This project is simply a wrapper of this project
docker-credential-helpers.
It provides similiar
APIs
as the docker-credential-helpers does.
All credit is due to the people who makes docker-credential-helpers.
This library aims to provide easy-to-use and cross-platform APIs for interacting with native credential storage such as Windows Credential Manager or OSX keychain. Dotnet does have a capability for storing/retreiving credential (or sensitive data) called Data Protection API. To my knowledge this API is only available on Windows, hence the motivation to make this library cross-platform.
Install from Nuget.
dotnet add package NativeCredentialStore --version 0.0.0
To access the native credential storage, you must have a
IDockerCredentialHelper object and there are 2 ways to get it:
- Via the .NET Dependency Injection container - using
AddDockerCredentialHelper()using Microsoft.Extensions.DependencyInjection; using NativeCredentialStore.DockerCredentialHelper; var serviceProvider = new ServiceCollection() .AddDockerCredentialHelper() .BuildServiceProvider(); var dockerCredentialHelper = serviceProvider.GetRequiredService<IDockerCredentialHelper>();
- Via the factory class
CredentialStoreFactory.GetDockerCredentialHelper(...)using static NativeCredentialStore.CredentialStoreFactory; var dockerCredentialHelper = GetDockerCredentialHelper();
using NativeCredentialStore.DockerCredentialHelper;
using static NativeCredentialStore.CredentialStoreFactory;
var dockerCredentialHelper = GetDockerCredentialHelper();
var credentials = new Credentials
{
ServerURL = "http://nativecredentialstore.com",
Username = "foo@email.com",
Secret = "password"
};
// No return - can be used to update existing Credentials
await dockerCredentialHelper.StoreAsync(credentials);
// Return the same Credentials object we stored
var storedCredentials = await dockerCredentialHelper.GetAsync("http://nativecredentialstore.com");
// Return a dictionary looking like this:
// {"http://nativecredentialstore.com": "foo@email.com"}
var credentialsDict = await dockerCredentialHelper.ListAsync();
// Erase/remove the credentials - this is idempontent
await dockerCredentialHelper.EraseAsync("http://nativecredentialstore.com");
// Return an empty dictionary if there's no credentials
credentialsDict = await dockerCredentialHelper.ListAsync();During compilation, this project determines which executable files to download
based on the OS platform. Then during runtime, it calls those executable
to perform the commands (get, erase, store, and list).
The executables will be first downloaded to the project's $(ToolsFolder) path.
Then they are copied to the bin folder so that it is visible for the code to see. When a client
calls one of the methods such as INativeCredentialStore.GetAsync(...), it will start a process to
call the appropriate executable and pass the arguments to that executable. The output of the
executable will be serialized to a C# object and it returns this object to the client.
When generating a nuget package, it will download all executables (for differnt OS's and platform architecture)
and pack all those files inside the nuget package (under contentFiles folder). When a consumer project
has a reference to the NativeCredentialStore library, all the executables will be copied to the bin
folder of the consumer project.