to install libraries (libby default) - INCLUDE_INSTALL_DIR: The subdirectory of
CMAKE_INSTALL_PREFIXwhich will be used to install include headers (includeby default)
These options can be controlled by CMake's -D command line flags or by using
ccmake to edit the cache.
An install target is also generated that follows standard CMake conventions.
The API is exposed via the header file keytar.h. The "replace" functionality
implemented in node-keytar is simply a convenience wrapper, and is not
replicated here.
Example usage:
// Standard includes
#include <string>
#include <iostream>
// keytar includes
#include <keytar.h>
int main() {
// Test values
const std::string service("keytar-test-service");
const std::string account("keytar@example.org");
const std::string password("$uP3RseCr1t!");
const std::string new_password("Ub3R$3CrE7!?!");
// Add a password
if (!keytar::AddPassword(service, account, password)) {
std::cerr << "error: unable to add password" << std::endl;
return 1;
}
// Get a password
std::string retrieved;
if (!keytar::GetPassword(service, account, &retrieved)) {
std::cerr << "error: unable to get password" << std::endl;
return 1;
}
// Find a password
std::string found;
if (!keytar::FindPassword(service, &found)) {
std::cerr << "error: unable to find password" << std::endl;
return 1;
}
// Replace a password
if (!keytar::ReplacePassword(service, account, new_password)) {
std::cerr << "error: unable to replace password" << std::endl;
return 1;
}
// Delete a password
if (!keytar::DeletePassword(service, account)) {
std::cerr << "error: unable to delete password" << std::endl;
return 1;
}
// All done
return 0;
}
This fork will attempt to keep in sync with node-keytar, and tags will be
duplicated but suffixed with -standalone. The code remains largely
unmodified, but some modifications were necessary to make shared libraries work.
The strategy for bringing in upstream changes is as follows:
- First, make sure that the node-keytar repository is available as a remote for
your copy of keytar. You can check this by running
git remote -vand seeing if a remote namedupstreamwith the correct location appears in the output. If not, you just need to rungit remote add upstream https://github.com/atom/node-keytar.git. You can, of course, use a different remote name thanupstream, but the rest of these instructions will operate under the assumption that this is the name you have chosen. - Fetch a copy of the upstream changes with
git fetch upstreamand the upstream tags withgit fetch --tags upstream. - Merge in upstream changes by switching to keytar's
masterbranch and runninggit merge upstream/master. - It's very likely that you'll have conflicts, which will generally be of the
following types:
- Upstream modifications to files that don't exist in keytar because they
have been deleted. If these files are not necessary, simply
git rmthem from the conflicted merge state. - Upstream modifications to files that do exist in keytar but have been
changed by both projects. In this case you have to handle the conflicts
like any other, and then
git addthem.
- Upstream modifications to files that don't exist in keytar because they
have been deleted. If these files are not necessary, simply
- Once you've sorted out any merge conflicts, simply run
git commitand then push. If, by some miracle, you didn't have any merge conflicts, then congratulations, you can just continue to the next step without any conflict resolution. - Push the merged changes with
git pushand push upstream tags withgit push --tags. - Make sure CI tests pass.
- If any node-keytar tags have been added, these should ideally be mirrored in
keytar with the
-standalonesuffix. Depending on how lazy the maintainer is, multiple tags may have been added in between upstream merges, but unless you do a merge at each upstream tag, you'll only be able to create keytar tags corresponding to the latest upstream tag, because the intermediate tags won't have any corresponding merged commit in keytar. As long as we keep up with things, this shouldn't be a problem. Even if we skip one or two upstream releases, no biggie.