SecurePass is a web application for managing passwords and credit card information securely. It allows users to store, view, copy, and delete passwords and cards, with AES encryption to keep sensitive data safe. Authentication is handled via Clerk, and data is stored securely in Supabase.
🔗 Live Demo: https://securepass-new.vercel.app
-
Password Management
- Add, view, copy, and delete saved passwords
- AES encryption for all passwords
- Toggle visibility of passwords
-
Credit Card Management
- Store cardholder name, card number, type, expiry, and CVV
- Encrypt card number and CVV with AES
- Toggle visibility of card details
- Copy card information to clipboard
-
Secure Authentication
- Sign up and sign in via Clerk
- Data is tied to the authenticated user
-
Database Storage
- User-specific data stored in Supabase
- Passwords and cards are only accessible to the owner
-
Clean UI
- Dashboard with tabs for passwords and cards
- Responsive and modern design
- Copy-to-clipboard and deletion confirmation feedback
- Next.js + React (frontend framework)
- Clerk (user authentication)
- Supabase (database and storage)
- CryptoJS (AES encryption/decryption for passwords & cards)
- TailwindCSS (styling)
-
Authentication
Users sign up or log in with Clerk. Their email is used to associate stored data in Supabase. -
Adding Data
Users can add new passwords or credit cards via forms on the dashboard. Sensitive fields are encrypted before storage. -
Viewing & Copying Data
- Users can toggle visibility of passwords or card details.
- Click a button to copy the decrypted password or card number/CVV to the clipboard.
-
Deleting Data
Items can be securely deleted from the database with a single click. -
Data Storage
- Passwords are stored encrypted in the
Passwordstable. - Credit cards are stored encrypted in the
Cardstable. - Only the logged-in user can access their data.
- Passwords are stored encrypted in the
- AES encryption is used to protect passwords and card details.
- The encryption secret is stored in environment variables and should never be exposed publicly.
- Only authenticated users can access their own data.
- Always ensure your
.envkeys are secure, especially in production.
Disclaimer: Some features may not work reliably over time due to API changes, service policies, or rate limits. While the core functionality remains secure and operational, certain external dependencies may affect availability.
- Enable search/filter for passwords and cards
- Support export/import of encrypted data
- Add categories/tags for passwords or cards
- Improve UI/UX with animations and better feedback