This is a tool to share secrets via a one-time link, very similar to One-Time Secret.
The front-end is built with EJS templates. The back-end is built with Express, following the model-view-controller architecture. The secrets are encrypted with Node's crypto package and stored in a Firestore database.
What makes this tool secure:
- Secrets are encrypted (with Node's crypto package) before being sent to the database.
- Secrets expire after a custom amount of time.
- Secrets will be destroyed once they have been opened.
- Secrets can also be protected with an additional password, so that not just the link is sufficient to open them.
- That password is hashed before it is added to the database.
