https://github.com/mafeth/passx-web

The Source code of the PassX webclient. Accessable on: https://passx.cuodex.net
https://github.com/mafeth/passx-web

Last synced: 4 months ago
JSON representation

The Source code of the PassX webclient. Accessable on: https://passx.cuodex.net

• Host: GitHub
• URL: https://github.com/mafeth/passx-web
• Owner: mafeth
• Created: 2022-02-16T18:11:25.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2022-02-16T18:06:35.000Z (over 4 years ago)
• Last Synced: 2025-10-20T19:06:21.995Z (8 months ago)
• Homepage:
• Size: 430 KB
• Stars: 1
• Watchers: 0
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          







  

    

  


  
PassX - Webinterface


  


    A safe place for your passwords!

    


    Go to the Webinterface »

    


    


    View Website

    ·

    Report Bug

  



  Content Links

  


    


      Implementation

      


        
Front End

        
Back End

      

    

    
Encryption

    
License

    
Contact

  




A lot of password managers exist out there, but we wanted to create our own one. Open Source, Safe, Anonym & Simple.

## Implementation

Front End


To create a unique and simple design, we used simple html & css, created our own icons and images and used a few from the Fontawesome Libary

Back End

Now the magic happens in the back end. The only way to make it possible, that the password is only stored in the current browser session, was to use javascript. So all content is now loaded with javascript methods, which communicates with our database connection over the ajax function from JQuery


(back to top)


## Encryption

Of course our webinterface communicates via ssl encryption with our database connection, to prevent man in the middle attacks.

In order to make end-to-end encryption possible, we searched for a way to en- and decrypt all password entries, so they aren't saved in plain text in our database.

The only option we found to use end-to-end encryption, but also keep the webinterface user friendly, was to use the users password as encryption key.

So now everytime the user communicates with the database connection, all sensitive data (for example title, password, username, etc.) gets encrypted with the given password over 256-AES.

Of course we cannot save the password anywhere on the server, otherwise this system wouldn't make sense. So the password the user entered only stays on the clients side and gets deleted if you reload the page.

(back to top)


## License

Distributed under the MIT License. See `LICENSE.txt` for more information.

(back to top)


## Contact

CuodeX - [Website](https://cuodex.net) - info@cuodex.net

Project Website: [https://cuodex.net/passx](https://cuodex.net/passx)

Project Link: [https://github.com/CuodeX/PassX-Webclient](https://github.com/CuodeX/PassX-Webclient)

(back to top)