split out KeychainWrapper

roninopf · roninopf · commit 8bf566782b5a · 2022-08-30T16:18:21.000-07:00
diff --git a/swift-sdk.xcodeproj/project.pbxproj b/swift-sdk.xcodeproj/project.pbxproj
@@ -15,6 +15,7 @@
 		5531CDAC22A997A4000D05E2 /* IterableInboxViewControllerUITests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 5585DF9022A877E6000A32B9 /* IterableInboxViewControllerUITests.swift */; };
 		5531CDAE22A9C992000D05E2 /* ClassExtensionsTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 5531CDAD22A9C992000D05E2 /* ClassExtensionsTests.swift */; };
 		5536781F2576FF9000DB3652 /* IterableUtilTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 5536781E2576FF9000DB3652 /* IterableUtilTests.swift */; };
+		5555425028BED1B400DB5D20 /* KeychainWrapper.swift in Sources */ = {isa = PBXBuildFile; fileRef = 5555424F28BED1B400DB5D20 /* KeychainWrapper.swift */; };
 		556FB1EA244FAF6A00EDF6BD /* InAppPresenter.swift in Sources */ = {isa = PBXBuildFile; fileRef = 556FB1E9244FAF6A00EDF6BD /* InAppPresenter.swift */; };
 		557AE6BF24A56E5E00B57750 /* Auth.swift in Sources */ = {isa = PBXBuildFile; fileRef = 557AE6BE24A56E5E00B57750 /* Auth.swift */; };
 		5585DF8F22A73390000A32B9 /* IterableInboxViewControllerTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 5585DF8E22A73390000A32B9 /* IterableInboxViewControllerTests.swift */; };
@@ -396,6 +397,7 @@
 		552A0AA6280E1FDA00A80963 /* DeepLinkManager.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = DeepLinkManager.swift; sourceTree = "<group>"; };
 		5531CDAD22A9C992000D05E2 /* ClassExtensionsTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = ClassExtensionsTests.swift; sourceTree = "<group>"; };
 		5536781E2576FF9000DB3652 /* IterableUtilTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = IterableUtilTests.swift; sourceTree = "<group>"; };
+		5555424F28BED1B400DB5D20 /* KeychainWrapper.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = KeychainWrapper.swift; sourceTree = "<group>"; };
 		556FB1E9244FAF6A00EDF6BD /* InAppPresenter.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = InAppPresenter.swift; sourceTree = "<group>"; };
 		557AE6BE24A56E5E00B57750 /* Auth.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = Auth.swift; sourceTree = "<group>"; };
 		5585DF8E22A73390000A32B9 /* IterableInboxViewControllerTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = IterableInboxViewControllerTests.swift; sourceTree = "<group>"; };
@@ -1263,10 +1265,11 @@
 		ACE34AB121376ACB00691224 /* Local Storage */ = {
 			isa = PBXGroup;
 			children = (
-				ACE34AB62139D70B00691224 /* LocalStorageProtocol.swift */,
-				ACE34AB221376B1000691224 /* LocalStorage.swift */,
-				AC52C5B52729CE44000DCDCF /* IterableUserDefaults.swift */,
 				AC52C5B9272A8BC2000DCDCF /* IterableKeychain.swift */,
+				AC52C5B52729CE44000DCDCF /* IterableUserDefaults.swift */,
+				5555424F28BED1B400DB5D20 /* KeychainWrapper.swift */,
+				ACE34AB221376B1000691224 /* LocalStorage.swift */,
+				ACE34AB62139D70B00691224 /* LocalStorageProtocol.swift */,
 			);
 			name = "Local Storage";
 			sourceTree = "<group>";
@@ -1823,6 +1826,7 @@
 				AC84510922910A0C0052BB8F /* RequestCreator.swift in Sources */,
 				ACB8273F22372A5C00DB17D3 /* IterableHtmlMessageViewController.swift in Sources */,
 				AC5812F624F3A90F007E6D36 /* OfflineRequestProcessor.swift in Sources */,
+				5555425028BED1B400DB5D20 /* KeychainWrapper.swift in Sources */,
 				AC81918A22713A400014955E /* AbstractDiffCalculator.swift in Sources */,
 				ACA95D2D275494A100AF4666 /* InboxViewRepresentable.swift in Sources */,
 				AC684A88222F4FDD00F29749 /* InAppDisplayer.swift in Sources */,
diff --git a/swift-sdk/Internal/KeychainWrapper.swift b/swift-sdk/Internal/KeychainWrapper.swift
@@ -0,0 +1,116 @@
+//
+//  Copyright © 2022 Iterable. All rights reserved.
