2016.12.22最新更新
最近一直有朋友說不知道怎么用,特來更新了 PDKeyChain,添加了注釋,有問題可以提 issue 歡迎討論。
2016.8.23最新更新
最近一直有朋友問源碼,整理了一下發在這里。
2016.3.23最新更新
近期項目中又用到keychain,于是回頭翻了翻以前寫的代碼,感覺寫的/(ㄒoㄒ)/~~
設計不科學,命名不規范,怎么看怎么別扭,那就重寫吧~
Tips:在實習過程中,有次讓我實現一個app七天免登陸功能。當時沒細想,直接就用NSUserDefaults給做的,用NSDate判斷時間,取七天的間隔判斷登陸狀態。直到現在了解了keychain,才知道用NSUserDefaults是非常不安全的。通常情況下,可以用NSUserDefaults存儲數據信息,但是對于一些私密信息,比如賬號、密碼等等,就需要使用更為安全的keychain了。而Keychain的信息是存在于每個應用(app)的沙盒之外的,所以keychain里保存的信息不會因App被刪除而丟失,在用戶重新安裝App后依然有效,數據還在。
KeyChain
話不多說,咱們直接來看怎么快速集成keychain。
- 自定義一個類,取名XXXKeyChain,如下:
#import <Foundation/Foundation.h>
#import <Security/Security.h>
#define KEY_PASSWORD @"com.rry.app.password"
#define KEY_USERNAME_PASSWORD @"com.rry.app.usernamepassword"
@interface RRYKeyChain : NSObject
+ (void)save:(NSString *)service data:(id)data;
+ (id)load:(NSString *)service;
+ (void)delete:(NSString *)service;
@end
以上代碼自定義了三個方法,存、取、刪。并且定義了幾個字符串用來做key。當然,想使用keychain請不要忘記引入Security包,引入文件 #import <Security/Security.h>。
- 再來看.m文件的具體實現
#import "RRYKeyChain.h"
@implementation RRYKeyChain
+ (NSMutableDictionary *)getKeychainQuery:(NSString *)service {
return [NSMutableDictionary dictionaryWithObjectsAndKeys:
(id)kSecClassGenericPassword,(id)kSecClass,
service, (id)kSecAttrService,
service, (id)kSecAttrAccount,
(id)kSecAttrAccessibleAfterFirstUnlock,(id)kSecAttrAccessible,
nil];
}
+ (void)save:(NSString *)service data:(id)data {
//Get search dictionary
NSMutableDictionary *keychainQuery = [self getKeychainQuery:service];
//Delete old item before add new item
SecItemDelete((CFDictionaryRef)keychainQuery);
//Add new object to search dictionary(Attention:the data format)
[keychainQuery setObject:[NSKeyedArchiver archivedDataWithRootObject:data] forKey:(id)kSecValueData];
//Add item to keychain with the search dictionary
SecItemAdd((CFDictionaryRef)keychainQuery, NULL);
}
+ (id)load:(NSString *)service {
id ret = nil;
NSMutableDictionary *keychainQuery = [self getKeychainQuery:service];
//Configure the search setting
//Since in our simple case we are expecting only a single attribute to be returned (the password) we can set the attribute kSecReturnData to kCFBooleanTrue
[keychainQuery setObject:(id)kCFBooleanTrue forKey:(id)kSecReturnData];
[keychainQuery setObject:(id)kSecMatchLimitOne forKey:(id)kSecMatchLimit];
CFDataRef keyData = NULL;
if (SecItemCopyMatching((CFDictionaryRef)keychainQuery, (CFTypeRef *)&keyData) == noErr) {
@try {
ret = [NSKeyedUnarchiver unarchiveObjectWithData:(NSData *)keyData];
} @catch (NSException *e) {
NSLog(@"Unarchive of %@ failed: %@", service, e);
} @finally {
}
}
if (keyData)
CFRelease(keyData);
return ret;
}
+ (void)delete:(NSString *)service {
NSMutableDictionary *keychainQuery = [self getKeychainQuery:service];
SecItemDelete((CFDictionaryRef)keychainQuery);
}
然后就是存,其中mmm是要存的密碼字符串。
NSMutableDictionary *usernamepasswordKVPairs = [NSMutableDictionary dictionary];
[usernamepasswordKVPairs setObject:mmm forKey:KEY_PASSWORD];
[RRYKeyChain save:KEY_USERNAME_PASSWORD data:usernamepasswordKVPairs];
取
NSMutableDictionary *usernamepasswordKVPairs = (NSMutableDictionary *)[RRYKeyChain load:KEY_USERNAME_PASSWORD];
NSLog(@"%@",[usernamepasswordKVPairs objectForKey:KEY_PASSWORD]);
刪
[RRYKeyChain delete:KEY_USERNAME_PASSWORD];
這樣一個簡單的使用keychain快速存儲密碼的功能就做好了。
2016.3.23最新更新
話不多說,直接上代碼,首先是.h
#import <Foundation/Foundation.h>
#import <Security/Security.h>
@interface RHKeyChain : NSObject
+ (void)rhKeyChainSave:(NSString *)service;
+ (NSString *)rhKeyChainLoad;
+ (void)rhKeyChainDelete:(NSString *)service;
@end
只對外提供三個方法,存、取、刪,實現放在內部,再是.m
static NSString * const kRHDictionaryKey = @"com.xxxx.dictionaryKey";
static NSString * const kRHKeyChainKey = @"com.xxxx.keychainKey";
+ (void)rhKeyChainSave:(NSString *)service {
NSMutableDictionary *tempDic = [NSMutableDictionary dictionary];
[tempDic setObject:service forKey:kRHDictionaryKey];
[self save:kRHKeyChainKey data:tempDic];
}
+ (NSString *)rhKeyChainLoad{
NSMutableDictionary *tempDic = (NSMutableDictionary *)[self load:kRHKeyChainKey];
return [tempDic objectForKey:kRHDictionaryKey];
}
+ (void)rhKeyChainDelete{
[self delete:kRHKeyChainKey];
}
三個方法的實現。
