chrisballinger
commented
7 years ago iCloud Keychain is not required for the regular keychain to work and requires no setup for the end user. The keychain API we use has been available since the original iPhone was released.
Since the database password is stored in the keychain, it means that the keychain itself is working properly, since I've never seen a database decryption error except when migrating a backup to a new device (this is intentional). We must have a bug in our code that wipes the account password(s). I think we should resolve this by moving the account passwords to inside the database, because it's already encrypted by a strong password in the keychain.
n8fr8
I think I have solved the disappearing account password issue. Both R and I were using devices that may have not had the keychain enabled (Is that possible?). She had a new device, and I had been messing around with settings, and was getting prompted to re-enable the iCloud keychain, or something along those lines.
Is it possible, that the app could work without the keychain (since you are starting with a default key/password for the database), but that the account password would be not stored if the keychain wasn't properly setup?
Can we either A) alert the user that they need to setup their keychain or B) not depend on the keychain for the account passwords?
Does this make sense?