2015-05-20 16:23:04 +00:00
|
|
|
//
|
|
|
|
|
// RNKeychainManager.m
|
|
|
|
|
// RNKeychainManager
|
|
|
|
|
//
|
|
|
|
|
// Created by Joel Arvidsson on 2015-05-20.
|
|
|
|
|
// Copyright (c) 2015 Joel Arvidsson. All rights reserved.
|
|
|
|
|
//
|
|
|
|
|
|
|
|
|
|
#import <Security/Security.h>
|
|
|
|
|
#import "RNKeychainManager.h"
|
2017-01-10 19:35:04 +00:00
|
|
|
#import <React/RCTConvert.h>
|
|
|
|
|
#import <React/RCTBridge.h>
|
|
|
|
|
#import <React/RCTUtils.h>
|
2015-05-20 16:23:04 +00:00
|
|
|
|
|
|
|
|
@implementation RNKeychainManager
|
|
|
|
|
|
|
|
|
|
@synthesize bridge = _bridge;
|
|
|
|
|
RCT_EXPORT_MODULE();
|
|
|
|
|
|
2015-05-29 16:02:15 +00:00
|
|
|
// Messages from the comments in <Security/SecBase.h>
|
|
|
|
|
NSString *messageForError(NSError *error)
|
|
|
|
|
{
|
|
|
|
|
switch (error.code) {
|
|
|
|
|
case errSecUnimplemented:
|
|
|
|
|
return @"Function or operation not implemented.";
|
|
|
|
|
|
|
|
|
|
case errSecIO:
|
|
|
|
|
return @"I/O error.";
|
|
|
|
|
|
|
|
|
|
case errSecOpWr:
|
|
|
|
|
return @"File already open with with write permission.";
|
|
|
|
|
|
|
|
|
|
case errSecParam:
|
|
|
|
|
return @"One or more parameters passed to a function where not valid.";
|
|
|
|
|
|
|
|
|
|
case errSecAllocate:
|
|
|
|
|
return @"Failed to allocate memory.";
|
|
|
|
|
|
|
|
|
|
case errSecUserCanceled:
|
|
|
|
|
return @"User canceled the operation.";
|
|
|
|
|
|
|
|
|
|
case errSecBadReq:
|
|
|
|
|
return @"Bad parameter or invalid state for operation.";
|
|
|
|
|
|
|
|
|
|
case errSecNotAvailable:
|
|
|
|
|
return @"No keychain is available. You may need to restart your computer.";
|
|
|
|
|
|
|
|
|
|
case errSecDuplicateItem:
|
|
|
|
|
return @"The specified item already exists in the keychain.";
|
|
|
|
|
|
|
|
|
|
case errSecItemNotFound:
|
|
|
|
|
return @"The specified item could not be found in the keychain.";
|
|
|
|
|
|
|
|
|
|
case errSecInteractionNotAllowed:
|
|
|
|
|
return @"User interaction is not allowed.";
|
|
|
|
|
|
|
|
|
|
case errSecDecode:
|
|
|
|
|
return @"Unable to decode the provided data.";
|
|
|
|
|
|
|
|
|
|
case errSecAuthFailed:
|
|
|
|
|
return @"The user name or passphrase you entered is not correct.";
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
return error.localizedDescription;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-28 17:08:18 +00:00
|
|
|
NSDictionary * makeError(NSError *error)
|
|
|
|
|
{
|
2015-05-29 16:02:15 +00:00
|
|
|
return RCTMakeAndLogError(messageForError(error), nil, [error dictionaryWithValuesForKeys:@[@"domain", @"code"]]);
|
2015-05-28 17:08:18 +00:00
|
|
|
}
|
|
|
|
|
|
2015-05-20 16:23:04 +00:00
|
|
|
|
2015-05-29 16:25:56 +00:00
|
|
|
RCT_EXPORT_METHOD(setGenericPasswordForService:(NSString*)service withUsername:(NSString*)username withPassword:(NSString*)password callback:(RCTResponseSenderBlock)callback){
|
|
|
|
|
if(service == nil) {
|
|
|
|
|
service = [[NSBundle mainBundle] bundleIdentifier];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassGenericPassword), kSecClass, service, kSecAttrService, kCFBooleanTrue, kSecReturnAttributes, nil];
|
|
|
|
|
|
|
|
|
|
// Remove any old values from the keychain
|
|
|
|
|
OSStatus osStatus = SecItemDelete((__bridge CFDictionaryRef) dict);
|
|
|
|
|
|
|
|
|
|
// Create dictionary of parameters to add
|
|
|
|
|
NSData* passwordData = [password dataUsingEncoding:NSUTF8StringEncoding];
|
|
|
|
|
dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassGenericPassword), kSecClass, service, kSecAttrService, passwordData, kSecValueData, username, kSecAttrAccount, nil];
|
|
|
|
|
|
|
|
|
|
// Try to save to keychain
|
|
|
|
|
osStatus = SecItemAdd((__bridge CFDictionaryRef) dict, NULL);
|
|
|
|
|
|
|
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
|
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
|
|
|
|
return callback(@[makeError(error)]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(@[[NSNull null]]);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RCT_EXPORT_METHOD(getGenericPasswordForService:(NSString*)service callback:(RCTResponseSenderBlock)callback){
|
|
|
|
|
if(service == nil) {
|
|
|
|
|
service = [[NSBundle mainBundle] bundleIdentifier];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassGenericPassword), kSecClass, service, kSecAttrService, kCFBooleanTrue, kSecReturnAttributes, kCFBooleanTrue, kSecReturnData, nil];
|
|
|
|
|
|
|
|
|
|
// Look up server in the keychain
|
|
|
|
|
NSDictionary* found = nil;
|
|
|
|
|
CFTypeRef foundTypeRef = NULL;
|
|
|
|
|
OSStatus osStatus = SecItemCopyMatching((__bridge CFDictionaryRef) dict, (CFTypeRef*)&foundTypeRef);
|
|
|
|
|
|
|
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
|
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
|
|
|
|
return callback(@[makeError(error)]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
found = (__bridge NSDictionary*)(foundTypeRef);
|
|
|
|
|
if (!found) {
|
|
|
|
|
return callback(@[[NSNull null]]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Found
|
|
|
|
|
NSString* username = (NSString*) [found objectForKey:(__bridge id)(kSecAttrAccount)];
|
|
|
|
|
NSString* password = [[NSString alloc] initWithData:[found objectForKey:(__bridge id)(kSecValueData)] encoding:NSUTF8StringEncoding];
|
|
|
|
|
|
|
|
|
|
callback(@[[NSNull null], username, password]);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RCT_EXPORT_METHOD(resetGenericPasswordForService:(NSString*)service callback:(RCTResponseSenderBlock)callback){
|
|
|
|
|
if(service == nil) {
|
|
|
|
|
service = [[NSBundle mainBundle] bundleIdentifier];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassGenericPassword), kSecClass, service, kSecAttrService, kCFBooleanTrue, kSecReturnAttributes, kCFBooleanTrue, kSecReturnData, nil];
|
|
|
|
|
|
|
|
|
|
// Remove any old values from the keychain
|
|
|
|
|
OSStatus osStatus = SecItemDelete((__bridge CFDictionaryRef) dict);
|
|
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
|
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
|
|
|
|
return callback(@[makeError(error)]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(@[[NSNull null]]);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
RCT_EXPORT_METHOD(setInternetCredentialsForServer:(NSString*)server withUsername:(NSString*)username withPassword:(NSString*)password callback:(RCTResponseSenderBlock)callback){
|
|
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassInternetPassword), kSecClass, server, kSecAttrServer, kCFBooleanTrue, kSecReturnAttributes, nil];
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
// Remove any old values from the keychain
|
|
|
|
|
OSStatus osStatus = SecItemDelete((__bridge CFDictionaryRef) dict);
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
// Create dictionary of parameters to add
|
|
|
|
|
