2FAS Pass Server acts as a secure communication bridge between your mobile device and browser extension, facilitating real-time transmission through WebSockets. The server operates with zero-knowledge architecture and cannot decrypt or access any information being transmitted between any devices.
2FAS Pass is a local-first, next-generation password manager that puts you in full control of your data. Your passwords and sensitive information are stored on your device, and you decide how and where to synchronize them.
2FAS Pass is designed with privacy and user control at its core. You have full control over:
- Data storage - by default, everything stays on your device
- Synchronization options - securely sync using your own iCloud or Google Drive with end-to-end encryption (E2EE), your NAS (like QNAP or Synology), other devices, or even your custom cloud via WebDAV
- Item Permissions - our Security Tiers system lets you decide how each Item behaves: whether it can be shared with the Browser Extension or if it requires confirmation on your mobile device
The seamless integration between mobile app and browser extension ensures you have secure access to your Items and passwords across all your devices while maintaining full control over your data.
- Privacy-focused - No data stored on our servers
- Local-first architecture - Your data stays on your device
- Native synchronization - Native cloud integration (iCloud/Google Drive)
- Custom synchronization - WebDAV support for custom synchronization
- Security Tiers - Full control over which Items and passwords are shared with auto-fill and browser extension
- Cross-platform - Multiple devices synchronizing across platforms, with support for various browsers
All graphics, logos, and visual assets in this repository are protected by copyright and are proprietary to Two Factor Authentication Service, Inc. They may not be used, reproduced, or distributed without explicit written permission.
We use GitHub for bug reports. Please visit the 2FAS Pass Server issues page to search for and report any bugs you may have found. Before adding a new issue, please search for existing issues to avoid duplicates.
For reporting security issues only, please send a detailed description of the vulnerability to security@2fas.com. Do not use this address for general inquiries or bug reports unrelated to security concerns.
2FAS Pass Server
- License: Business Source License 1.1 (BUSL-1.1)
- Automatic transition: Each version becomes GPL v3.0 after 2 years
- Permitted: Individual learning, development, testing, and educational
- Restricted: Production use, commercial use, business use, and any use that provides services to others
For the complete Source Code license terms, see the LICENSE file.
For developers: Source code is available for learning, testing, and educational.
Copyright © 2025 Two Factor Authentication Service, Inc.