Hey r/SideProjects!
I'm Reyansh, and I shipped SHIELD-Authenticator — a 2FA app that's actually been live since January, but we're just now getting the word out.
The Project:
- React + Firebase + Capacitor (web + Android)
- End-to-end encrypted vault for your 2FA codes
- ~18 months of solo development
- Currently v2.5.0 in production
Why I Built It:
Frustrated with authenticator apps that:
- Don't back up your codes
- Collect way too much data
- Don't let you own your security
So I made one that does the opposite.
What It Does:
- Generate TOTP codes in real-time
- Password-protected vault (Argon2id hardening)
- Recovery questions if you forget your password
- Works offline
- Export/import with encryption
- No tracking, no BS
Tech Decisions:
- React because it's solid
- Capacitor for Android without rebuilding everything
- Firebase for auth (kept data off there)
- AES-GCM for encryption (military grade)
- Argon2id for key derivation (better than PBKDF2)
Current Status:
- Live and working
- ~4 months in production
- Still building the user base (honesty check: we have zero users yet)
- Not VC-funded, just genuine security work
What I Learned:
✅ Encryption in the browser is doable but slow
✅ Offline-first design actually saves you
✅ Recovery paths are critical (don't skip them)
✅ Testing on real low-end Android devices matters
✅ Users care about backup more than I thought
The Honest Part:
This has been live for months, but adoption is basically zero. No massive marketing budget, just me building something solid. If you're interested in trying it or just want to chat about the architecture, I'm all ears.
Next:
Looking for beta testers and security feedback. If you care about privacy and want to try a real 2FA app, check it out.
Website: shield-auth.shieldintelligence.in
Happy to answer any questions about the project or technical decisions!
—Reyansh Raj Mishra