MCP Hub
Back to servers

authbox

Zero-knowledge password manager with MCP credential gateway. BIP-39 seed phrase recovery, deterministic passwords, policy-gated AI agent access with scope, rate limits, time windows, and step-up approval. Supports 70+ API key providers with hash-chain audit trail.

glama
Forks
1
Updated
Mar 23, 2026
View Source
Claim this server

Auth Box

Your Keys. Your Identity. Unstoppable.

MIT License Tests Build Go Next.js React

The password manager that works even if we disappear. 24 words = all your passwords. No email, no account, no server dependency.

Why Auth Box

Every password manager asks you to trust them. Auth Box asks you to trust math.

  • No Email Required -- Create a vault in 45 seconds. Just a seed phrase and a master password.
  • Survive Without Us -- Your vault is encrypted with keys derived from your seed phrase. Even if Auth Box ceases to exist, your passwords remain yours.
  • Passwords Without Storage -- Derive passwords deterministically from your seed + site name. Your vault can literally be empty.
  • AI Agent Gateway -- Give AI assistants controlled access to credentials via MCP protocol, with policy-gated, auditable delegation.
  • Import Everything -- Migrate from 13 sources: Apple, Google, Chrome, Edge, Firefox, 1Password, Bitwarden, LastPass, Dashlane, KeePass, Samsung Pass, NordPass, Enpass.
  • AI Infrastructure Hub -- Manage API keys for 70+ providers (OpenAI, Anthropic, AWS, Stripe...). Drag-drop .env files to auto-import. One-click health checks verify keys are valid.
  • Arweave Permanent Storage -- Archive your encrypted vault to Arweave for permanent, decentralized backup. Recovery works even without Auth Box servers.

The Unstoppable Promise

You trust your crypto to 24 words. Why not your passwords?

Auth Box uses the same proven model as Bitcoin wallets:

seed phrase (24 words)
  -> master key (PBKDF2-HMAC-SHA512)
    -> vault encryption key
    -> sync encryption key
    -> per-agent delegation keys
    -> deterministic passwords (no storage needed)

If you have your seed phrase, you have everything. No server. No company. No dependency.

Screenshots

Create Vault SRP Login

Restore from Seed

Quick Start

# Install dependencies
pnpm install

# Start development
make dev        # Postgres + Redis + Web
make dev-api    # Go API
make dev-full   # Everything at once

Architecture

Client (holds all keys)              Server (encrypted blobs only)
+-----------------------------+      +---------------------------+
| Web App     Extension       | E2E  | Auth (SRP-6a)             |
| (Next.js)   (Chrome MV3)   | ---> | Vault (encrypted CRUD)    |
|                             |      | Agents + Policies (JSONB) |
| @authbox/crypto (seed+HD)  |      | Audit (hash chain)        |
| MCP Gateway (WebSocket)    |      | PostgreSQL + Redis        |
+-----------------------------+      +---------------------------+

Zero-knowledge: The server stores only encrypted blobs. It cannot decrypt anything.

Unstoppable Mode: The server is optional. Your vault works offline with keys derived from your seed phrase.

Monorepo Structure

packages/
  crypto/           @authbox/crypto     -- BIP-39 seed, HD keys, Argon2id, AES-256-GCM, SRP-6a
  shared/           @authbox/shared     -- Types, validation schemas
  mcp-protocol/     @authbox/mcp-protocol -- AI gateway (MCP over WebSocket)
apps/
  web/              @authbox/web        -- Next.js 15, Vault Onyx design system
  console/          auth-box-console    -- Public portal + admin dashboard
  extension/        auth-box-extension  -- Chrome MV3 (popup + content + background)
services/
  api/              auth-box-api        -- Go API (chi v5, pgx v5, DDD layered)

Encryption

LayerPrimitivePurpose
SeedBIP-39 (24 words)Sole recovery mechanism
Master KeyPBKDF2-HMAC-SHA512Key derivation from seed
Sub-keysHD derivation (BIP-32 style)vault / sync / agent / auth / derive
VaultAES-256-GCMEncrypt all vault items
AuthSRP-6aMutual authentication (optional server)
PasswordsDeterministic derivationseed + site = password (no storage)

Comparison

Feature1PasswordBitwardenLessPassApple KeychainAuth Box
Self-sovereign (seed phrase)NoNoNoNoYes
Works without serverNoSelf-host onlyYesApple onlyYes
Deterministic passwordsNoNoYesNoYes
Full vault + deterministic hybridNoNoNoNoYes
AI Agent gateway (MCP)NoNoNoNoYes
Open source clientNoYesYesNoYes (MIT)
Import sourcesFew80Apple only13 + .env auto-import
AI API key managementNoNoNoNo70+ providers
Company disappearsData at riskSelf-host optionOK (stateless)Locked24 words = recovery

Tests

Latest verified baseline (2026-03-23):

Go API:     PASS   28 tests (SRP/TOTP, rate limiter, security middleware, audit chain)
Crypto:     PASS   51 deterministic tests; 2 live Arweave probes opt-in
E2E:        65/65  Real SRP/TOTP login + vault/agent/audit/session CRUD + security
Build:      PASS   7/7 turbo packages, 0 errors

Security audit: 12 findings fixed (TOTP bypass, timing attack, session scoping, CORS hardening...) Performance audit: 11 optimizations applied (composite indexes, cache limits, rate limiter refactor...)

Key Commands

CommandDescription
make devStart infra + web dev server
make dev-apiStart Go API
make dev-fullStart everything
make buildBuild all packages
make testRun all tests
make test-apiRun the Go API test suite
make test-cryptoRun the crypto package test suite
npx tsx scripts/e2e-test.mjs [api-base]Run E2E suite against a real API

Contributing

See CONTRIBUTING.md for development setup and guidelines.

Auth Box is MIT licensed. PRs welcome.

License

MIT -- Use it, fork it, build on it.

Maurice | maurice_wen@proton.me

Reviews

No reviews yet

Sign in to write a review