Open on GitHub

Passwords

Management of login credentials.

Overview

The Passwords section allows you to store, organize, and retrieve login credentials. Each entry is independently encrypted and organized into an alphabetically sorted list.

Managing Entries

Adding a New Password

  1. Navigate to the Passwords screen.
  2. Click the Add button at the bottom of the screen.
  3. Define the record attributes:
    • Site: The name or URL of the service.
    • Account: Your username or email.
    • Password: The secret password string.
  4. Click the Save button.

Editing or Deleting

Use the Actions Menu (three dots) on a specific record to:

  • Edit: Update any attribute and save changes.
  • Delete: Permanently remove the record from the local database.

Accessing Secrets

WebStray Authenticator keeps secrets masked by default to prevent shoulder-surfing and accidental exposure.

  • Show: Open the Actions Menu (three dots) on the record and select Show to view the plaintext.
  • Copy: Once the password is visible, click it to copy it to the clipboard.
  • Auto-Masking: For security, the password is automatically masked immediately after copying or after a set duration.
  • Verification: If your Verification Timeout has expired, the system will prompt for your Master Password before allowing the show action. See Authentication and Settings for details.

Data Integrity

The system automatically monitors record health. If an entry is marked as Corrupted, it means the data cannot be decrypted (usually due to manual file tampering or a failed import).

Corrupted records cannot be repaired. Delete the entry and restore the data from a previous backup.

Summary

The Passwords section provides a secure workflow for credential management. You must show a password before it can be copied, and access is gated by a configurable verification timeout.

AuthenticationTOTP