I'd go ahead and design the UI bearing in mind this functionality will at some future point in time allow for multiple sites. So, have the sites listed in a list view
I've already thought of this and although the back-end upload code supports it (not download), I hadn't written the front-end to reflect it. Not sure if I will for the first release, but I'll try.
Definitely not critical to the first release - especially if the back-end support is there.
If I check the 'Use Passwordmaker.org' checkbox, does this prevent me from assigning another Site under the Host settings, or will these be greyed out?
Currently, yes, but when multiple sites are supported--no.
Use of the passwordmaker.org server will not be free.
Good! Glad to hear it. I truly hope millions of people sign up and slam your servers so hard you have to buy a farm of eServers to handle the load! ;)
What protocols is this going to implement (initially? later?)? FTP? SFTP? SCP? Will MD5 (or other( checksumming be used to validate the downloads?
The supported protocols are those native to Gecko--FTP and HTTP, HTTPS via WebDAV.
Ok - so, HTTPS is the only secure protocol that will be supported? As long as there is at least one... although I'd really like to see support added for WinSCP at some later time...
I'd also like to see the ability to define *local* director[y][ies] for backing up an encrypted copy of the RDF file - at least one, but no reason not to allow for multiple local copies, and even multiple versions. This functionality could be integrated with the 'emergency backup' referred to above. By multiple versions, I mean, an option to 'keep x copies', so that PM would that many copies before replacing the oldest ones.
This will be available as a value-add if the user decides to use the passwordmaker.org server.
IOW, passwordmaker.org will maintain a database of users' past RDF files. The user can view them, add to them, delete them, merge from them at will. The MD5 checksum feature will also be a value-add available only from passwordmaker.org.
Ok, I see where you're going with this... and I don't really have a *huge* problem with it, however...
Even if you don't allow for the user to keep multiple backups of their RDF file locally (although, if you're going to allow this (multiple copies) for our own online setups, why *not* provide the ability to have local copies too? Just have two tabs: Online Repositories, and Local Repositories - Local would be much easier to implement than Online, no?), at a bare minimum I think PM should provide a single internal emergency backup copy of the RDF file during an online update or a merge process, etc, with the ability of the User to 'revert' to the previous version if something 'bad' happens - ie, if PM tries to load the RDF file and it is corrupt, it should simply prompt the User to load the last known good RDF file (showing them the list of dated files available if there is multiple Local file support).
This will add a level of comfort, at least for me - especially when you start implementing true synchronization (merging, import/export of single/groups of accounts, etc), as that will introduce yet another level of complexity and more room for file corruption.
However, you should be aware that FTP and HTTP/HTTPS run over TCP/IP, which defines its own robust error handling and error correction algorithms. Use of passwordmaker.org for features will not be free and will be subject to the user's agreement of a disclaimer.
But of course... ;)
Additionally, as a security precaution, passwordmaker.org won't accept RDF files which contain master passwords.
Good. I'd have a problem with that if it did...
I'd also really like to see PM *automatically* make a backup copy (encrypted) of the RDF file before replacing the local copy with a downloaded remote copy
I'll consider this, albeit probably not encrypted -- hey the primary passwordmaker.rdf isn't encrypted.
No - but I thought that was a feature request... and if it is not, it is a feature I'd like to see, since the Account Settings are the other major factor with respect to the calculation of the password. If someone gets ahold of my RDF file, they're halfway there, and I'd prefer to make it as difficult as possible for them.
edit: Just to clarify, basic FTP/HTTP/HTTPS upload and download will ALWAYS be free!
Can't ask for more!
Thanks again Eric - looking forward to testing this stuff out...