Accueil Explorer Aide
S'inscrire Connexion
aaron
/
kneet_ios_smartcity
Suivre 1
Voter 0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: c1805ce837
Branches Tags
kneet_ios_sm...
/
Pods
/
Valet
/
Valet
/
VALValet.h

VALValet.h 8.1 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128 
  1. //
    2. 

  2. //  VALValet.h
    3. 

  3. //  Valet
    4. 

  4. //
    5. 

  5. //  Created by Dan Federman on 3/16/15.
    6. 

  6. //  Copyright 2015 Square, Inc.
    7. 

  7. //
    8. 

  8. //  Licensed under the Apache License, Version 2.0 (the "License");
    9. 

  9. //  you may not use this file except in compliance with the License.
    10. 

  10. //  You may obtain a copy of the License at
    11. 

  11. //
    12. 

  12. //    http://www.apache.org/licenses/LICENSE-2.0
    13. 

  13. //
    14. 

  14. //  Unless required by applicable law or agreed to in writing, software
    15. 

  15. //  distributed under the License is distributed on an "AS IS" BASIS,
    16. 

  16. //  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    17. 

  17. //  See the License for the specific language governing permissions and
    18. 

  18. //  limitations under the License.
    19. 

  19. //
    20. 

  20. 

  21. #import <Foundation/Foundation.h>
    22. 

  22. 

  23. 

  24. typedef NS_ENUM(NSUInteger, VALAccessibility) {
    25. 

  25.     /// Valet data can only be accessed while the device is unlocked. This attribute is recommended for data that only needs to be accessible while the application is in the foreground. Valet data with this accessibility will migrate to a new device when using encrypted backups.
    26. 

  26.     VALAccessibilityWhenUnlocked = 1,
    27. 

  27.     /// Valet data can only be accessed once the device has been unlocked after a restart. This attribute is recommended for data that needs to be accessible by background applications. Valet data with this attribute will migrate to a new device when using encrypted backups.
    28. 

  28.     VALAccessibilityAfterFirstUnlock,
    29. 

  29.     /// Valet data can always be accessed regardless of the lock state of the device. This attribute is not recommended. Valet data with this attribute will migrate to a new device when using encrypted backups.
    30. 

  30.     VALAccessibilityAlways,
    31. 

  31.     
    32. 

  32.     /// Valet data can only be accessed while the device is unlocked. This class is only available if a passcode is set on the device. This is recommended for items that only need to be accessible while the application is in the foreground. Valet data with this attribute will never migrate to a new device, so these items will be missing after a backup is restored to a new device. No items can be stored in this class on devices without a passcode. Disabling the device passcode will cause all items in this class to be deleted.
    33. 

  33.     VALAccessibilityWhenPasscodeSetThisDeviceOnly NS_ENUM_AVAILABLE(10_10, 8_0),
    34. 

  34.     /// Valet data can only be accessed while the device is unlocked. This is recommended for data that only needs to be accessible while the application is in the foreground. Valet data with this attribute will never migrate to a new device, so these items will be missing after a backup is restored to a new device.
    35. 

  35.     VALAccessibilityWhenUnlockedThisDeviceOnly,
    36. 

  36.     /// Valet data can only be accessed once the device has been unlocked after a restart. This is recommended for items that need to be accessible by background applications. Valet data with this attribute will never migrate to a new device, so these items will be missing after a backup is restored to a new device.
    37. 

  37.     VALAccessibilityAfterFirstUnlockThisDeviceOnly,
    38. 

  38.     /// Valet data can always be accessed regardless of the lock state of the device. This option is not recommended. Valet data with this attribute will never migrate to a new device, so these items will be missing after a backup is restored to a new device.
    39. 

  39.     VALAccessibilityAlwaysThisDeviceOnly,
    40. 

  40. };
    41. 

  41. 

  42. extern NSString * __nonnull const VALMigrationErrorDomain;
    43. 

  43. 

  44. typedef NS_ENUM(NSUInteger, VALMigrationError) {
    45. 

  45.     /// Migration failed because the keychain query was not valid.
    46. 

  46.     VALMigrationErrorInvalidQuery = 1,
    47. 

  47.     /// Migration failed because no items to migrate were found.
    48. 

  48.     VALMigrationErrorNoItemsToMigrateFound,
    49. 

  49.     /// Migration failed because the keychain could not be read.
    50. 

  50.     VALMigrationErrorCouldNotReadKeychain,
    51. 

  51.     /// Migration failed because a key in the query result could not be read.
    52. 

  52.     VALMigrationErrorKeyInQueryResultInvalid,
    53. 

  53.     /// Migration failed because some data in the query result could not be read.
    54. 

  54.     VALMigrationErrorDataInQueryResultInvalid,
    55. 

  55.     /// Migration failed because two keys with the same value were found in the keychain.
    56. 

  56.     VALMigrationErrorDuplicateKeyInQueryResult,
    57. 

  57.     /// Migration failed because a key in the keychain duplicates a key already managed by Valet.
    58. 

  58.     VALMigrationErrorKeyInQueryResultAlreadyExistsInValet,
    59. 

  59.     /// Migration failed because writing to the keychain failed.
    60. 

