-
Notifications
You must be signed in to change notification settings - Fork 0
Saved Logins
Per-origin credential storage for browser panes. Stored encrypted using your OS keychain via Electron safeStorage. Never auto-submits.
Browser pane overflow menu → Saved Logins → Add:
| Field | Notes |
|---|---|
| Origin |
https://github.com (scheme + host, no path) |
| Username | Plain text |
| Password | Stored encrypted via safeStorage on save |
| Notes | Optional free text — handy for OTP setup hints or recovery codes |
Save. The credential is now matched whenever you visit any URL under that origin.
Backend: src/main/browser-credentials-store.ts. File: clusterspace-browser-credentials.json (passwords inside are safeStorage-encrypted blobs).
On a page where you'd normally type credentials:
- Focus the username field (click into it)
- Pane overflow menu → Fill saved login
- Pick the matching credential from the dropdown (filtered by current origin)
ClusterSpace types the username, presses Tab, types the password. It does not press Enter — you submit when you're ready. This avoids surprises on sites with extra fields (CAPTCHAs, OTP) and gives you a chance to verify before committing.
The password never crosses the renderer boundary except for the explicit Show password action (which requires a fresh confirmation prompt). At fill time, the typing happens in the main process via Chrome DevTools Protocol input events, so the password never lands in any DOM property.
| Encryption at rest | OS keychain via safeStorage (Keychain on macOS, DPAPI on Windows, Secret Service on Linux) |
| Encryption fallback | Base64 with a loud console.warn — happens only when the OS keychain is unavailable (rare; container without dbus on Linux is the usual case) |
| Cross-pane visibility | Credentials are global — any browser pane on the matching origin sees the same list |
| Auto-submit | Never — you press Enter yourself |
| Export | Not built-in (intentional — encrypted blobs aren't useful without the keychain key anyway). Use OS-level keychain export if needed. |
| Wipe | Pane overflow menu → Saved Logins → select credential → Delete. Bulk wipe: delete clusterspace-browser-credentials.json from your userData dir. |
Because the credential file is encrypted with your OS user's keychain key, it is not portable to other machines or users without first decrypting and re-encrypting. The simplest path:
- Open the Saved Logins dialog on the source machine
- Click each credential, copy the username + password, paste into a password manager temporarily
- Re-add on the destination machine
Don't try to copy clusterspace-browser-credentials.json directly between machines — it won't decrypt on the other side.
<userData>/clusterspace-data/clusterspace-browser-credentials.json
<userData> paths:
- Windows:
%APPDATA%\ClusterSpace\ - macOS:
~/Library/Application Support/ClusterSpace/ - Linux:
~/.config/ClusterSpace/
- Browser-Panes — the broader browser pane feature set
- Data-Storage-and-Migration — every electron-store file ClusterSpace writes
- FAQ — "is my data sent anywhere?" and related
ClusterSpace · Issues · Releases · MIT License · Edit any page via the Edit button (top right of the wiki).
- Workspaces-and-Layout
- Terminal-Panes
- Per-Pane-Tabs
- SSH-and-tmux
- Browser-Panes
- Saved-Logins
- Command-Palette
- Broadcast-Mode
- Settings-and-Configuration
- AI-Overview
- AI-Providers
- AI-Chat-Panel
- AI-Tools-Reference
- Personas
- Skills
- Task-Templates
- Agent-Orchestration
- Fleet-Dashboard
- Goal-Runner-Overview
- Starting-a-Goal
- Success-Criteria
- Goal-Policy-and-Risk-Levels
- Critic-and-Replan
- Vision-Verification
- Goal-Dashboard