Merge dev into main: stable v2.0.0 - ssh_config/SQLite/both modes

Author: madLinux7

.github/workflows/release.yml

@@ -33,7 +33,6 @@ jobs:
             "darwin/amd64"
             "darwin/arm64"
             "windows/amd64"
-            "windows/arm64"
             "freebsd/amd64"
             "freebsd/arm64"
           )
@@ -43,7 +42,7 @@ jobs:
             GOARCH="${target#*/}"
             output="dist/dssh-${GOOS}-${GOARCH}"
             if [ "$GOOS" = "windows" ]; then
-              output="${output}.exe"
+              output="dist/dssh.exe"
             fi
             echo "Building ${GOOS}/${GOARCH}..."
             CGO_ENABLED=0 GOOS="$GOOS" GOARCH="$GOARCH" \

.gitignore

@@ -11,4 +11,5 @@ vendor/
 .DS_Store
 Thumbs.db
 
-push-full.sh
+push-full.sh
+dssh

README.md

@@ -7,9 +7,11 @@
 [![SQLite](https://img.shields.io/badge/storage-SQLite-003B57?logo=sqlite&logoColor=white)](https://www.sqlite.org)
 [![AES-256-GCM](https://img.shields.io/badge/crypto-AES--256--GCM%20%2B%20Argon2id-22C55E?logo=letsencrypt&logoColor=white)](#password-encryption)
 
-The only SSH connection management tool you'll ever need. No dependencies, no more editing `/etc/hosts`.
+The only SSH connection management tool you'll ever need. **TUI & CLI**. No dependencies, no more file editing.
 
-Four core features: **Create, Connect, Edit, Delete**. Dead-simple and cross-platform for every CLI.
+Four core features: **Create, Connect, Edit, Delete**. Dead-simple and cross-platform.
+
+Store connections in **SQLite**, your **ssh_config** file, or **both** — your choice.
 
 Passwords are encrypted using a master passphrase (_you should consider using pubkeys only tho ;))_.
 
@@ -32,6 +34,7 @@ Passwords are encrypted using a master passphrase (_you should consider using pu
 
 - [Features](#features)
 - [How it works](#how-it-works)
+- [Connection Modes](#connection-modes)
 - [Usage](#usage)
   - [Command Reference](#command-reference)
   - [TUI Navigation](#tui-navigation)
@@ -43,6 +46,7 @@ Passwords are encrypted using a master passphrase (_you should consider using pu
   - [Delete (TUI)](#delete-tui)
   - [List connections (CLI)](#list-connections-cli)
   - [Remove a connection (CLI)](#remove-a-connection-cli)
+  - [Configure mode](#configure-mode)
   - [Reset everything](#reset-everything)
 - [Installation](#installation)
   - [Install & Update script (recommended)](#install--update-script-recommended)
@@ -63,6 +67,7 @@ Passwords are encrypted using a master passphrase (_you should consider using pu
 
 Also:
 
+- **Multiple storage backends** 🗄️ — use SQLite (`~/.dssh/dssh.db`), your `ssh_config` file, or both
 - **Launch into a directory** 📂 — optionally land in a specific remote directory on connect
 - **Password encryption** 🔒 — AES-256-GCM + Argon2id, protected by a master passphrase
 - **Cross-platform** 💻 — Linux, macOS, Windows, FreeBSD (amd64 + arm64)
@@ -74,9 +79,30 @@ dssh is a thin wrapper around your system's `ssh` binary:
 
 - **Key auth** — `syscall.Exec` replaces the dssh process with ssh (zero overhead, full terminal control)
 - **Password auth** — ssh runs as a child process with `SSH_ASKPASS` to supply the decrypted password (no `sshpass` needed)
-- **Data** — connections stored in SQLite at `~/.dssh/dssh.db`, no config files
+- **Data** — connections stored in SQLite (`~/.dssh/dssh.db`), your `ssh_config` file, or both
 - **Crypto** — AES-256-GCM encryption with Argon2id key derivation for stored passwords
 
