YAML note properties support (#100)

- Added secure token storage using Obsidian's [SecretStorage API](https://docs.obsidian.md/Reference/TypeScript+API/SecretStorage).
	- Authentication tokens are now stored securely using the platform's native secret storage (Keychain on macOS, Credential Manager on Windows, libsecret on Linux).
	- Tokens are no longer stored in `data.json`, preventing accidental exposure when syncing vaults.
	- Existing tokens are automatically migrated to secure storage on plugin load.
	- New password-style input with visibility toggle in Git settings.
	- Requires Obsidian 1.11.4 or later.
- Added configurable frontmatter output format setting.
	- YAML format is now the default (more readable and standard for static site generators).
	- JSON format available as an option for backwards compatibility.
	- Configurable in Settings > Note properties (frontmatter).
- Improved diff view styling.

Author: saberzero1

docs/Changelog.md

@@ -2,7 +2,7 @@
 title: Roadmap and Changelog
 description: Changelog and feature roadmap for Quartz Syncer.
 created: 2025-05-16T12:59:31Z+0200
-modified: 2026-01-08T14:46:23Z+0100
+modified: 2026-01-09T09:51:37Z+0100
 publish: true
 ---
 
@@ -24,6 +24,20 @@ publish: true
 
 ## Released
 
+### Version 1.9.1
+
+- Added secure token storage using Obsidian's [SecretStorage API](https://docs.obsidian.md/Reference/TypeScript+API/SecretStorage).
+	- Authentication tokens are now stored securely using the platform's native secret storage (Keychain on macOS, Credential Manager on Windows, libsecret on Linux).
+	- Tokens are no longer stored in `data.json`, preventing accidental exposure when syncing vaults.
+	- Existing tokens are automatically migrated to secure storage on plugin load.
+	- New password-style input with visibility toggle in Git settings.
+	- Requires Obsidian 1.11.4 or later.
+- Added configurable frontmatter output format setting.
+	- YAML format is now the default (more readable and standard for static site generators).
+	- JSON format available as an option for backwards compatibility.
+	- Configurable in Settings > Note properties (frontmatter).
+- Improved diff view styling.
+
 ### Version 1.9.0
 
 - Replaced Octokit-based implementation with Isomorphic Git-based implementation.

docs/Settings/Git/Access Token.md

@@ -2,12 +2,40 @@
 title: Access Token
 description: Personal access token or password for authentication.
 created: 2026-01-08T14:00:00Z+0100
-modified: 2026-01-08T14:00:00Z+0100
+modified: 2026-01-09T10:00:54Z+0100
 publish: true
 tags: [settings/git]
-default_value: '`""`'
 ---
 
-The personal access token or password used for authentication.
+> [!WARNING] Requirements
+> Secure token storage requires **Obsidian 1.11.4 or later**.
 
-Refer to the [authentication guides](../Guides/index.md) for more information on how to generate tokens for different providers.
+The personal access token or password used for authentication with your Git provider.
+
+## Secure Storage
+
+As of version 1.9.1, tokens are stored securely using Obsidian's SecretStorage API. This uses your operating system's native secret storage:
+
+- **macOS**: Keychain
+- **Windows**: Credential Manager
+- **Linux**: libsecret (GNOME Keyring, KWallet, etc.)
+
+This means your token is never written to `data.json` or any other plain text file, preventing accidental exposure when syncing your vault between devices.
+
+## Token Input
+
+The token input field includes:
+
+- **Status indicator**: Shows whether a token is currently stored ("Token stored securely") or not ("No token set").
+- **Password field**: Enter your token in a masked input field for privacy.
+- **Visibility toggle**: Click the eye icon to show/hide the token while typing.
+- **Save/Update button**: Store the token in secure storage.
+- **Clear button**: Remove the stored token (only shown when a token exists).
+
+## Migration
+
+If you're upgrading from a version prior to 1.9.1, your existing token will be automatically migrated to secure storage and removed from `data.json` on first load.
+
+## Generating Tokens
+
+Refer to the [[Setup Guide#Choose Your Git Provider|setup guide for your Git provider]] for instructions on generating tokens for different Git providers.

