Runtime check for persistent storage? #147
Comments
|
I agree this is a critical difference between keystores, @benwr, so thanks for this suggestion. To be clear: you are asking for an API-level way for the client to understand the persistence of the keystore, yes? As opposed to just clearer documentation on this point? |
|
Yes; imo it would be really useful to have a way to check this property from code. Personally I think it would be nicest if it were a runtime check (maybe even one that can be implemented for custom keystores, though the obvious way to do that would be a breaking change), but a compile-time check would also be acceptable. |
|
Sorry it's taken me so long to answer. I think probably the easiest way to do this would be to add some sort of Do you have in mind anything other than persistence across reboots that you would want to know? |
|
@benwr Please take a look at #150 and see if it gives you want you need. You can do, for example: if matches!(default::default_credential_builder().persistence(), crate::credential::CredentialPersistence::UntilDelete) {
println!("The default credential builder persists credentials on disk!")
} else {
println!("The default credential builder doesn't persist credentials on disk!")
} |
|
@brotskydotcom Yeah, looks great! |
|
OK, great, thanks, I'll release the fix. |
|
Oh, good, there's a way I can tell this. Thanks. |
|
I can't figure out where it's exposed in the public API |
|
Hi @ReactorScram, it's in the public, cross-platform Assuming you are using the default credential builder, here's an example of how to access it: if matches!(default::default_credential_builder().persistence(), crate::credential::CredentialPersistence::UntilDelete) {
println!("The default credential builder persists credentials on disk!")
} else {
println!("The default credential builder doesn't persist credentials on disk!")
}Note that Hope this helps! |
|
I did see |
|
Great point! Not sure why this changed between v2 and v3, or whether v2 had this problem, but in any event I think it's a bug (see #197) and I will fix it right away! Thanks for bringing this to my attention! |
After reading through #123, my understanding is that the keyutils backend (as well as the mock backend) doesn't persist its stored items to disk.
In my application, there's an encrypted database that's created on first run. My goal is to make it as hard as possible for unauthorized code to read from that database. But it's not acceptable from a UI perspective to have the user memorize or store the encryption key. So I randomly generate a key, store that key in the keyring, and rely on the OS to gatekeep access to it. Thus, the user is prompted when access to the database is required, but (at least on MacOS, which is the platform I'm most familiar with here) that prompt is for their OS password, which is much better UI-wise. (there's some additional hardening, aiming to ensure that the key and the db contents can't be read by a different process). The upshot here is that the user doesn't know the encryption key, and so the keyring needs to persist it.
One of the most useful parts of this crate is that it lets me abstract over the underlying OS capabilities, and I don't have to sprinkle
cfg()s everywhere. Since, in some configurations, the default keyring doesn't persist its storage (mock and keyutils), it would be great if there was a simple way to check if the default credential store does or does not have this capability.The text was updated successfully, but these errors were encountered: