Public | Automated Build

Last pushed: 6 days ago
Short Description
Standalone Teampass with LDAP and PDF support
Full Description

Supported tags and respective Dockerfile links

What is TeamPass?

TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment. It is an Open Source project licensed under GNU AFFERO GPL 3.
It has been entirely developed by Nils Laumaillé based upon his original idea.

Licence Agreement

Before installing and using TeamPass, you must accept its licence defined as GNU AFFERO GPL.

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.

Read License

Features

Team and Resource organization

  • Unique User access
  • Define Groups of users
  • Define Roles with specific rights on Folders

Secured access

  • Each user has his own account with login and password
  • 2-step authentication with Google Authenticator can be set

Access to Items through privileges

  • User can access to folders only if allowed
  • Access to folders and Items relies on definition of rights for each User
  • Access to folders and Items can be defined for each Role

Advanced Item definition

  • Item is defined with several fields
  • Item is associated to a folder and to tags
  • Attach files to Item
  • Define your own fields to be filled in when defining an Item
  • Own fields are related to folders

Personal folders

  • Each user may have a “personal folders”
  • Personal items are encrypted with personal key

Security

  • Even if Teampass highly suggests using an HTTPS connection, built-in requests can be encrypted (optional)
  • All passwords are encrypted in database relying on AES-256 algorithm
  • All own fields are encrypted in database
  • Attached files can be encrypted (optional)

Offline mode (optional)

  • Export the passwords in an offline mode
  • Permits to access Items when not connected to internet

Miscellaneous features

  • Export the Items in PDF file
  • Import from Keepass XML and CSV file

How to use this image

It is a good idea to name these volumes if you want to upgrade the application in the future.

docker run -d \
  --publish 80:80 \
  --name some-teampass \
  --hostname some-teampass \
  --volume teampass-backups:/var/www/html/backups \
  --volume teampass-includes:/var/www/html/includes \
  --volume teampass-files:/var/www/html/files \
  --volume teampass-upload:/var/www/html/upload \
  --volume teampass-salt:/var/salt \
  --restart always \
  fanfoni/teampass

Sample database setup (SQL server not included)

MariaDB [(none)]> create database TEAMPASS;
MariaDB [(none)]> grant all on TEAMPASS.*
    -> to 'teampass-db-user'
    -> identified by 'teampass-db-password';

Installation tips

  1. Try to not use the latest tag on production environments.
  2. Try another tag if your deployment do not work as expected.
  3. Do not publish the 80 port and use a reverse-proxy to do a SSL-Offload to this server.
  4. Check the issue tracker if you are having problems at the installation or after an upgrade.
  5. This Dockerfile contains an exported volume to store the SaltKey located at /var/salt, I strongly recommend that you use this path.
    DO NOT LOSE THIS FILE!!!

Upgrading instructions

This Dockerfile have all the known directories needed to keep exported as volumes, so it should be very straightforward (at the docker side) if you are using docker-compose and reuse the exported volumes.

Documentation

You can see the user guides here

Donate to TeamPass

TeamPass is an Open Source project totally free of charge for any usage. Nevertheless this project costs a lot in term of time investment for developing, correcting, making support, etc. and some fixed charges like domain registration and hosting exist. So if you use it, you may consider a donation.

Docker Pull Command
Owner
fanfoni
Source Repository