Skip to content

Latest commit

 

History

History
91 lines (63 loc) · 3.56 KB

README.rst

File metadata and controls

91 lines (63 loc) · 3.56 KB

Vault

Beta License: AGPL-3 OCA/server-auth Translate me on Weblate Try me on Runbot

This module implements a vault for secrets and files using end-to-end-encryption. The encryption and decryption happens in the browser using a vault specific shared master key. The master keys are encrypted using asymmetrically. For this the user has to enter a second password on the first login or if he needs to access data in a vault. The asymmetric keys are stored for a certain time in the browser storage.

The server can never access the secrets with the information available. Only people registered in the vault can decrypt or encrypt values in a vault. The meta data isn't encrypted to be able to search/filter for entries more easily.

This modules requires a secure context for the browser to work properly.

The vault-recovery project focuses on disaster recovery in case of an incident to recover secrets from old database backups or old exports.

Table of contents

  • Field and file history for restoration
  • Send secrets directly to an inbox within Odoo
  • Import improvement
  • Support challenge-response/FIDO2
  • Support for argon2 and kdbx v4

Bugs are tracked on GitHub Issues. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smashing it by providing a detailed and welcomed feedback.

Do not contact contributors directly about support or help with technical issues.

  • initOS GmbH

This module is maintained by the OCA.

Odoo Community Association

OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use.

This module is part of the OCA/server-auth project on GitHub.

You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.