docs/Settings/Note properties/Frontmatter format.md

@@ -0,0 +1,39 @@
+---
+title: Frontmatter format
+description: Output format for frontmatter/note properties in published notes.
+created: 2026-01-09T07:32:00Z+0100
+modified: 2026-01-09T07:32:00Z+0100
+publish: true
+tags: [settings/frontmatter]
+default_value: "`yaml`"
+---
+
+This setting controls the output format for frontmatter in your published notes.
+
+## Options
+
+- **YAML** (default): Human-readable format. Obsidian default, and standard for most static site generators including Quartz.
+- **JSON**: Legacy format, outputs frontmatter as a single JSON object.
+
+## Example output
+
+### YAML format
+
+```yaml
+---
+publish: true
+title: My Note
+tags:
+  - tag1
+  - tag2
+created: Jan 09, 2026 7:32 AM
+---
+```
+
+### JSON format
+
+```json
+---
+{"publish":true,"title":"My Note","tags":["tag1","tag2"],"created":"Jan 09, 2026 7:32 AM"}
+---
+```

main.ts

@@ -8,6 +8,7 @@ import ObsidianFrontMatterEngine from "src/publishFile/ObsidianFrontMatterEngine
 import QuartzSyncerSiteManager from "src/repositoryConnection/QuartzSyncerSiteManager";
 import { QuartzSyncerSettingTab } from "./src/views/QuartzSyncerSettingTab";
 import { DataStore } from "src/publishFile/DataStore";
+import { SecretStorageService } from "src/utils/SecretStorageService";
 import Logger from "js-logger";
 
 /**
@@ -23,7 +24,6 @@ const DEFAULT_SETTINGS: QuartzSyncerSettings = {
 		auth: {
 			type: "basic",
 			username: "",
-			secret: "",
 		},
 		providerHint: "github",
 	},
@@ -48,6 +48,7 @@ const DEFAULT_SETTINGS: QuartzSyncerSettings = {
 	usePermalink: false,
 
 	includeAllFrontmatter: false,
+	frontmatterFormat: "yaml",
 
 	/**
 	 * @privateRemarks
@@ -143,6 +144,7 @@ export default class QuartzSyncer extends Plugin {
 	settings!: QuartzSyncerSettings;
 	appVersion!: string;
 	datastore!: DataStore;
+	secretStorageService!: SecretStorageService;
 
 	publishModal!: PublicationCenter;
 
@@ -214,6 +216,12 @@ export default class QuartzSyncer extends Plugin {
 
 		this.migrateGitHubSettings();
 
+		this.secretStorageService = new SecretStorageService(this.app);
+
+		await this.secretStorageService.migrateFromSettings(this.settings, () =>
+			this.saveSettings(),
+		);
+
 		if (!this.datastore && this.settings.useCache) {
 			this.datastore = new DataStore(
 				this.app.vault.getName(),
@@ -222,8 +230,6 @@ export default class QuartzSyncer extends Plugin {
 			);
 		}
 
-		// Check if the plugin has been updated
-		// If so, clear the cache
 		if (!this.settings || this.settings.pluginVersion !== this.appVersion) {
 			await this.clearCacheForAllFiles(true);
 			this.settings.pluginVersion = this.appVersion;
@@ -277,14 +283,20 @@ export default class QuartzSyncer extends Plugin {
 		}
 	}
 
-	/**
-	 * Saves the plugin settings to data.json.
-	 * This method is called after any changes to the settings.
-	 */
 	async saveSettings(): Promise<void> {
 		await this.saveData(this.settings);
 	}
 
