Skip to content
This repository was archived by the owner on Dec 2, 2025. It is now read-only.
/ passai Public archive

AI-assisted PoC that generates pass' from natural language without directly using AI to generate them

passai.up.railway.app

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mdonmez/passai

BranchesTags

Repository files navigation

Logo

passai

AI-powered password and passphrase generator with natural language input.

Python License: MIT

Table of Contents

How It Works

passai uses a Large Language Model (LLM) to interpret your natural language requests and generate secure passwords or passphrases tailored to your needs.

  1. User Input: You provide a simple description of the password you want (e.g., "a strong 16-character password for a website" or "a memorable 4-word passphrase").
  2. AI Interpretation: The backend sends this request to an LLM, which intelligently extracts the parameters needed for generation (length, character types, word count, etc.).
  3. Secure Generation: The core PassGenerator module uses Python's secrets library to create a cryptographically secure password or passphrase based on the AI-defined parameters.
  4. Encrypted Transmission: The generated password is encrypted using RSA-OAEP with the client's public key before transmission, ensuring end-to-end security.
  5. Client-Side Decryption: Only the client can decrypt the password using their private key, which never leaves the browser.
sequenceDiagram
    participant User
    participant Frontend as Web UI
    participant Backend as FastAPI App
    participant AI as LLM Service
    participant Generator as PassGenerator

    User->>Frontend: Enters "strong 16 character password"
    Frontend->>Frontend: Generates RSA key pair (2048-bit)
    Frontend->>Backend: POST /generate with user input + public key
    Backend->>AI: "strong 16 character password"
    AI-->>Backend: Returns structured parameters (e.g., length: 16, uppercase: true)
    Backend->>Generator: generate_password(length=16, ...)
    Generator-->>Backend: "S3cur&P@ssw0rd!123"
    Backend->>Backend: Encrypts password with client's public key
    Backend-->>Frontend: {"encryptedPass": "base64_encrypted_data"}
    Frontend->>Frontend: Decrypts password with private key
    Frontend->>User: Displays the new password
Loading

Key Features

  • Natural Language Input: Describe your password needs in plain English.
  • AI-Powered: Leverages an LLM to understand requirements and set generation parameters.
  • End-to-End Encryption: Passwords are encrypted during transmission using RSA-OAEP (2048-bit keys).
  • Client-Side Decryption: Private keys never leave your browser, ensuring complete privacy.
  • Dual Generation Modes: Creates both secure random passwords and memorable passphrases.
  • Highly Customizable: Control length, character types (uppercase, lowercase, numbers, special), and more.
  • Accessibility Options: Use easy_to_read or easy_to_type modes to avoid ambiguous or hard-to-reach characters.
  • Secure by Design: Uses Python's secrets module for cryptographically strong randomness.
  • Clean & Simple UI: A minimalist interface that's fast and easy to use.

Usage

Prerequisites

  • Python >=3.12
  • An API Key from an LLM provider supported by LiteLLM. This project is pre-configured for Google's Gemini models.

1. Running the Project

1. Clone the repository:

git clone https://github.com/mdonmez/passai.git
cd passai

2. Install dependencies with uv:

uv sync

3. Configure your environment: Copy the .env.example file to a new file named .env:

cp .env.example .env

Open the .env file and add your LLM MODEL (LiteLLM) & LLM API key:

LLM_MODEL=your_llm_model_here
API_KEY=your_api_key_here

4. Run the application:

uv run -m app

The application will be available at localhost:5000.

Demo:

You can try the live demo at: https://passai.up.railway.app/

2. Example Integration

You can call the /generate endpoint from any application. Note that you need to provide a public key for encryption.

Request:

# Generate a 2048-bit RSA key pair first
# Then make the request with your public key
curl -X POST http://127.0.0.1:5000/generate \
-H "Content-Type: application/json" \
-d '{
  "input": "a 12 character password with lots of symbols",
  "publicKey": "YOUR_BASE64_ENCODED_PUBLIC_KEY"
}'

Response:

{
  "encryptedPass": "base64_encrypted_password_data"
}

Note: The password is encrypted with your public key. You'll need to decrypt it with your private key using RSA-OAEP with SHA-256.

Important Note

Note

This project uses end-to-end encryption to secure password transmission. Passwords are encrypted with RSA-OAEP (2048-bit) before leaving the server, and can only be decrypted by the client that generated the request. However, this is a demo project and should not be used for generating passwords for sensitive accounts without a thorough security review. Always use a trusted, local password manager for critical accounts.

Acknowledgements

This project was made possible by several great open-source libraries:

  • FastAPI: For the modern, high-performance web framework.
  • Uvicorn: For the lightning-fast ASGI server.
  • LiteLLM: For interacting with the language model.
  • Instructor: For getting structured output from the LLM.
  • Pydantic: For data validation.
  • Cryptography: For secure encryption and decryption.

Contributing

Contributions are welcome! Please feel free to open an issue or submit a pull request.

License

This project is licensed under the MIT License.

About

AI-assisted PoC that generates pass' from natural language without directly using AI to generate them

passai.up.railway.app

Topics

ai password passphrase

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Contributors 4

  •  
  •  
  •  
  •  

Languages