+## Connection Modes
+
+On first launch, dssh asks you to choose a connection mode:
+
+| Mode | Description |
+|---|---|
+| **SQLite only** | Connections stored in `~/.dssh/dssh.db` (default) |
+| **ssh_config only** | Connections read from and written to your `ssh_config` file |
+| **Both** | Use SQLite and ssh_config side by side, toggle with `CTRL+L` |
+
+When using **ssh_config** or **both**, you pick a destination file:
+- **Main file** — `~/.ssh/config`
+- **Directive** — `~/.ssh/config.d/dssh`
+- **Custom path** — any file you choose
+
+If the file doesn't exist, dssh offers to create it for you.
+
+Change your mode anytime with `dssh config`. View current settings with `dssh config get` (or `dssh config show`).
+
+> **Note:** Password auth is only available when saving to SQLite. ssh_config entries always use key auth.
+
 ## Usage
 
 ### Command Reference
@@ -92,6 +118,8 @@ dssh is a thin wrapper around your system's `ssh` binary:
 | `dssh create` / `dssh new` | Interactive form to create a connection |
 | `dssh edit` | Edit an existing connection |
 | `dssh delete` | Delete a connection (TUI, triple-confirm) |
+| `dssh config` | Configure connection mode (SQLite / ssh_config / both) |
+| `dssh config get` / `dssh config show` | Show current configuration |
 | `dssh reset` | Delete all data (double confirmation) |
 | `dssh --version` | Print version |
 
@@ -102,6 +130,8 @@ dssh is a thin wrapper around your system's `ssh` binary:
 | `Tab` / `Shift+Tab` | Switch between tabs |
 | `↑` / `↓` | Navigate lists |
 | `Enter` | Select / confirm |
+| `Ctrl+L` | Toggle SQLite / ssh_config list (both mode) |
+| `Ctrl+T` | Toggle key / password auth (create/edit) |
 | `ESC` / `Q` | Quit |
 
