I agree with all of this and it's what I tend to follow too.

One question, since you seem to have more experience with this approach.

> Test the API that triggers the query.

When you test the API, do you also check the state of the database?

Let's say there's an endpoint which creates an entity, and that operation involves setting a bunch of columns that aren't returned in the API.

When testing, do you check only the expected API response, or also the database state to be sure the operation was fully correct?

I currently do the latter, but this feels a bit iffy as the database internals are being leaked in an otherwise "blackbox" test.

If you learn towards the first option, how then do you verify all the unreturned database fields are correctly set?

> it would be great if the app offered an option to hide its files from other apps by locating them in the app's private storage area

For what it's worth, you can do just that now. Not sure when it was introduced, but on the current Android version, you are prompted to select either "Device storage" or "App storage" when creating a new vault.

You can also change the location of existing vaults from app to device and vice-versa.

With that now available, the one thing missing for me is a biometric lock option. Or even any kind of locking at all. There's a community plugin for that, but it's quite unstable and no longer maintained.

On iOS any app can be set to a biometric lock by long-pressing the app icon. I believe some Android flavors have this feature, but not all. However I think it can also be done on Android using the "spaces" feature.

I use a Samsung device which unforunately doesn't have the app lock feature.

But it does have a "secure folder" which is more or less what you mean by "spaces", I guess.

The downside of the secure folder against normal app locking is that the apps are no longer seamlessly integrated with the launcher and other apps. It's definitely more secure but is ultimately overkill for my needs.

Yeah and for me it's no option because I have all the banking apps in my secure folder and as such I have a pretty long password on it. If you could have two secure folders then yeah maybe.

And I also have a work profile as well through "Island" :)

Oh great! I didn't know that was an option <3 I'll have a look. I originally installed it a couple years ago when I bought my phone.

Ps: Where do you see the feature to move an existing Vault? I don't see this option sadly

Sorry, I was mistaken about that aspect.

The option is available to move a vault from the app to the device storage, but not the other way around. At least not from within Obsidian.

But if you use a PC or a file manager that has full device access, you can manually copy the vault folder to the `/storage/emulated/0/Android/data/md.obsidian/files` directory.

I just tried that and Obsidian recognised it.