v1.6.8-beta

No functionality changes, however:

• upgraded many react packages
• moved on to symfony 6.0

v1.5.0 - react upgrade and minor improvements

• upgrade react to 17.x
• fix #53, chrome mobile should now remember the biometric logins for a longer time
• fix #54, password fiels now have autocomplete attributes

v1.4.0 - docker works again

• fix Dockerfiles
• improve error handling/messages

v1.3.2 security updates (symfony)

bug/security fixes and minor features

• security updates for dependencies (symfony)
• add expandable row for history events (#44)
• add option for default field values (#48)
• fix issue with new accounts create from browser extension (#47)

v1.2.0

Refactoring of authentication in frontend and minor improvements

• Fix race between WebAuthn and Extension on login (#45)
• Fix transition for Messages (#fd82e13)
• Performance improvements
  • lazy loading of components
  • reducing time to first backend request
• moved from css to scss to reduce resulting css size
• Add HTTP headers (Content-Security-Policy, Content-Disposition, HSTS)
• Apply SameSite=strict to cookies
• add server side logging

v1.1.1 - minor changes

• docker-compose: fix unnecessary exposing of database port (95af70a)
• Layout: logout button smaller on mobile (cf47210)
• Housekeeping: Update npm packages (4ac5bba)

v1.1.0 - Release

The most important new feature is the support for biometric login.

For installation follow the instructions in the README.
For testing you can also just run docker-compose up.

Always make sure to use https otherwise the crypto wont work! (This is a limitation of the WebCrypto API offered by browsers)

Known Issues:

• WebAuthN in Safari (iOS or MacOS) does not work. I have no idea, why.

First Version

Install by copying the contents to your webspace (requires PHP 7.4) and pointing apache to the public folder.
Copy the .env file to .env.local and fill in your database credentials, for example:

DATABASE_URL=mysql://user:password[@127.0.0.1:3306/database_name?serverVersion=mariadb-10.3.23

Also update the APP_SECRET variable to a new random value.

Afterwards run the script bin/console like that:

bin/console doctrine:schema:update --force

Make sure that you use TLS when connecting to your instance, as the crypto libraries in use only work on secure origins.

First rough draft

This is a first rough draft that is in no way intended for production use.

Build the docker container by running docker build -t mpm in the directory.
The password manager can then be run using docker run --rm -d --name mpm -p 80:80 mpm.
The password manager is then available on http://localhost.
Attention: The password manager only works on localhost or an connection that is secured using https. Otherwise the WebCrypto API is not available in browsers and encryption can't work.

When the container is stopped, all data is lost.