Solène Apr 8, 2025

Any recommendation for a self hosted centralized password manager that allows sharing a subset of secrets to some users, but also track changes done to secrets? (who / what / when)

Vaultwarden can't tell you who made a change to an entry from a shared collection 

I'm looking for a human friendly service, not a machine to machine secret manager.

Show threadmasosven
@solene I'm using "pass".
you could probably do some git trickery, like copying some folders into a different database; repo.
Apr 8, 2025 at 9:23amWeb
Show threadbharrisoApr 8, 2025

@masosven @solene

That is what I have used as well. You can selectively encrypt a subset of secrets with different keys, meaning you can split your secrets into sets and then manage who has read/write access to each set based on their GPG key. Then pass's git integration gives you history and syncing.