NSData* passwordData = [password dataUsingEncoding:NSUTF8StringEncoding];
|
|
|
|
|
dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassInternetPassword), kSecClass, server, kSecAttrServer, passwordData, kSecValueData, username, kSecAttrAccount, nil];
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
// Try to save to keychain
|
|
|
|
|
osStatus = SecItemAdd((__bridge CFDictionaryRef) dict, NULL);
|
2015-05-28 17:08:18 +00:00
|
|
|
|
2015-05-29 16:03:19 +00:00
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
2015-05-20 18:39:52 +00:00
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
2015-05-28 17:08:18 +00:00
|
|
|
return callback(@[makeError(error)]);
|
2015-05-20 18:39:52 +00:00
|
|
|
}
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
callback(@[[NSNull null]]);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RCT_EXPORT_METHOD(getInternetCredentialsForServer:(NSString*)server callback:(RCTResponseSenderBlock)callback){
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassInternetPassword), kSecClass, server, kSecAttrServer, kCFBooleanTrue, kSecReturnAttributes, kCFBooleanTrue, kSecReturnData, nil];
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
// Look up server in the keychain
|
|
|
|
|
NSDictionary* found = nil;
|
2015-05-28 17:10:41 +00:00
|
|
|
CFTypeRef foundTypeRef = NULL;
|
|
|
|
|
OSStatus osStatus = SecItemCopyMatching((__bridge CFDictionaryRef) dict, (CFTypeRef*)&foundTypeRef);
|
2015-05-20 18:39:52 +00:00
|
|
|
|
2015-05-29 16:03:19 +00:00
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
2015-05-20 18:39:52 +00:00
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
2015-05-28 17:08:18 +00:00
|
|
|
return callback(@[makeError(error)]);
|
2015-05-20 18:39:52 +00:00
|
|
|
}
|
2015-05-28 17:10:41 +00:00
|
|
|
|
|
|
|
|
found = (__bridge NSDictionary*)(foundTypeRef);
|
|
|
|
|
if (!found) {
|
|
|
|
|
return callback(@[[NSNull null]]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Found
|
|
|
|
|
NSString* username = (NSString*) [found objectForKey:(__bridge id)(kSecAttrAccount)];
|
|
|
|
|
NSString* password = [[NSString alloc] initWithData:[found objectForKey:(__bridge id)(kSecValueData)] encoding:NSUTF8StringEncoding];
|
|
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
callback(@[[NSNull null], username, password]);
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
RCT_EXPORT_METHOD(resetInternetCredentialsForServer:(NSString*)server callback:(RCTResponseSenderBlock)callback){
|
|
|
|
|
|
|
|
|
|
// Create dictionary of search parameters
|
|
|
|
|
NSDictionary* dict = [NSDictionary dictionaryWithObjectsAndKeys:(__bridge id)(kSecClassInternetPassword), kSecClass, server, kSecAttrServer, kCFBooleanTrue, kSecReturnAttributes, kCFBooleanTrue, kSecReturnData, nil];
|
|
|
|
|
|
|
|
|
|
// Remove any old values from the keychain
|
|
|
|
|
OSStatus osStatus = SecItemDelete((__bridge CFDictionaryRef) dict);
|
2015-05-29 16:03:19 +00:00
|
|
|
if (osStatus != noErr && osStatus != errSecItemNotFound) {
|
2015-05-20 18:39:52 +00:00
|
|
|
NSError *error = [NSError errorWithDomain:NSOSStatusErrorDomain code:osStatus userInfo:nil];
|
2015-05-28 17:08:18 +00:00
|
|
|
return callback(@[makeError(error)]);
|
2015-05-20 18:39:52 +00:00
|
|
|
}
|
2015-05-29 16:25:56 +00:00
|
|
|
|
2015-05-20 18:39:52 +00:00
|
|
|
callback(@[[NSNull null]]);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-20 16:23:04 +00:00
|
|
|
@end
|
