GNOME Bugzilla – Bug 356670
Support for per application secrets
Last modified: 2006-11-05 01:18:07 UTC
Certain applications wish to have secrets that only their application (and perhaps other ACLs added by that application) can access. Epiphany for example. See bug #356298 for discussion. This adds a new type of secret: GNOME_KEYRING_ITEM_APPLICATION_SECRET When created with this item type, the item is not listed, or accessible in any way for other applications. Other approaches were tried out (such as a special ACL that denoted 'application private') but each had its flaws. This approach seems to make the most sense for the user and for the applications involved.
Created attachment 73010 [details] [review] Adds support for application-only secrets Also included are some tests for this feature. In particular the following demonstrates that it works: # Create application only item ./test-keyring A ApplicationItem appitem # Show the item ./test-keyring i <keyring> <ID> # Try to access with another application ./test-keyring-two i <keyring> <ID> # Try to list with another application ./test-keyring-two I
Committed. Changed the code a little whereby GNOME_KEYRING_ITEM_APPLICATION_SECRET is a modifier to the other item types rather than an item type in its own right. 2006-10-04 Nate Nielsen <nielsen@memberwebs.com> * Makefile.am: * gnome-keyring-daemon.c (request_allowed_for_app, op_list_items_execute, op_create_item_collect, op_create_item_execute, op_set_item_info_execute, op_find_execute, op_find_collect, schedule_ask): * gnome-keyring.h: * test.c: Add ability to mark an item as 'application only' whereby only applications on the ACL will ever get access to the data. See bug #356670