passman
passman copied to clipboard
nextcloud
sharing of complete password vaults
In lastpass I am using the shared-password vault to setup some kind of family vault, where I can share and manage passwords that are available to other family members. This would make a great feature for passman to offer.
@brantje edit: Would you like this feature too? Please consider donating for it. Read more
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
i would love to share vaults with team members. so i would like to choose to share with users and with groups. i really need this feature :(
well, right now implementing this feature in a secure way is out of our current priorities, you are welcome to create a fork and make a pull request, we will review your code, and if it's as secure as our current implementation of sharing, we will merge it.
Right now we are busy making plugins and apps for passman, you know, we can't cover everything, we have a life, and we also need food and sleep!
Sure, I fully understand your take on this. If I had to choose, I'd go with making plugins first as well. However, this still would make a very nice and useful feature.
Hey there, I would also love to see such functionality. ATM I cannot use your password manager because such feature is missing (our team needs access to a customer container, we cannot share each password to each user). If a donation speed up the implementation of this feature, just let me know. I'm sure some guys would also love to donate for such a feature :-) I'm also ok if you want to sell this feature in first time (e.g. after reaching 100 sells -> implementing into core).
About security: You could use the users password for key decryption and usage of shared key, as NextCloud handles file sharing.
Yeah I would also be willing to donate some coins. I am also having the same hurdle, would be much easier to share an entire vault. Thanks!
Feature request accepted Implementing this feature is gonna take time. We ( @animalillo and me), are willing to take a few day's (3 - 4) off from our full time jobs to implement this feature. Therefore donations to cover those day's would be gladly accepted. I made a special donation link for this feature, so we can track the donations for this feature. When: Tbd, need to plan it with @animalillo
Raised: $730 Thanks to:
- @Ninos
- Jung von Matt AG
- snowflake Ops AG
- @enoch85
I've donated 50 USD, I'll donate 50 more after implementation. Thank you guys!
Let me see, if I can get my employer to let me spend some money on this as well. Also, my dutch really is not that good. ;) I'd really like to get to the donation page in english…
Thanks Mr F.W (using initials for privacy), for your generous donation ($150). Please comment if you want to use your github username in the donator list.
@budachst Thank you very much. How would you like to be listed? As in, your github username, or company name?
Actually, our company name would be nice, if that'd be possible: Jung von Matt AG
Everyone is welcome in our new telegram channel: https://t.me/passman_general Purpose: general talk, off topic chat
This would be a great feature! Currently I am searching for a password manager for teams (self hosted, open source) and I must admit passman is currently by far the best looking option.
@brantje is it possible to use slack or something like that? I don't have telegram.
BTW: For the container please use the users login password (user private key, decrypted via nextcloud with the user login password). Otherwise sharing containers with others will be very hard, because then you also need to send them the container password (for each container).
We will implement it @gschoenberger, we don't have an ETA yet, but it's on the priorities list now, so expect it in the near future. We sadly can't do magic, tho, I wish we could :D
Will it also be able to share Certain Tags with other Vaults? Great Job you are doing so far!
Concerning password sharing - which is IMO a killer feature for teams - is it currently possible to en-/decrypt a single vault with multiple passwords? E.g. a team has a single vault and one single shared user to access the vault but each user knows a different password to decrypt the vault? That would be a simple solution to share a vault without using only one password, like it is done e.g. with cryptsetup key slots (dm-crypt).
We are going to dive into this issue this weekend and a few days next week, we will keep you updated!
Thank you. I talk with my company, and we are going to donated too, for this feature.!
Just letting you guy's know that we didn't forget this feature. At the moment the feature is about 30% ready, it is taking more time that we initially expected.
Can anybody describe how exactly this feature will work? It with be great if the description would refer to what is in #340. Thanks.
automatically adding people in groups access to shared password is not going to be implemented anytime soon due the way sharing works, everything is encrypted client side, so we have no way to share the password with a group currently
As of how will this work, it will be very similar to a normal share, except it will be performed from the vault settings page.
We have yet to decide if we include the share as a link inside a vault or ask the user to enter a vault key upon share completion to encrypt the shared vault shared key and then show the vault as another vault
Why you're not using the user/group keys as NextCloud is doing it? It's much easier for you, you only need to encrypt/decrypt with the NC keys. Other things are done by NC.
The way passman handles sharing and encryption is way diffrent from nextcloud, it's full clientside encryption, that's the problem, the user key never ever touches the server, so to share it we must fulfill that to keep the current passman secutiry
Thanks for the answer. Normally the user keys are also secured with the user login password in NC, as I know correctly.