 ### Quick start - Let's Go!
@@ -207,6 +237,29 @@ dssh rm myserver
 ```
 Remove a connection instantly. No confirmation asked.
 
+### Configure mode
+
+Switch between SQLite, ssh_config, or both at any time.
+
+```bash
+dssh config
+```
+
+![dssh config](demo_config.gif)
+
+View current settings:
+
+```bash
+dssh config get
+```
+
+```
+parse_mode:                      both
+ssh_config_parse_destination:    ~/.ssh/config.d/dssh
+parse_both_view_mode:            sqlite
+parse_both_default_save_target:  sqlite
+```
+
 ### Reset everything
 
 Wipe all saved connections, encrypted passwords, and settings (deletes the SQLite database). Requires two confirmations to prevent accidents.
@@ -223,7 +276,7 @@ All data has been reset
 
 ## Installation
 
-### Install & Update script (recommended)
+### Install & Update script (recommended for now)
 
 **Linux / macOS / FreeBSD:**
 

demo_1.gif

@@ -8,12 +8,15 @@ import (
 
 	"github.com/madLinux7/dssh/internal/db"
 	"github.com/madLinux7/dssh/internal/model"
+	"github.com/madLinux7/dssh/internal/sshconfig"
 	"github.com/spf13/cobra"
 )
 
 func newAddCmd() *cobra.Command {
 	var port int
 	var directory string
+	var addToSQLite bool
+	var addToSSHConfig bool
 
 	cmd := &cobra.Command{
 		Use:   "add [-p PORT] [-d DIR] NAME target [password]",
@@ -28,6 +31,7 @@ and the password is encrypted with your master passphrase.`,
 				return err
 			}
 			target := args[1]
+			hasPassword := len(args) == 3
 
 			user, host, parsedPort, err := parseTarget(target)
 			if err != nil {
@@ -41,12 +45,6 @@ and the password is encrypted with your master passphrase.`,
 				parsedPort = 22
 			}
 
-			d, err := db.Open()
-			if err != nil {
-				return err
-			}
-			defer d.Close()
-
 			conn := &model.Connection{
 				Name:      name,
 				User:      user,
@@ -56,24 +54,52 @@ and the password is encrypted with your master passphrase.`,
 				AuthType:  model.AuthKey,
 			}
 
-			// Optional password argument → password auth.
-			if len(args) == 3 {
+			// Determine save target.
+			saveTarget := resolveAddTarget(addToSQLite, addToSSHConfig, hasPassword)
+			if saveTarget == "" {
+				return nil // user aborted
+			}
+
+			// Password handling.
+			if hasPassword {
+				if saveTarget == model.SaveTargetSSHConfig {
+					errMsg("Passwords can only be saved to SQLite. Use %s or %s mode.",
+						magentaText("--sqlite"), magentaText("sqlite_only"))
+					return nil
+				}
 				password := args[2]
 				conn.AuthType = model.AuthPassword
-
-				encPass, nonce, err := encryptPassword(d, password)
+				encPass, nonce, err := encryptPassword(sharedDB, password)
 				if err != nil {
 					return err
 				}
 				conn.EncryptedPass = encPass
 				conn.PassNonce = nonce
 			}
 
-			if err := db.Insert(d, conn); err != nil {
-				return err
+			// Cross-source duplicate check in "both" mode.
+			if runtimeCfg.ParseMode == model.ParseModeBoth {
+				if err := checkCrossSourceDuplicate(name, saveTarget); err != nil {
+					return err
+				}
 			}
 
-			success("Added connection %q (%s@%s:%d)", name, user, host, parsedPort)
+			// Save to the chosen target.
+			if saveTarget == model.SaveTargetSSHConfig {
+				p, err := sshConfigPath()
+				if err != nil {
+					return err
+				}
+				if err := sshconfig.Insert(p, conn); err != nil {
+					return err
+				}
+				success("Added connection %q to ssh_config (%s@%s:%d)", name, user, host, parsedPort)
+			} else {
+				if err := db.Insert(sharedDB, conn); err != nil {
+					return err
+				}
+				success("Added connection %q to SQLite (%s@%s:%d)", name, user, host, parsedPort)
+			}
 			return nil
 		},
 	}
@@ -82,9 +108,82 @@ and the password is encrypted with your master passphrase.`,
 	cmd.Flags().StringVarP(&directory, "directory", "d", "", "Remote directory to cd into on connect")
 	cmd.Flags().StringVar(&directory, "cd", "", "Alias for --directory")
 	cmd.Flags().MarkHidden("cd")
+	cmd.Flags().BoolVar(&addToSQLite, "sqlite", false, "Save to SQLite")
+	cmd.Flags().BoolVar(&addToSSHConfig, "sshconfig", false, "Save to ssh_config")
 	return cmd
 }
 
+// resolveAddTarget determines where to save based on flags and mode.
+// Returns empty string if user aborted.
+func resolveAddTarget(flagSQL, flagSSH, hasPassword bool) model.SaveTarget {
+	mode := runtimeCfg.ParseMode
+
+	// Explicit flags take priority.
+	if flagSQL {
+		return model.SaveTargetSQLite
+	}
+	if flagSSH {
+		return model.SaveTargetSSHConfig
+	}
+
+	switch mode {
+	case model.ParseModeSSHConfigOnly:
+		return model.SaveTargetSSHConfig
+	case model.ParseModeBoth:
+		if hasPassword {
+			fmt.Println("Passwords can only be saved to SQLite.")
+			choice := radioPrompt("Save to SQLite?", []string{"Yes", "Abort"})
+			if choice == 0 {
+				return model.SaveTargetSQLite
+			}
+			return ""
+		}
+		// Prompt with radio buttons, pre-select the default.
+		options := []string{"SQLite", "ssh_config"}
+		choice := radioPrompt("Save to:", options)
+		switch choice {
+		case 0:
+			return model.SaveTargetSQLite
+		case 1:
+			return model.SaveTargetSSHConfig
+		default:
+			return ""
+		}
+	default: // sqlite_only
+		return model.SaveTargetSQLite
+	}
+}
+
+// checkCrossSourceDuplicate warns if the name exists in the other source.
+func checkCrossSourceDuplicate(name string, target model.SaveTarget) error {
+	sqlConn, sshConn, err := getConnectionSources(name)
+	if err != nil {
+		return err
+	}
+	if sqlConn != nil && sshConn != nil {
+		return fmt.Errorf("connection %q already exists in both SQLite and ssh_config", name)
+	}
+	if target == model.SaveTargetSQLite && sshConn != nil {
+		fmt.Printf("Connection %q already exists in ssh_config.\n", name)
+		choice := radioPrompt("Save to SQLite anyway?", []string{"Yes", "Abort"})
+		if choice != 0 {
+			return fmt.Errorf("aborted")
+		}
+	}
+	if target == model.SaveTargetSSHConfig && sqlConn != nil {
+		fmt.Printf("Connection %q already exists in SQLite.\n", name)
+		choice := radioPrompt("Save to ssh_config anyway?", []string{"Yes", "Abort"})
+		if choice != 0 {
+			return fmt.Errorf("aborted")
+		}
+	}
+	return nil
+}
+
+func magentaText(s string) string {
+	return fmt.Sprintf("\033[35m%s\033[0m", s)
+}
+
 // parseTarget parses user@host or ssh://user@host:port into components.
 func parseTarget(target string) (user, host string, port int, err error) {
 	// Try ssh:// URI first.

demo_config.gif

@@ -0,0 +1,66 @@
+package cli
+
+import (
+	"fmt"
+
+	"github.com/madLinux7/dssh/internal/model"
+	"github.com/madLinux7/dssh/internal/tui"
+	"github.com/spf13/cobra"
+)
+
+func newConfigCmd() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:   "config",
+		Short: "Configure dssh connection mode",
+		Args:  cobra.NoArgs,
+		RunE: func(cmd *cobra.Command, args []string) error {
+			cfg := tui.RunConfigDialog(appVersion)
+			if cfg == nil {
+				fmt.Println("Configuration cancelled.")
+				return nil
+			}
+
+			if err := saveRuntimeConfig(sharedDB, cfg); err != nil {
+				return err
+			}
+
+			runtimeCfg = cfg
+			success("Mode set to %s", model.ParseModeLabel(cfg.ParseMode))
+
+			if cfg.SSHConfigDest != "" {
+				success("ssh_config file set to: %s", cfg.SSHConfigDest)
+			}
+			return nil
+		},
+	}
+
+	cmd.AddCommand(newConfigGetCmd())
+	return cmd
+}
+
+func newConfigGetCmd() *cobra.Command {
+	return &cobra.Command{
+		Use:     "get",
+		Aliases: []string{"show"},
+		Short:   "Show the current configuration",
+		Args:    cobra.NoArgs,
+		RunE: func(cmd *cobra.Command, args []string) error {
+			if runtimeCfg == nil {
+				fmt.Println("Not configured yet. Run 'dssh config' to set up.")
+				return nil
+			}
+
+			fmt.Printf("parse_mode:                      %s\n", runtimeCfg.ParseMode)
+			if runtimeCfg.SSHConfigDest != "" {
+				
+				fmt.Printf("ssh_config_parse_destination:    %s\n", runtimeCfg.SSHConfigDest)
+			}
+			if runtimeCfg.ParseMode == model.ParseModeBoth {
+				fmt.Printf("parse_both_view_mode:            %s\n", runtimeCfg.BothViewMode)
+				fmt.Printf("parse_both_default_save_target:  %s\n", runtimeCfg.DefaultSaveTarget)
+			}
+
+			return nil
+		},
+	}
+}