AliasVault v1.0 roadmap #731
Description
Important
Note: The following list is not yet 100% definitive and might be refined further; however, all items listed will be addressed or explored while working towards the upcoming 1.0 release. Last update: 2025-06-03.
This issue provides an overview of key milestones planned for the AliasVault 1.0 release.
The short-term priority is to position AliasVault as a fully viable alternative to traditional password managers like 1Password, Bitwarden, and KeePass. This involves ensuring robust usability for everyday tasks, including comprehensive autofill capabilities across all platforms.
🚧 Prereleases (0.X)
The following issues will be actively worked on, with incremental releases published every 2-3 weeks. This approach allows us to test new features extensively in real-world usage and collect valuable user feedback.
Any breaking changes to the data model will always include automatic data migrations. Throughout these prereleases, AliasVault is fully usable and your credentials remain secure. Fixing bugs will always be prioritized and you can trust that data integrity will always be maintained.
Data Model and Usability Improvements
- Add custom imports for existing (popular) password managers
- Expand core data model and separate credentials into two types:
- Random aliases (already implemented)
- Fixed reusable identities (your own identity to be used for official purposes such as government, online banking etc., your real email)
- Main identity
- Shipping / billing address
- Creditcard details
- Allow credentials to be grouped for better overview and management (folder structure)
- Improve importers so credentials can be optionally imported to a specific folder
- Allow to add multiple service URLs (optionally) for improved autofill
- Implement password history
- Add passkey storage support
- Investigate possibility for user-defined custom fields
- Research team and organization features:
- Being able to share credentials with other users while maintaining proper E2E encryption handling
- LDAP/LDAPS/OAuth support (with/without Windows AD domain) for group/business authentication
Platform Support
- Browser Extensions
- Chrome (and other Chromium browsers)
- Firefox
- Edge
- Safari
- Mobile Apps
- iOS app
- Investigate possibility for Apple Watch companion app for favorite credentials and 2FA TOTP
- Android app
- iOS app
- Enable AliasVault to be a passkey provider
- Add multi-language support to all AliasVault clients and enable crowd-sourced translation contributions
- Authentication & Security Enhancements
- Add hardware key as 2FA method (as optional method next to existing TOTP)
- Support FIDO2, WebAuthn or hardware key as primary vault password
- Research and optionally implement phone-based unlock instead of master password
- Develop duress mode for web app and native apps (for travel or forced situations)
- Add recovery code / emergency contact / fallback access to vault while still guaranteeing full E2EE (as optional feature)
- Evaluate potential for native desktop clients (macOS, Linux, Windows)
- MacOS native apps can leverage "Native autofill" capabilities: https://www.theverge.com/2022/5/3/23055212/1password-8-mac-password-manager-security
- Native apps can act as a local SSH agent for autofilling credentials in Linux/MacOS terminal
Premium Cloud Features
These features will be offered as an optional subscription to cover the costs of running the cloud version and help the future development of AliasVault.
- Enable users to connect their custom domain(s) to the cloud hosted AliasVault version
- Investigate being able to import custom email aliases from existing service combinations such as Proton Pass + SimpleLogin. Note: Bitwarden supports multiple external parties. 1Password integrates with Fastmail for masked email.
- Allow more email storage for premium users
- Allow larger attachment storage for premium users
- Separate attachments from actual vault blob to reduce overhead in loading the actual vault
- Add reply-to-message feature integrated within AliasVault aliases
- Investigate integration of disposable phone number service for SMS verifications
- Add
Have I Been Pwnedintegration (and/or similar platforms) for automatic checks if credentials have been part of a data breach on the internet, in order to advise the user to change those credentials.
Documentation & Setup Improvements
- Improve documentation for VM installations (Docker, clean setups)
- Explore standardizing AliasVault deployments with single-docker image package for NAS/self-hosting convenience
Browser Extensions & Mobile Apps
- Support adding manual user/password entry via the create screen
- Allow credential mutations directly via browser extension
- Add advanced credential create screen with customization options for password strength, filling in optional fields for the to be created credential.
- Develop full client capabilities
- Support vault upgrades
- Change identity generator settings
- Change password generator settings
- Built-in account and vault creation
Additional Research Required
- Research SMTP relay host support for reply capabilities
- Investigate integration with external cloud email services (Office365, IMAP) for catch-all and reply capabilities.
- Explore UI customization (logo, app name) for self-hosted and premium cloud versions
Feedback and suggestions are welcomed to further refine this roadmap as we progress towards the AliasVault 1.0 release.
🎬 Release Candidates (v1.0.0-rcX)
Once the above milestones are completed, we will release candidate versions focused on bug fixes, stability, and performance improvements. At this stage, the core feature set and data model will be finalized, with no further breaking changes.
🚨 Security audit
With the API stabilized, we aim to have AliasVault undergo a thorough security audit this stage. We have already initiated conversations with renowned cyber security companies who have taken interest in taking this on.
👑 1.0: Stable Release
Once all known bugs have been fixed in RC releases and optimal performance is achieved, AliasVault 1.0 will be officially released.
After this stable release, work will continue on additional 1.x minor releases which can contain additional features and improvements. However the AliasVault API and datamodel from this point onwards will stay backwards compatible within the 1.x branch.