Skip to content

Replace Safari auth with Slack desktop app cookie storage#11

Merged
wham merged 1 commit intomainfrom
copilot/investigate-gh-slack-auth
Feb 25, 2026
Merged

Replace Safari auth with Slack desktop app cookie storage#11
wham merged 1 commit intomainfrom
copilot/investigate-gh-slack-auth

Conversation

@wham
Copy link
Owner

@wham wham commented Feb 25, 2026

Remove Safari binary cookie parser (requires Full Disk Access) and switch to reading the Slack desktop app's Chromium cookie database. The new approach is consistent with gh slack and lets the user approve a keychain prompt which is more transparent than giving full disk access to the terminal app.

@wham
Replace Safari auth with Slack desktop app cookie storage
1dca16a 
Remove Safari binary cookie parser (requires Full Disk Access) and
switch to reading the Slack desktop app's Chromium cookie database.
Cookie decryption uses PBKDF2 + AES-CBC with the Keychain password.

- Remove internal/auth/safari.go and Safari-based auth provider
- Add internal/auth/desktop.go with desktop cookie reader
- Add internal/auth/cookie_password_darwin.go for Keychain access
- Remove internal/users/ package (user resolution feature)
- Update main.go to use new desktop auth provider
- Set CGO_ENABLED=1 in .goreleaser.yml (needed for go-keychain)
- macOS-only builds (darwin/amd64 + darwin/arm64)

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@wham wham force-pushed the copilot/investigate-gh-slack-auth branch from 9d6ad94 to 1dca16a Compare February 25, 2026 06:37
@wham wham merged commit bf495cc into main Feb 25, 2026
1 check passed
@wham wham deleted the copilot/investigate-gh-slack-auth branch February 25, 2026 06:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wham