chromium/components/os_crypt/sync/keychain_password_mac.h

// Copyright 2014 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef COMPONENTS_OS_CRYPT_SYNC_KEYCHAIN_PASSWORD_MAC_H_
#define COMPONENTS_OS_CRYPT_SYNC_KEYCHAIN_PASSWORD_MAC_H_

#include <string>

#include "base/component_export.h"
#include "base/memory/raw_ref.h"

namespace crypto {
class AppleKeychain;
}

class COMPONENT_EXPORT(OS_CRYPT) KeychainPassword {
 public:
#if defined(ALLOW_RUNTIME_CONFIGURABLE_KEY_STORAGE)
  using KeychainNameType = std::string;
#else
  using KeychainNameType = const std::string;
#endif

  KeychainPassword(const crypto::AppleKeychain& keychain);

  KeychainPassword(const KeychainPassword&) = delete;
  KeychainPassword& operator=(const KeychainPassword&) = delete;

  ~KeychainPassword();

  // Get the OSCrypt password for this system. If no password exists
  // in the Keychain then one is generated, stored in the Mac keychain, and
  // returned.
  // If one exists then it is fetched from the Keychain and returned.
  // If the user disallows access to the Keychain (or an error occurs) then an
  // empty string is returned.
  std::string GetPassword() const;

  // The service and account names used in Chrome's Safe Storage keychain item.
  static COMPONENT_EXPORT(OS_CRYPT) KeychainNameType& GetServiceName();
  static COMPONENT_EXPORT(OS_CRYPT) KeychainNameType& GetAccountName();

 private:
  const raw_ref<const crypto::AppleKeychain> keychain_;
};

#endif  // COMPONENTS_OS_CRYPT_SYNC_KEYCHAIN_PASSWORD_MAC_H_