How to integrate keychain in the authorization plugin

Hello,

I'm currently working on an authorization plugin for macOS. I have a custom UI implemented using SFAuthorizationPluginView (NameAndPassword), which prompts the user to input their password. The plugin is running in non-privileged mode, and I want to store the password securely in the system keychain.

However, I came across this article that states the system keychain can only be accessed in privileged mode. At the same time, I read that custom UIs, like mine, cannot be displayed in privileged mode.

This presents a dilemma:

  • In non-privileged mode: I can show my custom UI but can't access the system keychain.

  • In privileged mode: I can access the system keychain but can't display my custom UI.

Is there any workaround to achieve both? Can I securely store the password in the system keychain while still using my custom UI, or am I missing something here?

Any advice or suggestions are highly appreciated!

Thanks in advance!

How to integrate keychain in the authorization plugin
 
 
Q