Support bidirectional sync with a different database file [$10] #90
Comments
|
Implemented in #93 |
|
I don't think #93 can Sync(and merge) from an external file selected by the user (other then the currently opened database file) ? |
|
#93 merges if there are unsaved changes to the database. I suppose what this issue is asking for is a "merge by default" behavior which would be trivial to add to the existing autoreload code. Perhaps change the autoreload option to a spin box selector with three options "auto", "ask", "merge" |
|
What I think it's supposed to do this feature is: This will finally fix every behaviour with multiple cloud and sync service. What do you guys think? |
|
You want to open |
Current behaviourWith #47 and #92 we have this scenario: I have a So I can only address this by:
If I want to Merge multiple file I must do that manually every time Expected BehaviorWith an option to "Continuously Merge from another database", KeePassXC will check for changes on selected files and merge them automatically NotesThis issue was requested some time ago, I'm reporting here what I've understand about it and asking if it's useful or useless to have this option on KeePassXC This is also a KeePass feature |
|
Synchronization is a feature, which we more or less support. What you are describing is really a combination of features and is described here: https://sourceforge.net/p/keepass/discussion/329220/thread/be5d5787/ One thing to note that we currently don't do, before the db is saved KeePass checks to see if there were changes to the underlying file and asks to merge if so. |
|
FTP would be awesome, too. |
This feature would be awesome! Otherwise I still have to use KeePass to sync several databases ... |
|
We kind of support that already. When an opened file was changed externally, KeePassXC automatically reloads the changes. What we don't have is an explicit check before saving, but auto reload and merge should usually be quick enough. |
|
Thanks, but that's not what I meant. Let me describe it better: We have several central databases on a fileshare, and each user has copies of these databases in their homes. This works already fine with KeePass (File -> Synchronize -> Synchronize with File...). |
|
I'm not sure if this isn't a little out-of-scope. On the other hand, KeePass does support something like that apparently. |
|
@jeroen7s If it fixes the issue, then it should be alright unless it comes at big cost. I am up for development if someone(dev from xc) guides me a bit in the start up |
|
This idea seems pretty good but we will need a major code-refactor before implementing something this big |
|
if you're running KeePassXC on a Linux box, as a kludge you can install you'll need to provide your password whether or not you've already got the also, I suspect you can forgo installing to automate things a bit more you could probably use this excellent blog post by @Publicus breaks down how to properly install again -- presuming you're running KeePassXC on Linux -- the fwiw. EDIT: also #2184. |
|
@droidmonkey, thank you very much for your work on this! And for your and the whole development team's work on the project! I'm really excited to see this in action, and grateful for your work! |
|
It works really well too! The real thanks needs to go to @ckieschnick and HickNHack software who developed this and the advanced merging code to begin with. |
|
Whether it works correctly now and exactly like analogous function in original KeePass? Thanks! |
|
It does as long as you compile with the "WITH_XC_KEESHARE_SECURE" setting enabled. Most platforms will have this setting compiled in. The exceptions are macos and ubuntu <= Trusty due to missing libquazip5. Also, you're very welcome @Publicus ! |
|
@droidmonkey Thank you for offering the platform to start developing the KeeShare Extension in the first place. |
|
Came here by #637 which is the exact use case I try to replicate with KeeShare now. This works 90% for me now, with one drawback: I can't find an option to import from a *.kdbx database file with a composed master key (password + key file in my case). This means that I would need to leave the cloud copy with less security than the local copy. |
|
@m0rphU the current system is fixed to passwords only. It is surely a good point to extend in the future. |
|
You can also make your cloud copy with a much longer password. It is effectively the same thing |
|
@mstarke Thanks for the clarification. I suppose integrating all options is mainly a GUI thing? With the regular merge options, I can unlock via all regular options. For now, I'll keep using the cloud version as the primary one on my PC as well. So I have no blocker for migration from KeePass to KeePassXC. |
Isn't it harder to guess both key file and password instead of only having to guess a (possibly long) password? |
|
In the backend, the master key is formed by appending the SHA256 of the keyfile data (in most cases) to the SHA256 of the password. keepassxc/src/keys/FileKey.cpp Lines 106 to 109 in 8bfc539 So yes, having to guess two SHA-256 values instead of just one is more difficult. But brute forcing a password grows exponentially more difficult with each additional character. Even a 20 random character password (especially with symbols) is impossible to guess in the current lifetime of the universe with a massive cracking exercise. @m0rphU I know KeePass2Android supports filling the master password with your fingerprint. This could alleviate the need to type in a very long password for the cloud storage every time you use your database. |
|
I was just about to check my code since I was sure that the key file is hashed most of the time of it's longer than 32 bytes. Otherwise I would have implemented it wrongly in KeePassKit. But I just saw you edited your answer 😬. The problem with using the sync container as a standalone store is that you are severely limiting the options for encryption parameters since it's considers an implementation detail and nothing a user should actually know or change. This is a use case we never considered as vital but you are a good example that it might actually be worthwhile to allow for more options on the sync container. |
|
Bidirectional sync does not work: it syncs currently opened DB, but other DB file left untouched. This function does not work like original in KeePass which synchronizes both files. Please reopen and fix, still need to use KeePass for sync. Also why do You ask password for another Db file as it has the same pass by default. KeePass does not ask it. |
|
I have been looking through so many requests about the exact same thing as I need, with different wording, but always the same intention and very clear to me; however, it keeps being "Closed" with a pointer to a feature that does a totally different thing, a much more complex and convoluted feature that is not even yet documented. I have been jumping this for a couple of hours already. I will try once again in some of the "Open" issues about this same thing, (but with slightly different wording), to see if it would finally be appreciated/understood; but I keep my expectations very low... |
Expected Behavior
Option to Sync (on changes) from another external file.
Would be nice if with the current database Autoreload and database Merge we should implement an option on KeePassXC to watch on an external source (a file placed on another drive/folder) and when there are changes on that file, merge with the current opened database.
This can be useful with Cloud/Sync client like Dropbox, GDrive, WebDav, so one can listen on an external file and KeePassXC will continuously merge the changes from that file.
This is related to #22
The text was updated successfully, but these errors were encountered: