idrinth/walled-secrets wot Björn 'Idrinth' Büttner

The browser extension for idrinth/walled-secrets, an open-source password manager. You need to self-host the server-side software to make use of this addon or be invited to secrets.idrinth.de. Hosting can be done via docker (https://hub.docker.com/r/idrinth/walled-secrets) or by cloning and installing the repository(https://github.com/Idrinth/walled-secrets) manually.

This is compatible with any installation of the same-name github project and not locked to any domain.

How secure is my data?
We encrypt everything not explicitly labeled public. For longer texts(like notes) we use AES backed by RSA encrypting IV and Key. For shorter texts we directly use RSA. Your master password is stored encrypted(by AES and blowfish) in a Session if you log in via the website. With their secrets split between database and environment that should keep them pretty save.

Are you making a profit?
While I accept gifts via paypal, there are no and will not be any payed for features.

Why is this invite only?
I don't want to pay for the whole internet using this. Feel free to host your own instance if you don't know anyone using this instance. All the code is at github and the license is MIT - so very open.

Why is Feature X missing?
I'm coding this in my free time, so it is either a ticket already or you can open one and I'll get to it.

From what password managers can you import?
Right now only from bitwarden's unencrypted json and Keypass's XML.

Why does it take so long to retrieve encrypted data?
We unencrypt the data on the fly. The duration is based on the security of the private key used.