Vault2FA - 2FA authenticator in browser от 浪迹天涯小叮当

Vault2FA is a lightweight and privacy-focused TOTP/HOTP authenticator built for Firefox.

It generates one-time passwords (OTP) directly inside your browser, allowing you to securely access accounts protected by two-factor authentication.

Vault2FA is local-first by design. Your secrets are stored locally in the browser and never leave your device unless you explicitly enable synchronization.

Features

• 🔐 Local-first storage
  Your OTP secrets are stored locally by default. No cloud account or external service is required.
• 🔒 Optional encrypted storage
  Enable local encryption to protect your vault with a passphrase.
• 🔄 Optional sync sessions
  You can enable synchronization using a manually configured session ID.
  Sync is disabled by default and must be explicitly enabled.
  NOTE: it is strongly recommended to keep a local backup of your vault since Firefox Sync is designed only to sync add-on configurations, not secrets. Cloud sync therefore may have potential bugs.
  Cloud Sync is not available on Firefox mobile due to browser-side api restrictions.
• 📷 QR code scanning
  Add accounts quickly by scanning QR codes either from websites via right-click menu or uploading a local image.
• ⚡ Fast and lightweight popup
  Instantly access all your codes from the browser toolbar with a clean and responsive interface.
• ☀️🌙 Dark & Light theme supported
  Switch between themes to customize your experience.
• 📱 Full support for mobile devices
  Interface automatically scales on mobile devices. QR-Scanning page supports photos taken with camera.
• 🖊️ Auto filling 2fa input fields in pages
  Auto fill in your codes with customized URL matching rules with a in-page popup. You can disable this feature by revoking permission in Firefox's add-on setting.
• 📥 Easy migration from popular authenticator apps
  Vault2FA can fully parse otpauth-migration:// links provided by Google Authenticator.

Privacy

Vault2FA is designed with privacy in mind:
Secrets are stored locally by default.
Synchronization uses Firefox Sync and is optional and user-controlled.
No tracking, analytics, or external telemetry.
Currently, encryption is only applied to local vault. With an update to the format of encrypted vault data in v2.1.0, cloud sync will soon support uploading encrypted data.

Localization

• 🌏 Vault2FA now has full support for 简体中文 (zh-CN) and English (en-US). Español (es-ES) is translated by ChatGPT based on English (en-US), and will be put into use in 2.4.0.
• 👬 We welcome and sincerely ask for community assistance for more languages in Vault2FA, as translating with AI may generate inaccuracy and misleading information. To support, visit Vault2FA's Github homepage, create a fork of the dev branch, upload your translated .lang into locales/ , then create a PR. After passing some basic reviews, your translation will be available in the nearest release. Remember to assign your name in the .lang file, so your contribution will be long honored ;D
• 🤖 We will still randomly update some translation using AI if we notice new user from different language environment.

Open Source

Vault2FA is fully open source.
Source code:
https://github.com/DrJason33564/Vault2FA
This add-on uses the source code from the following libraries. Acknowledgements:
https://github.com/hectorm/otpauth
https://github.com/nimiq/qr-scanner

Permission Declaration

1.Vault2FA needs "Access your data for all websites" permission to auto fill in input fields in webpages. This is optional, as you can disable it in add-on manager therefore disabling this feature.
2.Vault2FA needs "Access browser activity during navigation" to scan QR code images in webpages through right-click menu.