Granular Access for shared vaults
I would like to propose the implementation of a shared vault feature that enables users within a specific domain to access a password vault with varying levels of permissions. This shared vault would offer granular access control, allowing some users to have read-only access, while others can have read and write access.
There are several potential use cases for this feature. In the context of a visionary subscription, it would be beneficial to have a family-oriented shared vault where passwords can be shared among family members. Within this shared vault, it should be possible to create different groups, such as parents and children. For instance, a digital school vault can be established to store login credentials for children. This not only ensures that passwords meet a certain level of complexity but also teaches children to be cautious with their digital identity.
In a business setting, the shared vault feature becomes even more powerful. Proton Business users could be added to specific groups or simply granted access as individual users. Furthermore, the feature should allow for the implementation of policies at the vault, group, or individual user level. This would enable businesses to establish customized access controls and security measures for their sensitive information.
By implementing a shared vault with granular access control, we can provide users with a powerful tool for securely sharing passwords and managing access to sensitive information within their domains. This feature would cater to both personal and business needs, enhancing security and convenience for users across various scenarios.
Socrates
shared this idea
-
Anthony Pagano
commented
I was wrong about this----the ability to share multiple vaults (at least with the Proton Unlimited Plan) is already available. When I initially read the Proton Pass documentation this was unclear. And the step-by-step mechanics of sharing one (or more) vaults was also unclear (to me at least).
So I just had to bang on it for a while until I learned that more than one vault can be shared with the Unlimited Plan. The Proton Pass sharing process is similar to the sharing of files using Google Drive. When the sharing party sends a share invitation for a vault a small "people" icon appears next to the vault name. The receiving party receives an email indicating that something has been shared,, but the invitation must be accepted by logging into their Proton Pass. At the top of the Pass screen will be an invite message with a button for acceptance. Each vault will have a separate acceptance message and button.
This was my experience with the Pass Web application. I'm not sure if things are different with the smart phone Pass app.
There was one limitation: Proton Pass didn't let me share more than 15 vaults in any given day (I had 43). After that it didn't matter where I or my shared party were logged in (computer or smart phone) we had access to all the password accounts.
-
Anthony Pagano
commented
Proton Pass sharing is a terrific idea but it only allows the sharing of one vault. I have over 500 accounts with login credentials and placing them in one vault is unmanageable regardless of the ability to search. I've got them separated by category in separate vaults. Sharing passwords with a spouse is important for me; I would like to be able to share all the vaults.
This could be solved by allowing vault nesting and share the root vault. Or allow sharing of as many vaults available to my Proton Plan.
-
Matthieu Brunerie
commented
Hello,
I didn't see any possibility to share a password or another item to a group of collegues easily.
Is it possible to add the feature of create groups of members of an organisation in the aime to share vault to a specific group or specific user(s)?Thanks a lot!