macOS Keychain Sharing Bypass Password Dialog
up vote
0
down vote
favorite
I'm trying to build an application that uses Keychain Sharing on macOS. But when trying to access the keychain data, it shows the following dialog.
This creates a very poor user experience where the user is forced to enter their computer password in order to use the application.
I have not experienced this problem on iOS.
How can I bypass this dialog? All of the applications are signed under the same development team, so I don't think it should be an issue.
swift macos keychain
asked Nov 18 at 21:41
Charlie Fish
4,33342969
add a comment |
up vote
0
down vote
favorite
I'm trying to build an application that uses Keychain Sharing on macOS. But when trying to access the keychain data, it shows the following dialog.
This creates a very poor user experience where the user is forced to enter their computer password in order to use the application.
I have not experienced this problem on iOS.
How can I bypass this dialog? All of the applications are signed under the same development team, so I don't think it should be an issue.
swift macos keychain
asked Nov 18 at 21:41
Charlie Fish
4,33342969
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23
add a comment |
up vote
0
down vote
favorite
up vote
0
down vote
favorite
I'm trying to build an application that uses Keychain Sharing on macOS. But when trying to access the keychain data, it shows the following dialog.
This creates a very poor user experience where the user is forced to enter their computer password in order to use the application.
I have not experienced this problem on iOS.
How can I bypass this dialog? All of the applications are signed under the same development team, so I don't think it should be an issue.
swift macos keychain
asked Nov 18 at 21:41
Charlie Fish
4,33342969
I'm trying to build an application that uses Keychain Sharing on macOS. But when trying to access the keychain data, it shows the following dialog.
This creates a very poor user experience where the user is forced to enter their computer password in order to use the application.
I have not experienced this problem on iOS.
How can I bypass this dialog? All of the applications are signed under the same development team, so I don't think it should be an issue.
swift macos keychain
swift macos keychain
asked Nov 18 at 21:41
Charlie Fish
4,33342969
asked Nov 18 at 21:41
Charlie Fish
4,33342969
asked Nov 18 at 21:41
Charlie Fish
4,33342969
asked Nov 18 at 21:41
Charlie Fish
4,33342969
asked Nov 18 at 21:41
Charlie Fish
4,33342969
4,33342969
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23
add a comment |
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23
add a comment |
1 Answer
1
active
oldest
votes
up vote
2
down vote
Apps from the same developer don't automatically share access to keychain items; you have to explicitly set up some sort of sharing policy. How you do that depends on whether the item is being stored in an iCloud keychain or an old-style keychain.
For items in iCloud keychains, you need to define an access group, add your apps to the group, and set the kSecAttrAccessGroup attribute for your keychain item(s) to that group. See the Apple dev document "Sharing Access to Keychain Items Among a Collection of Apps" for details.
For items in non-iCloud (old-style) keychains, you need to define an access control list for each item that lists each app that should be granted access, and what type of access. See the Apple dev document "Access Contr Lists" for details.
Note: I think the dialog box in the question indicates a non-iCloud keychain item. If you enter the password and click "Always Allow", it will add an access control entry granting that app access to the item. You can view the access control list in the Keychain Access utility.
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
So I realized I should be using iCloud keychain but I'm not. According to thisWe could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.
– Charlie Fish
Nov 19 at 18:48
add a comment |
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
2
down vote
Apps from the same developer don't automatically share access to keychain items; you have to explicitly set up some sort of sharing policy. How you do that depends on whether the item is being stored in an iCloud keychain or an old-style keychain.
For items in iCloud keychains, you need to define an access group, add your apps to the group, and set the kSecAttrAccessGroup attribute for your keychain item(s) to that group. See the Apple dev document "Sharing Access to Keychain Items Among a Collection of Apps" for details.
For items in non-iCloud (old-style) keychains, you need to define an access control list for each item that lists each app that should be granted access, and what type of access. See the Apple dev document "Access Contr Lists" for details.
