Welcome to Teampass Feature Requests place

Please consider:

  • using "New Feature" ONLY
  • performing a search before creating a new request
  • voting for the request you would like to see implemented

Thank you for your participation to this project.


Bug report MUST be performed in Github.

Any other topic is performed in Reddit


+24

Manage Users and Groups

andreas.hartung 2 years ago • updated by Steve Shipway 1 year ago 1

Currently theres no option to import active directory groups.

Would be very comfortable to assign/grant roles/privileges to active directory users and groups.

So it´s possible to manage privileges in a central way through active directory.

+21
Under review

Mobile / Responsive Design

Arthur H. 2 years ago • updated by Roru69 11 months ago 6

When you are on the way / out of office and a customer is calling you saying "my server has gone away" or asking for a password, then it is very hard to get it on a smartphone/tablet without a mobile web interface.

+20

Single Sign on - Windows Active Directory

Martin.S 2 years ago • updated by Dave N. 1 year ago 4

It would be cool to have Single sign on to Active Directory.

The LDAP is working quite cool, but users still need to enter username and password.

+17
Started

Support for SAML Authentication

andrew.benson 2 years ago • updated by Marko 1 month ago 9

Many companies use industry standard SAML authentication to log users in and set permissions based on groups.

+13

Any way to allow Teampass to work as a back-end for KeePass clients?

Jared Pickerell 2 years ago • updated by LeNouveau 6 months ago 1

I could see this as a HUGE plus!! Possibly could be implemented with some teampass changes and some kind of KeePass plug-in that would allow a KeePass DB to sync to TeamPass based on the permissions and access according to the authenticating TeamPass user?? KeePass already has so manyclients for desktop and mobile devices. This would give the best of both worlds. The multi-user back-end of TeamPass (and web access) and open the door to the many KeePass client usage scenarios!!!


I'm not a developer so absolutly no idea how much work on either the TeamPass or KeePass side this would take.

+12
Completed

requesting password should allow you to enter reason for accessing password + log it.

Merritt Krakowitzer 2 years ago • updated 10 months ago 5

When requesting a password if would be nice for a popup to display where you can enter the reason you require this password. The request and the reason should be logged and can be used to show auditors when a password was access and why it was required.

+12
Under review

yubikey

Olivier Lange 2 years ago • updated by Thomas Stegemann 2 years ago 3

Hello,


Can you please add Yubikey authentification on Teampass? It will be a very great function!

+10
Under review

Improve usage of Roles matrix

Nils Laumaillé 2 years ago • updated by Aubin 2 years ago 3

Rework the "manage roles" page and especially the matrix showing the rights by Role and Folder.

This should permit:

  • multiple changes in a few clicks
  • better handling of long folder names
+9

LDAP/Active Directory Group membership check, to regulate access to Teampass

Roru69 1 year ago • updated by Steve Shipway 10 months ago 4

A function in Teampass to check LDAP/Active Directory Group membership before granting access to Teampass.


In larger organizations you (probably) don't want the whole Active Directory/LDAP User container to have access to Teampass. This could be managed by creating a Active Directory Group where it's members have access to Teampass and let Teampass check this group membership.


Functional features

(need to have):

  • When logging in for the first time with an Active Directory account, the account should be a member of the AD group specified in de settings section. If not, no account should be created in Teampass. An email should be sent to the administrator and a line written in the Log.(User "X" which isn't a member of group [teampass] tried to access Teampass.)
  • When logging in normally (after the account has been created), the user should always be checked if he/she is a member of the group specified in de settings section, if not, the account should be locked. an email should be sent to the administrator telling that user x is no longer a group member and the teampass account is locked. Probably some logging should also be made... for auditing purposes.

(Nice to have)

Further implementation of LDAP/|Active Directory in Teampass. Assigning LDAP/AD groups to Roles, this way when a Role is created in Teampass you can assign a AD group to it. Management can be done by adding or removing users from the specific LDAP/AD group.


We discussed the (need to have) feature by Email, but i never posted an official feature request.


Regards, Roru69

+8

Clipboard expiration

Ross O'Cottawalla 9 months ago 0

After a password has been copied to the clipboard it is highly desirable to erase or overwrite it after a timeout.