[GH-ISSUE #32] Store user credentials in the system keychain #25

New issue

Closed

opened 2026-02-28 14:30:04 +03:00 by kerem · 6 comments

kerem commented 2026-02-28 14:30:04 +03:00

Owner

Copy link

Originally created by @auravoid on GitHub (Feb 2, 2021).
Original GitHub issue: https://github.com/jpochyla/psst/issues/32

Saving the authentication credentials to the disk in a config file is great, but saving them raw is a bit insecure. It would be really helpful if the passwords get encrypted for user's privacy and safety.

Originally created by @auravoid on GitHub (Feb 2, 2021). Original GitHub issue: https://github.com/jpochyla/psst/issues/32 Saving the authentication credentials to the disk in a config file is great, but saving them raw is a bit insecure. It would be really helpful if the passwords get encrypted for user's privacy and safety.

kerem 2026-02-28 14:30:04 +03:00

• closed this issue
• added the
  enhancement
  help wanted
  labels

kerem commented 2026-02-28 14:30:04 +03:00

Author

Owner

Copy link

@jpochyla commented on GitHub (Feb 2, 2021):

I understand the sentiment, but we don't really have any key to encrypt with, and it's not really different from all the other stored passwords in other apps. One possible solution would be to use the platform capabilities for this, i.e. Keychain Access on Mac, through the keyring crate: https://crates.io/crates/keyring. PRs welcome!

<!-- gh-comment-id:771469926 --> @jpochyla commented on GitHub (Feb 2, 2021): I understand the sentiment, but we don't really have any key to encrypt with, and it's not really different from all the other stored passwords in other apps. One possible solution would be to use the platform capabilities for this, i.e. Keychain Access on Mac, through the keyring crate: https://crates.io/crates/keyring. PRs welcome!

kerem commented 2026-02-28 14:30:04 +03:00

Author

Owner

Copy link

@SpyrosRoum commented on GitHub (Feb 6, 2021):

Hey, looking at the keyring crate, this looks easy enough so I'm gonna give it a try!

<!-- gh-comment-id:774471075 --> @SpyrosRoum commented on GitHub (Feb 6, 2021): Hey, looking at the keyring crate, this looks easy enough so I'm gonna give it a try!

kerem commented 2026-02-28 14:30:05 +03:00

Author

Owner

Copy link

@SpyrosRoum commented on GitHub (Feb 6, 2021):

I have one question @jpochyla
How do you want to handle the transition from "Password stored in config file" to "Use keyring"?

I am thinking for the next release we make the password field in Config to only be de-serializable but not serializable so we can read it but not write it.
Additionally we will save it in the keyring if it's not already there and we will delete it from the file.
In the next release we will tell serde to completely skip the password and we can remove some code since we will now assume the the password is either in the keyring or nowhere.

This way we give a transactional period for user and we will only have issues if a user skips the next release.
Alternatively we can tell serde to skip the password and just force the user to tell us the password again so we can save it in the keyring.

Thoughts?

<!-- gh-comment-id:774473656 --> @SpyrosRoum commented on GitHub (Feb 6, 2021): I have one question @jpochyla How do you want to handle the transition from "Password stored in config file" to "Use keyring"? I am thinking for the next release we make the `password` field in `Config` to only be de-serializable but not serializable so we can read it but not write it. Additionally we will save it in the keyring if it's not already there and we will delete it from the file. In the next release we will tell serde to completely skip the password and we can remove some code since we will now assume the the password is either in the keyring or nowhere. This way we give a transactional period for user and we will only have issues if a user skips the next release. Alternatively we can tell serde to skip the `password` and just force the user to tell us the password again so we can save it in the keyring. Thoughts?

kerem commented 2026-02-28 14:30:05 +03:00

Author

Owner

Copy link

@jpochyla commented on GitHub (Mar 10, 2021):

Thoughts?

1. I think the choice should be on the user's side, i.e. a checkbox in the credential dialog.
2. There's a chance that we can avoid storing the credentials at all, through authenticating with the "reusable credentials" that the Spotify session gives us, after the first login. I haven't investigated this much, though. It's possible there's some TTL involved.

<!-- gh-comment-id:795377506 --> @jpochyla commented on GitHub (Mar 10, 2021): > Thoughts? 1. I think the choice should be on the user's side, i.e. a checkbox in the credential dialog. 2. There's a chance that we can avoid storing the credentials at all, through authenticating with the "reusable credentials" that the Spotify session gives us, after the first login. I haven't investigated this much, though. It's possible there's some TTL involved.

kerem commented 2026-02-28 14:30:05 +03:00

Author

Owner

Copy link

@BachoSeven commented on GitHub (Mar 10, 2021):

@jpochyla Perhaps we could take inspiration from the (recent) switch that ncspot has made, from storing plaintext(albeit base64-encoded) credentials to a librespot token (see github.com/hrkfdn/ncspot@d6db7a54d6).

Original ncspot issue for reference: https://github.com/hrkfdn/ncspot/issues/447

<!-- gh-comment-id:795619506 --> @BachoSeven commented on GitHub (Mar 10, 2021): @jpochyla Perhaps we could take inspiration from the (recent) switch that `ncspot` has made, from storing plaintext(albeit base64-encoded) credentials to a librespot token (see https://github.com/hrkfdn/ncspot/commit/d6db7a54d634e7d5015ee03daddb939d7c225668). Original ncspot issue for reference: https://github.com/hrkfdn/ncspot/issues/447

kerem commented 2026-02-28 14:30:05 +03:00

Author

Owner

Copy link

@jpochyla commented on GitHub (Mar 13, 2021):

@BachoSeven Yup! master is now storing the token instead of user credentials. Unfortunately it means users need to re-authenticate.

<!-- gh-comment-id:798615987 --> @jpochyla commented on GitHub (Mar 13, 2021): @BachoSeven Yup! `master` is now storing the token instead of user credentials. Unfortunately it means users need to re-authenticate.

kerem referenced this issue 2026-02-28 14:32:54 +03:00

[PR #25] [CLOSED] [WIP] Random and Loop controls #407

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

Add-public-user

feature/ui-consistency

feature/migrate-to-directories-crate

feature/refactor-get-artist-info

cleanup-refactor

auth-login-fix

sign-app

jackson/remove-checksums

Custom-themes

queue-widget

revert-535-Lyric-support

jackson/audio-fitter-fix

jackson/mpris-fix

jackson/made-for-you-extended

rolling

Labels

Clear labels   

api

  

bug

  

build

  

documentation

  

duplicate

  

enhancement

  

good first issue

  

help wanted

  

idea

  

invalid

  

linux

  

lowprio

  

macos

  

pull-request

Mirrored from GitHub Pull Request

  

upstream

  

windows

  

wontfix

No labels

api

bug

build

documentation

duplicate

enhancement

good first issue

help wanted

idea

invalid

linux

lowprio

macos

pull-request

upstream

windows

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/psst#25

No description provided.