Note: I think the dialog box in the question indicates a non-iCloud keychain item. If you enter the password and click "Always Allow", it will add an access control entry granting that app access to the item. You can view the access control list in the Keychain Access utility.
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
So I realized I should be using iCloud keychain but I'm not. According to thisWe could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.
– Charlie Fish
Nov 19 at 18:48
add a comment |
up vote
2
down vote
Apps from the same developer don't automatically share access to keychain items; you have to explicitly set up some sort of sharing policy. How you do that depends on whether the item is being stored in an iCloud keychain or an old-style keychain.
For items in iCloud keychains, you need to define an access group, add your apps to the group, and set the kSecAttrAccessGroup attribute for your keychain item(s) to that group. See the Apple dev document "Sharing Access to Keychain Items Among a Collection of Apps" for details.
For items in non-iCloud (old-style) keychains, you need to define an access control list for each item that lists each app that should be granted access, and what type of access. See the Apple dev document "Access Contr Lists" for details.
Note: I think the dialog box in the question indicates a non-iCloud keychain item. If you enter the password and click "Always Allow", it will add an access control entry granting that app access to the item. You can view the access control list in the Keychain Access utility.
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
So I realized I should be using iCloud keychain but I'm not. According to thisWe could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.
– Charlie Fish
Nov 19 at 18:48
add a comment |
up vote
2
down vote
up vote
2
down vote
Apps from the same developer don't automatically share access to keychain items; you have to explicitly set up some sort of sharing policy. How you do that depends on whether the item is being stored in an iCloud keychain or an old-style keychain.
For items in iCloud keychains, you need to define an access group, add your apps to the group, and set the kSecAttrAccessGroup attribute for your keychain item(s) to that group. See the Apple dev document "Sharing Access to Keychain Items Among a Collection of Apps" for details.
For items in non-iCloud (old-style) keychains, you need to define an access control list for each item that lists each app that should be granted access, and what type of access. See the Apple dev document "Access Contr Lists" for details.
Note: I think the dialog box in the question indicates a non-iCloud keychain item. If you enter the password and click "Always Allow", it will add an access control entry granting that app access to the item. You can view the access control list in the Keychain Access utility.
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
Apps from the same developer don't automatically share access to keychain items; you have to explicitly set up some sort of sharing policy. How you do that depends on whether the item is being stored in an iCloud keychain or an old-style keychain.
For items in iCloud keychains, you need to define an access group, add your apps to the group, and set the kSecAttrAccessGroup attribute for your keychain item(s) to that group. See the Apple dev document "Sharing Access to Keychain Items Among a Collection of Apps" for details.
For items in non-iCloud (old-style) keychains, you need to define an access control list for each item that lists each app that should be granted access, and what type of access. See the Apple dev document "Access Contr Lists" for details.
Note: I think the dialog box in the question indicates a non-iCloud keychain item. If you enter the password and click "Always Allow", it will add an access control entry granting that app access to the item. You can view the access control list in the Keychain Access utility.
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
answered Nov 19 at 8:17
Gordon Davisson
66.4k97792
66.4k97792
So I realized I should be using iCloud keychain but I'm not. According to thisWe could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.
– Charlie Fish
Nov 19 at 18:48
add a comment |
So I realized I should be using iCloud keychain but I'm not. According to thisWe could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.
– Charlie Fish
Nov 19 at 18:48
So I realized I should be using iCloud keychain but I'm not. According to this
We could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.– Charlie Fish
Nov 19 at 18:48
So I realized I should be using iCloud keychain but I'm not. According to this
We could not get the Keychain synchronization work on macOS.. Not sure how that can be fixed. But looks like I'm running into a similar problem.– Charlie Fish
Nov 19 at 18:48
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53365740%2fmacos-keychain-sharing-bypass-password-dialog%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
@Willeke My keychain password matches my user login password. So that doesn't look like the problem.
– Charlie Fish
Nov 19 at 1:16
Is the password asked every time or only once for each build?
– Willeke
Nov 22 at 1:23