Secretlink is a blazing-fast, open-source, one-time secret sharing application built with Rust and PostgreSQL. Share sensitive information—like passwords, API keys, or confidential notes—securely and privately. Each link is end-to-end encrypted in your browser and can only be viewed once before it self-destructs.
- End-to-End Encryption: Secrets are encrypted in your browser before ever reaching the server.
- One-Time Access: Each link can only be viewed once. After that, it’s gone forever.
- No Registration: Share secrets instantly—no account or login required.
- Flexible Expiry: Set secrets to expire after a certain time or keep them available until first view.
- Open Source: MIT licensed and easy to self-host.
- Modern Rust Stack: Built with Axum, SQLx, and Askama.
- Write your secret in the web UI.
- Choose an expiry (one-time, 1 hour, 24 hours, or 1 week).
- Generate a secure link—the secret is encrypted in your browser.
- Share the link. The recipient can view the secret once; after that, it’s deleted.
- Rust (latest stable)
- PostgreSQL
-
Clone the repo:
git clone https://github.com/coder3101/secretlink.git cd secretlink -
Set up the database:
# After your postgresql is up and running, set the following environment export DATABASE_URL=postgres://postgres:password@localhost:5432/secretlink
-
Run migrations:
cargo install sqlx-cli --no-default-features --features postgres sqlx migrate run
-
Start the server:
cargo run
-
Visit http://localhost:8080
export DATABASE_URL=postgres://postgres:password@localhost:5432/secretlink
cargo test- Secrets are encrypted in the browser using AES-256-GCM.
- The server never sees the plaintext secret or the encryption key.
- Links are single-use and self-destruct after being viewed.
Contributions are welcome! Please open issues or pull requests.
MIT License © 2025 Ashar
Made with ❤️ in Rust