PWgen

PWgen is a lightweight web application for generating secure random passwords and passphrases. It runs in Docker, provides a browser-based UI with PWA support, and offers configurable defaults via environment variables.

Key Features

• Generate random passwords with configurable length, uppercase, digits, special characters, and homoglyph exclusion
• Create passphrases from word lists with options for capitalization, separators, inclusion of numbers/special characters, and custom word lists
• Check generated items against the haveibeenpwned breach database with an option to disable external checks for isolated environments
• Progressive Web App (PWA) frontend with clipboard copy and a user-friendly interface
• Environment variables to set defaults and toggle features (multi-generation, language controls, offline mode)
• Local settings persistence via browser cookie and support for multiple simultaneous generations
• Docker image and Dockerfile for simple containerized deployment

Use Cases

• Quickly produce strong, configurable passwords for new accounts, services, and credentials
• Generate memorable passphrases for encryption keys or account recovery using curated or custom word lists
• Run in isolated or privacy-conscious environments by disabling external breach checks and using local word lists

Limitations and Considerations

• PWgen is a generator only and does not provide secure vault storage, syncing, or encrypted password management
• Breach checking depends on an external API unless offline mode is enabled; offline mode removes that safety check
• Default passphrase languages are limited and custom wordlist URL restrictions exist by default (configurable)
• Not designed as an enterprise secret management solution; feature set focuses on generation and local convenience

PWgen is suited for individuals and small deployments that need a simple, configurable password and passphrase generator. It is lightweight, easy to deploy via Docker, and configurable for privacy-conscious or offline use.