+	getGitSettingsWithSecret(): typeof this.settings.git {
+		return {
+			...this.settings.git,
+			auth: {
+				...this.settings.git.auth,
+				secret: this.secretStorageService.getToken() || undefined,
+			},
+		};
+	}
+
 	/**
 	 * Adds commands to the plugin.
 	 * These commands can be triggered from the command palette or ribbon icon.
@@ -541,6 +553,7 @@ export default class QuartzSyncer extends Plugin {
 			const siteManager = new QuartzSyncerSiteManager(
 				this.app.metadataCache,
 				this.settings,
+				this.getGitSettingsWithSecret(),
 			);
 
 			const publisher = new Publisher(

manifest.json

@@ -1,8 +1,8 @@
 {
 	"id": "quartz-syncer",
 	"name": "Quartz Syncer",
-	"version": "1.9.0",
-	"minAppVersion": "1.8.10",
+	"version": "1.9.1",
+	"minAppVersion": "1.11.4",
 	"description": "Manage and publish your notes to Quartz, the fast, batteries-included static-site generator.",
 	"author": "Emile Bangma",
 	"authorUrl": "https://github.com/saberzero1",

package-lock.json

@@ -1,6 +1,6 @@
 {
 	"name": "quartz-syncer",
-	"version": "1.9.0",
+	"version": "1.9.1",
 	"description": "A plugin used for publishing notes to Quartz",
 	"main": "main.js",
 	"scripts": {
@@ -42,7 +42,7 @@
 		"husky": "^8.0.3",
 		"jest": "^29.7.0",
 		"lint-staged": "^16.1.0",
-		"obsidian": "^1.10.0",
+		"obsidian": "^1.11.4",
 		"prettier": "^3.0.3",
 		"prettier-plugin-svelte": "^3.0.3",
 		"svelte": "^4.2.0",

package.json

@@ -33,6 +33,7 @@ const quartzSettings = {
 	cache: "{}",
 
 	includeAllFrontmatter: false,
+	frontmatterFormat: "yaml",
 
 	applyEmbeds: true,
 

scripts/generateSyncerSettings.mjs

@@ -1,4 +1,4 @@
-import { FrontMatterCache } from "obsidian";
+import { FrontMatterCache, stringifyYaml } from "obsidian";
 import { sanitizePermalink } from "src/utils/utils";
 import QuartzSyncerSettings from "src/models/settings";
 import { PublishFile } from "src/publishFile/PublishFile";
@@ -94,9 +94,12 @@ export class FrontmatterCompiler {
 			? { ...publishedFrontMatter, ...fileFrontMatter }
 			: publishedFrontMatter;
 
-		const frontMatterString = JSON.stringify(fullFrontMatter);
+		const frontMatterString =
+			this.settings.frontmatterFormat === "json"
+				? JSON.stringify(fullFrontMatter) + "\n"
+				: stringifyYaml(fullFrontMatter);
 
-		return `---\n${frontMatterString}\n---\n`;
+		return `---\n${frontMatterString}---\n`;
 	}
 
 	private addPermalink =

src/compiler/FrontmatterCompiler.ts

@@ -27,6 +27,8 @@ export type GitProviderHint =
 
 export type DiffViewStyle = "split" | "unified" | "auto";
 
+export type FrontmatterFormat = "yaml" | "json";
+
 /**
  * Generic Git remote settings.
  * Works with any Git provider (GitHub, GitLab, Bitbucket, self-hosted, etc.)
@@ -83,6 +85,13 @@ export default interface QuartzSyncerSettings {
 
 	includeAllFrontmatter: boolean;
 
+	/**
+	 * Output format for frontmatter in published notes.
+	 * - "yaml": Output frontmatter as YAML (default, more readable)
+	 * - "json": Output frontmatter as JSON (legacy behavior)
+	 */
+	frontmatterFormat: FrontmatterFormat;
+
 	/**
 	 * @privateRemarks
 	 *