GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → globocom → gsenha

globocom / gsenha

Licence: MIT license
GSenha is a password manager designed to avoid information leakage in the case of a compromise.

Programming Languages

javascript
184084 projects - #8 most used programming language
python
139335 projects - #7 most used programming language
HTML
75241 projects

GSenha

GSenha is a password manager, but not a usual one. Its architecture was designed to avoid information leakage in the case of a compromise (this name derives from Brazilian translation of password).

It is possible to store a password and share it among a group of users in a secure way, and also store a personal password, just for yourself.

Storing a personal password is just like using another well-known password manager like KeePass, PasswordSafe, Password Gorilla and others. The goal in GSenha is to be able to store a password and allow other users to have access to it securely, without backdoors and no shared secret keys. This is done with asymmetric cryptography (private and public keys).

GSenha has as a REST API with JWT. There is a front-end (look folder /ui), but anyone can write a custom one or use it as a command-line tool.

Authentication and user management

There is one dependency, you must have an LDAP base. GSenha does not perform user management, it uses the information provided in the LDAP base.

Authentication and authorization are all handled by the LDAP. A new user must add herself/himself into the system informing his/her LDAP's credentials and an RSA public key. Gsenha will perform a query on the LDAP server and, once authentication is granted, all user information will be retrieved, like given name, surname, email, groups and it will be stored in a database with the public key. After that, the user will perform login using his/her LDAP's credentials. In all requests of the API, it will be performed a query into LDAP to see if there is any inconsistency with the user and his/her groups. The GSenha's database group table will mirror LDAP's base. This is how authorization is handled.

Presentations

Private key fallback

The system is not able to retrieve your private key in case of loss. It is the user's obligation to keep his/her private key safe. DO NOT LOSE YOUR PRIVATE KEY!

Want to know more?

Take a look at our excellent documentation!

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].