Share credentials the most secure way
Meet osvauld. An open-source credential management tool intended to solve password problem teams face. Osvauld helps to enforce password/token hygiene and visibilty across your team thus resulting in better overall security. osvauld is built from ground up with security in mind.
- Share credential to groups of members: Collaborate effectively by creating groups, share credentials exclusively with HR group or marketing group.
- Arrange credentials as folders: Folders are a great way to arrange tokens/keys which can be shared to groups or individuals in your team.
- Intutive sharing mechanism: Allocate access to credentials in simple steps, Read/Write/Owner access formats provide a shallow learning curve.
- Credential assist: Access corresponding credentials allocated and tied to URLs you visit with the popup easily.
- Audit logs: Admin can view which credentials are being accessed at what frequency.
- Easy Password rotation: Credentials can be tied to an expiray date as per company policies admin has the transparency to view and change production keys when required.
- End-to-End Encryption: All your credentials including meta data never leaves your browser unencrypted and only you and to whom you shared can decrypt it using corresponding secret password - strictly adhering to zero-knowledge architecture.
- Open-PGP sharing: Quickly share credentials with your team with open-PGP sharing mechanism, It is a 40-year old battle tested cryptography protocol suit.
- Seqouia-PGP: osvauld uses Rust based Seqouia-PGP which has its Focus on safety and correctness, Uses a memory-safe language, First-Class Library.
- ECC and AES Algorithms: osvauld uses the OpenPGP RFC 4880 standard with ECC Curve25519 AND AES-256.
- WASM Sandboxing: wasm module provides an extra layer of sandoxing for the cryptographic operations.
osvauld is meant to be an on-prem first solution, this give you more control over your data and reduce your dependency on centralised password management solution on cloud. For self hosting environment setup, visit the On-Prem documentation page
Its UI is written in Svelte using TypeScript and its backend is written in Go. It utilizes WASM module, compiled from Rust, for the fastest, memory-safe crypto operations possible.
Osvauld is still in its early days, not everything will be perfect yet, and hiccups may happen. Please let us know of any suggestions, ideas, or bugs that you encounter on our Discord or GitHub issues, and we will use your feedback to improve on our upcoming releases.
For setting up osvauld, please refer to our deployment documentation
Contributors guide for setting up osvauld Guide
Join our Discord server Discord, let us help you get started.
For full documentation, visit docs.osvauld.com
To see how to Contribute, visit here.
The Osvauld community can be found on GitHub Discussions, where you can ask questions, voice ideas, and share your projects.
To chat with other community members you can join the osvauld Discord.
Our Code of Conduct applies to all Osvauld community channels.
If you believe you have found a security vulnerability in Osvauld, we encourage you to responsibly disclose this and not open a public issue. We will investigate all legitimate reports. Email abe@osvauld.com to disclose any security vulnerabilities.