Many authentication workflows use file based credentials so having the ability to upload files in the credential manager would allow storage of:
- SSH (and SFTP) keys
- SSL/TLS, and VPN certificates
- Kerberos keytabs
- VPN client configuration and keys
- API keys
- Password manager database files (for backup purposes)
- Cloud provider credential (ex: AWS, Azure, GCP SDKs)
- Encrypted private keys (ex: AWS RolesAnywhere credential helper)
Implementation would include:
- Add a tab called Files to credential manager with list of files + option to upload
- Remove password requirement if files are supplied (This should also be removed if a TOTP seed is provided in the event a user wants to only use this for TOTP)
- Upload file encrypted at rest using the existing AES master key workflow
- Store metadata (original file name, MIME, description, etc..)
- Add Files column to table list view which can display either:
- a comma delimited list of file names (truncate if long)
- file icons with the file name on hover (keeping in line with your existing password/totp view)
- a count of upload files
- Clicking on the file can prompt a direct download or open the Files tab in the credential manager
Many authentication workflows use file based credentials so having the ability to upload files in the credential manager would allow storage of:
Implementation would include: