Secure API for sharing sensitive data via one-time-use links with AES-256-CBC encryption.
SecretVault lets you share passwords, API keys, or any sensitive text through a self-destructing link. The secret is encrypted with AES-256-CBC before being stored in Redis with a TTL. Once the link is accessed, the secret is deleted immediately — it can never be read twice. This eliminates the risk of sensitive data lingering in chat logs or emails.
Built with Node.js and Express. Secrets are encrypted using Node's built-in crypto module (AES-256-CBC) before storage. Redis handles ephemeral storage with automatic TTL expiry. The API generates a unique token per secret; on retrieval, it decrypts and immediately deletes the Redis key. A minimal React frontend provides the share/reveal UI.
Add passphrase protection, view-count limits, burn-on-read confirmation UI, and an audit log for enterprise use.