Git Product home page Git Product logo

c7o8 / eva Goto Github PK

View Code? Open in Web Editor NEW

This project forked from wault-pw/eva

0.0 0.0 0.0 1.45 MB

✴️ free, anonymous password manager with e2e encryption on top of SRP protocol. Wault believes in the value of anonymity. The less your password manager knows about you, the safer is your data. Wault does not ask for your email, phone number, or any other personal information.

Home Page: https://cloud.wault.pw

License: GNU Affero General Public License v3.0

Shell 0.32% JavaScript 55.07% TypeScript 22.62% Makefile 0.28% HTML 0.36% Vue 15.59% Dockerfile 0.16% SCSS 5.61%

eva's Introduction

eva

Test

English, Chinese

To avoid storing data on the server, the Wault password manager encrypts and decrypts data inside the browser. The keys for all encryption processes are derived from the password, which is never sent to the server.

Encryption primitives & protocols

  • AES (GCM mode)
  • RSA (OAEP mode)
  • HMAC
  • PBKDF2
  • SRP6a (secure remote password)

In simple terms, Wault password manager is an online service that knows nothing about its users. Wault looks like an ordinary web application, but hides a powerful cryptographic mechanism entirely created and executed in your browser.

Based on this idea, we developed and implemented a web application architecture that supports your privacy. The main idea was to create a trust-free service, where users could trust the data within the browser, regardless of external sources.

Wault password manager

Docker setup

The simplest docker installation (implies you are using local postgres), looking the following. You have to create an empty database psql -c 'CREATE DATABASE alice' first.

docker run --rm -e PG_DSN="postgres://${USER}@host.docker.internal:5432/alice?sslmode=disable&timezone=utc" -p 3000:3000 shlima/wault

Production ready setup should be like this one. Please provide your own random keys.

  • SSE_KEY for server side encryption
  • JWT_KEY for signing JWT cookies
  • COOKIE_SECURE set to true if you run wault instance behind the HTTPS
  • COOKIE_DOMAIN set a domain name if you run wault instance within your domain
docker run --rm \
-e PG_DSN="postgres://${USER}@host.docker.internal:5432/alice?sslmode=disable&timezone=utc" \
-e SSE_KEY=bf02ee811878d6cd9eebb823e54d2bdc318b4fc676df9c3f709f8c9c6ca8fff0 \
-e JWT_KEY=7cfa6c528a3060810ae8337382b99a9eaaf305a8055d4739df8312155a0d93d8 \
-e COOKIE_SECURE=false \
-e LOCALE=en \
-e PRODUCTION=true \
-p 3000:3000 \
shlima/wault

Development

First, run the backend (called alice), you may use the Docker image to achieve that:

docker run -p 8080:8080 -e PG_DSN="postgres://..." --rm ghcr.io/wault-pw/alice goose up # run migrations
docker run -p 8080:8080 -e PG_DSN="postgres://..." --rm ghcr.io/wault-pw/alice server
yarn dev

Wault: encrypted, anon. password manager - SRP6a, AES, RSA, HMAC | Product Hunt

eva's People

Contributors

dependabot[bot] avatar shlima avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.