[Telepathy] GNOME/KDE: standarisation of secret schemas
George Kiagiadakis
kiagiadakis.george at gmail.com
Mon Jul 16 03:52:17 PDT 2012
On Mon, Jul 16, 2012 at 1:16 PM, Guillaume Desmottes
<guillaume.desmottes at collabora.co.uk> wrote:
> Hey,
>
> GNOME 3.6 is moving away [0] from gnome-keyring to libsecret.
> libsecret is a new client for the Secret Service DBus API. The Secret
> Service allows storage of passwords in a common way on the desktop.
> Supported by gnome-keyring and ksecretservice.
>
> Thanks to Stef we already have patch [1] porting Empathy to libsecret.
> This may be a good time to try to standardise the secret schemas used by
> Empathy and KDE-Telepathy for maximum synergy. Actually, maybe that's
> something we could add to the TP spec?
>
> Atm, Empathy stores and uses 2 secret keys:
>
> - CM param having the secret flag: (account-id, param-name)
> - The key of password protected rooms: (account-id, room-id)
>
> "account-id" is actually the account path, we way want to change it to a
> clearer name.
In kde-tp we store the account unique id ("cm/protocol/account")
mapped directly to the password. We don't save the param-name (not
needed, the auth channel doesn't ask for it) and we also don't save
passwords for rooms (I guess the only use case for that is irc, which
we don't support, right?).
>
> We'll have to define schema names for both keys. We could use something
> like "org.freedesktop.Telepathy.Account" and "
> org.freedesktop.Telepathy.Room".
>
>
> I have no idea how/if kde-tp is already using libsecret as well, so if
> you have some info please let me know.
>
KDE still uses KWallet, since KSecretService is apparently not working
correctly yet. Hopefully somebody will volunteer to fix it at some
point, but until then we are stuck with KWallet.
What I am missing here is how all this blends with
gnome-online-accounts and the future kde web-accounts kcm. I'm not
sure how GOA works, but in kde we plan to migrate to web-accounts when
it is ready, which means that all the authentication details will be
stored by web-accounts and the auth-handler will just use the
web-accounts API to make it interract with the CM. Therefore, we won't
need a telepathy-specific secrets storage.
Regards,
George
More information about the telepathy
mailing list