Supports iOS only.
KeychainAccess is a wrapper Swift package built around a small subset of features offered by Keychain Services to simplify saving and retrieving data to and from the iOS Keychain using kSecClassGenericPassword class.
While the Keychain Services offer comprehensive set of APIs and could be used directly, the app-side implementation for saving and retrieving data will most likely be verbose.
In a nutshell, to securely store an item using Keychain Services, a dictionary of predefined keys and values, also referred to as the keychain query, must be created first. This query must contain valid values for predefined set of keys that depend on a security class being used. To reduce the amount of manual work required to create a keychain query, this framework takes advantage of Swift features such as default implementation for protocols, generics and Codable for automatic encoding of models into external representation.
This approach leads to a much cleaner interaction with iOS Keychain that's enjoyable to use.
- Simple to setup, easy to use & efficient
- Supports custom data types
- Supports storing multiple instances of the same type
- Supports app and group-specific keychain configurations
- Supports access option for keychain items
- Supports selective Type synchronization through iCloud
- Handles object encoding and decoding from data returned by the iOS keychain
- Comprehensive Unit Test Coverage
- Complete Documentation
- iOS 15.0+
- Xcode 16.0+
- Swift 6.0+
The Swift Package Manager is a tool for automating the distribution of Swift code and is integrated into the swift compiler.
Once you have your Swift package set up, adding KeychainAccess as a dependency is as easy as adding it to the dependencies value of your Package.swift.
KeychainAccess Swift package currently supports two access types - App Specific and Group Specific.
Getting started is easy. First, create the keychain instance using one of the supported access types.
let keychain = Keychain(.appSpecific(access: .afterFirstUnlock, serviceName: "App"))Any custom type you want to encrypt and store in iOS Keychain needs to conform and implement the KeychainItem protocol. The KeychainItem protocol provides default implementation for all of its properties - except the idKey. See documentation for more information.
struct User: KeychainItem {
let username: String
let password: String
// MARK: - KeychainItem
var idKey: String {
return username
}
}Keychain offers a handful of methods that will allow you to save, delete, or retrieve items.
let user = User(username: "username", password: "password")
// save
try? keychain.save(user)
// retrieve users
let users = try? keychain.items(ofType: User.self)
// retrieve a single user
let user = try? keychain.item(ofType: User.self, idKey: "username")For group specific configuration, please see documentation.
- If you found a bug, open an issue.
- If you have a feature request, open an issue.
- If you want to contribute, submit a pull request.
- Adam Wallraff
- Krishna Varma