From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.help Subject: Re: can emacs use the mac os x keychain? Date: Mon, 26 Jul 2010 08:47:27 -0500 Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos Message-ID: <87r5iq1hjk.fsf@lifelogs.com> References: <370a1897-25aa-418f-9631-1570dfa99de3@z7g2000yqb.googlegroups.com> <87633kaess.fsf@lifelogs.com> <8d7c78ee-6ba8-448a-8f86-3d585e1af77f@u32g2000vbc.googlegroups.com> <87vd8z2myy.fsf@lifelogs.com> <01ea3506-d715-491d-b360-3abf34e98013@i31g2000yqm.googlegroups.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Trace: dough.gmane.org 1291850110 5580 80.91.229.12 (8 Dec 2010 23:15:10 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Wed, 8 Dec 2010 23:15:10 +0000 (UTC) To: help-gnu-emacs@gnu.org Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org Thu Dec 09 00:15:06 2010 Return-path: Envelope-to: geh-help-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1PQTE1-0005t9-S4 for geh-help-gnu-emacs@m.gmane.org; Thu, 09 Dec 2010 00:15:06 +0100 Original-Received: from localhost ([127.0.0.1]:45358 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1PQTE0-0005Av-Fq for geh-help-gnu-emacs@m.gmane.org; Wed, 08 Dec 2010 18:15:04 -0500 Original-Path: usenet.stanford.edu!news.tele.dk!news.tele.dk!small.news.tele.dk!newsfeed00.sul.t-online.de!t-online.de!news.albasani.net!not-for-mail Original-Newsgroups: gnu.emacs.help Original-Lines: 37 Original-X-Trace: news.albasani.net EnpmCd2XIH9mIN2o3STJ47PGHTlmrE8n1XVo1Br+VWmrEsHRRwwUnnIVin8jxpIAIPEL42i6Bpbk2MbiwVfG2DZcNlMO1vC+TP9+CV8Pm1IrU0o122boyRC1pgS7nrN/ Original-X-Complaints-To: abuse@albasani.net Original-NNTP-Posting-Date: Mon, 26 Jul 2010 13:47:30 +0000 (UTC) X-User-ID: N6Zi6hQmYPL0u+ffagXeSGA7NzaR0bAT2SRoKm2eMdQ= X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Cancel-Lock: sha1:0MQ8qFueh8cVAgTcPy68vAGSxSk= sha1:5mMD/x/khar3fI066xM9b2ESV5Y= User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/24.0.50 (gnu/linux) X-NNTP-Posting-Host: ohcX6PG8hsnNqpPXBiGZCYdmDkE+ixdT+QH1YCv0NIc= Original-Xref: usenet.stanford.edu gnu.emacs.help:180071 X-BeenThere: help-gnu-emacs@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Users list for the GNU Emacs text editor List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.help:76198 Archived-At: On Sat, 24 Jul 2010 20:36:18 -0700 (PDT) vm user wrote: vu> On Jul 1, 12:20 pm, Ted Zlatanov wrote: >> Unless there's a helper program or support inside Emacs (the latter is >> unlikely IMO) it's not possible to query this API from within Emacs. vu> I am quite an ignorant in these things, but does the following help? vu> http://log.scifihifi.com/post/55837387/simple-iphone-keychain-code That seems useful. I think auth-source needs a general protocol to talk to helper applications when Emacs itself doesn't support it. This can be tricky because of the security implications of passing passwords. EPG does it well but I don't know the specifics. So there's really three parts: 1) define a helper protocol to pass auth request parameters in the environment somehow 2) read the password back securely 3) write an implementation that works with the Mac OS X keychain Contributions welcome on all 3 items. I don't know if I'll have time soon to work on this, but feedback would certainly help. On Sun, 25 Jul 2010 21:09:30 +0100 Uday S Reddy wrote: USR> Another question that I always wondered about. Does auth-source allow USR> for multiple logins on the same server/protocol combination? Not currently. The first one found is picked IIRC. I think it would make the UI significantly more complex to allow multiples and perhaps confuse users. The advanced users that need that can typically use aliases for the server name. Do you see a need for it? Ted