  60.     VALMigrationErrorCouldNotWriteToKeychain,
    61. 

  61.     /// Migration failed because removing the migrated data from the keychain failed.
    62. 

  62.     VALMigrationErrorRemovalFailed,
    63. 

  63. };
    64. 

  64. 

  65. 

  66. /// Reads and writes keychain elements.
    67. 

  67. @interface VALValet : NSObject <NSCopying>
    68. 

  68. 

  69. /// Creates a Valet that reads/writes keychain elements with the desired accessibility.
    70. 

  70. /// @see VALAccessibility
    71. 

  71. - (nullable instancetype)initWithIdentifier:(nonnull NSString *)identifier accessibility:(VALAccessibility)accessibility NS_DESIGNATED_INITIALIZER;
    72. 

  72. 

  73. /// Creates a Valet that reads/writes keychain elements that can be shared across applications written by the same development team.
    74. 

  74. /// @param sharedAccessGroupIdentifier This must correspond with the value for keychain-access-groups in your Entitlements file.
    75. 

  75. /// @see VALAccessibility
    76. 

  76. - (nullable instancetype)initWithSharedAccessGroupIdentifier:(nonnull NSString *)sharedAccessGroupIdentifier accessibility:(VALAccessibility)accessibility NS_DESIGNATED_INITIALIZER;
    77. 

  77. 

  78. - (nullable instancetype)init NS_UNAVAILABLE;
    79. 

  79. + (nullable instancetype)new NS_UNAVAILABLE;
    80. 

  80. 

  81. @property (nonnull, copy, readonly) NSString *identifier;
    82. 

  82. @property (readonly, getter=isSharedAcrossApplications) BOOL sharedAcrossApplications;
    83. 

  83. @property (readonly) VALAccessibility accessibility;
    84. 

  84. 

  85. /// @return YES if otherValet reads from and writes to the same sandbox within the keychain as the receiver.
    86. 

  86. - (BOOL)isEqualToValet:(nonnull VALValet *)otherValet;
    87. 

  87. 

  88. /// @return YES if the keychain is accessible for reading and writing, NO otherwise.
    89. 

  89. /// @note Determined by writing a value to the keychain and then reading it back out.
    90. 

  90. - (BOOL)canAccessKeychain;
    91. 

  91. 

  92. /// @param value An NSData value to be inserted into the keychain.
    93. 

  93. /// @return NO if the keychain is not accessible.
    94. 

  94. - (BOOL)setObject:(nonnull NSData *)value forKey:(nonnull NSString *)key;
    95. 

  95. /// @return The data currently stored in the keychain for the provided key. Returns nil if no object exists in the keychain for the specified key, or if the keychain is inaccessible.
    96. 

  96. - (nullable NSData *)objectForKey:(nonnull NSString *)key;
    97. 

  97. 

  98. /// @param string An NSString value to store in the keychain for the provided key.
    99. 

  99. /// @return NO if the keychain is not accessible.
    100. 

  100. - (BOOL)setString:(nonnull NSString *)string forKey:(nonnull NSString *)key;
    101. 

  101. /// @return The string currently stored in the keychain for the provided key. Returns nil if no string exists in the keychain for the specified key, or if the keychain is inaccessible.
    102. 

  102. - (nullable NSString *)stringForKey:(nonnull NSString *)key;
    103. 

  103. 

  104. /// @param key The key to look up in the keychain.
    105. 

  105. /// @return YES if a value has been set for the given key, NO otherwise.
    106. 

  106. - (BOOL)containsObjectForKey:(nonnull NSString *)key;
    107. 

  107. /// @return The set of all (NSString) keys currently stored in this Valet instance.
    108. 

  108. - (nonnull NSSet *)allKeys;
    109. 

  109. 

  110. /// Removes a key/object pair from the keychain.
    111. 

  111. /// @return NO if the keychain is not accessible.
    112. 

  112. - (BOOL)removeObjectForKey:(nonnull NSString *)key;
    113. 

  113. /// Removes all key/object pairs accessible by this Valet instance from the keychain.
    114. 

  114. /// @return NO if the keychain is not accessible.
    115. 

  115. - (BOOL)removeAllObjects;
    116. 

  116. 

  117. /// Migrates objects matching the secItemQuery into the receiving Valet instance.
    118. 

  118. /// @return An error if the operation failed. Error domain will be <code>VALMigrationErrorDomain</code>, and codes will be of type <code>VALMigrationError</code>
    119. 

  119. /// @see VALMigrationError
    120. 

  120. /// @note The keychain is not modified if a failure occurs.
    121. 

  121. - (nullable NSError *)migrateObjectsMatchingQuery:(nonnull NSDictionary *)secItemQuery removeOnCompletion:(BOOL)remove;
    122. 

  122. /// Migrates objects from the passed-in Valet into the receiving Valet instance.
    123. 

  123. /// @return An error if the operation failed. Error domain will be <code>VALMigrationErrorDomain</code>, and codes will be of type <code>VALMigrationError</code>
    124. 

  124. /// @see VALMigrationError
    125. 

  125. - (nullable NSError *)migrateObjectsFromValet:(nonnull VALValet *)valet removeOnCompletion:(BOOL)remove;
    126. 

  126. 

  127. @end
    128. 

  128.