Creates a new ACL entry with the given characteristics, and adds it to an access instance.
- macOS 10.7+
The access instance to which to add the information.
An array of
Secinstances identifying apps that are allowed access to the keychain item without user confirmation.
Trusted Application Ref
Set this parameter to
nilto indicate that any app can use this item. Pass an empty array to indicate that there are no trusted apps.
The human readable name to be used to refer to this item when the user is prompted.
A set of prompt selector flags. See
Secfor possible values.
Keychain Prompt Selector
A pointer the method uses to return the new
A result code. See Security Framework Result Codes.
The ACL entry returned by this method includes a list of trusted apps, the name of the keychain item as it appears in user prompts, the prompt selector flag, and a list of one or more operations to which this ACL entry applies. By default, a new ACL entry applies to all operations. Use the
Sec method to set the list of operations for an ACL entry.
The system requires exactly one owner ACL entry in each access instance. The
Sec method fails if you attempt to add a second owner entry. To change owner access controls, use the
Sec function to find the owner entry (the only one with an authorization tag of
k) and the
Sec method to change it as needed.