+//
+
+import Foundation
+
+/// Basic wrapper for keychain
+/// This should have no dependency on Iterable classes
+class KeychainWrapper {
+    init(serviceName: String = Const.Keychain.serviceName) {
+        self.serviceName = serviceName
+    }
+    
+    @discardableResult
+    func set(_ value: Data, forKey key: String) -> Bool {
+        var keychainQueryDictionary: [String: Any] = setupKeychainQueryDictionary(forKey: key)
+        
+        keychainQueryDictionary[SecValueData] = value
+        
+        // Assign default protection - Protect the keychain entry so it's only valid when the device is unlocked
+        keychainQueryDictionary[SecAttrAccessible] = SecAttrAccessibleWhenUnlocked
+        
+        let status: OSStatus = SecItemAdd(keychainQueryDictionary as CFDictionary, nil)
+        
+        if status == errSecSuccess {
+            return true
+        } else if status == errSecDuplicateItem {
+            return update(value, forKey: key)
+        } else {
+            return false
+        }
+    }
+    
+    func data(forKey key: String) -> Data? {
+        var keychainQueryDictionary = setupKeychainQueryDictionary(forKey: key)
+        
+        // Limit search results to one
+        keychainQueryDictionary[SecMatchLimit] = SecMatchLimitOne
+        
+        // Specify we want Data/CFData returned
+        keychainQueryDictionary[SecReturnData] = CFBooleanTrue
+        
+        // Search
+        var result: AnyObject?
+        let status = SecItemCopyMatching(keychainQueryDictionary as CFDictionary, &result)
+        
+        return status == noErr ? result as? Data : nil
+    }
+    
+    @discardableResult
+    func removeValue(forKey key: String) -> Bool {
+        let keychainQueryDictionary: [String: Any] = setupKeychainQueryDictionary(forKey: key)
+        
+        // Delete
+        let status: OSStatus = SecItemDelete(keychainQueryDictionary as CFDictionary)
+        
+        return status == errSecSuccess
+    }
+    
+    @discardableResult
+    func removeAll() -> Bool {
+        var keychainQueryDictionary: [String: Any] = [SecClass: SecClassGenericPassword]
+        
+        keychainQueryDictionary[SecAttrService] = serviceName
+        
+        let status: OSStatus = SecItemDelete(keychainQueryDictionary as CFDictionary)
+        
+        return status == errSecSuccess
+    }
+    
+    private let serviceName: String
+    
+    private func setupKeychainQueryDictionary(forKey key: String) -> [String: Any] {
+        // Setup default access as generic password (rather than a certificate, internet password, etc)
+        var keychainQueryDictionary: [String: Any] = [SecClass: SecClassGenericPassword]
+        
+        // Uniquely identify this keychain accessor
+        keychainQueryDictionary[SecAttrService] = serviceName
+        
+        // Uniquely identify the account who will be accessing the keychain
+        let encodedIdentifier: Data? = key.data(using: .utf8)
+        
+        keychainQueryDictionary[SecAttrGeneric] = encodedIdentifier
+        
+        keychainQueryDictionary[SecAttrAccount] = encodedIdentifier
+        
+        keychainQueryDictionary[SecAttrSynchronizable] = CFBooleanFalse
+        
+        return keychainQueryDictionary
+    }
+    
+    private func update(_ value: Data, forKey key: String) -> Bool {
+        let keychainQueryDictionary: [String: Any] = setupKeychainQueryDictionary(forKey: key)
+        let updateDictionary = [SecValueData: value]
+        
+        // Update
+        let status: OSStatus = SecItemUpdate(keychainQueryDictionary as CFDictionary, updateDictionary as CFDictionary)
+        
+        return status == errSecSuccess
+    }
+    
+    private let SecValueData = kSecValueData as String
+    private let SecAttrAccessible: String = kSecAttrAccessible as String
+    private let SecAttrAccessibleWhenUnlocked = kSecAttrAccessibleWhenUnlocked
+    private let SecClass: String = kSecClass as String
+    private let SecClassGenericPassword = kSecClassGenericPassword
+    private let SecAttrService: String = kSecAttrService as String
+    private let SecAttrGeneric: String = kSecAttrGeneric as String
+    private let SecAttrAccount: String = kSecAttrAccount as String
+    private let SecAttrSynchronizable: String = kSecAttrSynchronizable as String
+    private let CFBooleanTrue = kCFBooleanTrue
+    private let CFBooleanFalse = kCFBooleanFalse
+    private let SecMatchLimit: String = kSecMatchLimit as String
+    private let SecMatchLimitOne = kSecMatchLimitOne
+    private let SecReturnData: String = kSecReturnData as String
+}
