mypass
mypass is a password manager built on a simple idea: the keys to your digital life should belong to you, and no one else. Your passwords, 2FA codes, and passkeys stay locked on your own device and stored in cloud storage you already control — readable by no one else, not your storage provider and not us. And because your vault is just an encrypted file you own, you're never locked in: keep it anywhere, move it any time, and your data stays yours.
what it does
- End-to-end encrypted vault using XChaCha20-Poly1305
- Key derivation via Argon2id with tuneable parameters
- Bring-your-own storage — any S3-compatible object store (Cloudflare R2, AWS S3, Hetzner, OVH, DigitalOcean Spaces), Google Drive, or OneDrive; the backend only ever sees ciphertext
- Passkeys — create and sign in with WebAuthn passkeys on Android and on desktop via the browser extension, all kept in your own vault
- Biometric unlock (fingerprint / face) with secure device key caching, plus PIN with lockout
- Protected items — an optional second encryption layer for your most sensitive entries (2FA codes and passkeys)
- Built-in password generator
- TOTP support (scan QR codes or paste otpauth:// URIs), with live codes
- Custom fields — text, secret, multiline, URL, and TOTP
- Tags and tag groups for organizing entries
- Direct device-to-device setup over your local network — no server in the middle
- Soft-delete with 30-day auto-purge
- Conflict-safe sync with manual merge when two devices disagree
browser extension
An optional fill-only browser extension talks to the desktop app over a local, paired connection — the extension never holds your vault or any keys, and does no decryption of its own.
- Bluetooth-style pairing: the app shows a code, you enter it once in the extension
- Fill the matching credential for the current site, generate a password, or start a new entry from the page you're on
- Fetched values auto-clear from the extension after a configurable timeout
- Chromium-based browsers (Chrome, Vivaldi, Edge, Brave)
platforms
- Android
- Linux
- Windows
contact: jason@whydoesnothing.work