keytar-pass - Node module to manage system keychain
This library is based on the open source keytar library. keytar uses libsecret though, which depends on X11 (GUI). In order to run on a headless server, this library uses the pass library.
A native Node module to get, add, replace, and delete passwords in system's keychain. On macOS the passwords are managed by the Keychain, on Windows they are managed by Credential Vault, and on Linux they're managed by the pass library.
This
Installing
npm install keytar-pass
On Linux
Currently this library uses pass
so you may need to install it before running npm install
.
Depending on your distribution, you will need to run the following command:
- Debian/Ubuntu:
sudo apt install pass
- Red Hat-based:
sudo yum install pass
- Arch Linux:
sudo pacman -S pass
- openSUSE:
sudo zypper in password-store
- Gentoo:
emerge -av pass
You'll also need to initialize pass from within your nodejs project. A very simple init script is as follows:
; if processplatform != 'win32' && processplatform != 'darwin' log; ;
Building
- Clone the repository
- Run
npm install
- Run
npm test
to run the tests
Docs
const keytar = // OR;
Every function in keytar-pass is asynchronous and returns a promise. The promise will be rejected with any error that occurs or will be resolved with the function's "yields" value.
getPassword(service, account)
Get the stored password for the service
and account
.
service
- The string service name.
account
- The string account name.
Yields the string password or null
if an entry for the given service and account was not found.
setPassword(service, account, password)
Save the password
for the service
and account
to the keychain. Adds a new entry if necessary, or updates an existing entry if one exists.
service
- The string service name.
account
- The string account name.
password
- The string password.
Yields nothing.
deletePassword(service, account)
Delete the stored password for the service
and account
.
service
- The string service name.
account
- The string account name.
Yields true
if a password was deleted, or false
if an entry with the given service and account was not found.
findCredentials(service)
Find all accounts and password for the service
in the keychain.
service
- The string service name.
Yields an array of { account: 'foo', password: 'bar' }
.
findPassword(service)
Find a password for the service
in the keychain. This is ideal for scenarios where an account
is not required.
service
- The string service name.
Yields the string password, or null
if an entry for the given service was not found.