# pglombardo/passwordpusher **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/pglombardo-passwordpusher).** 2,871 stars · 425 forks · Ruby · apache-2.0 ## Links - GitHub: https://github.com/pglombardo/PasswordPusher - Homepage: https://docs.pwpush.com - awesome-repositories: https://awesome-repositories.com/repository/pglombardo-passwordpusher.md ## Topics `communicate-passwords` `docker-container` `encryption` `hacktoberfest` `information-technology` `netsec` `netsec-tools` `openshift-templates` `password` `password-expiration` `password-pusher` `password-safety` `ruby` `secret` `security` `security-tools` `self-hosted` ## Description PasswordPusher is a self-hosted secret sharing service and file sharing platform used to create encrypted, self-destructing links for sensitive text and files. It functions as a white-label security gateway, allowing organizations to manage the distribution of secrets on their own internal infrastructure. The system supports corporate white-labeling through custom domain mapping and branding customization to align the interface with a professional identity. It provides a RESTful API and command-line interface for the automated distribution of secrets within external scripts and workflows. The platform covers a broad range of security and management capabilities, including AES-GCM encryption at rest, multi-factor authentication, and single sign-on integration. It manages the lifecycle of sensitive data through automatic expiration based on time or view counts, while maintaining an audit trail of access history. The service supports flexible data persistence with various database backends and pluggable object storage for encrypted files. Deployment is supported via containerized orchestration with automated TLS provisioning. ## Tags ### Security & Cryptography - [Encrypted File Sharing](https://awesome-repositories.com/f/security-cryptography/message-encryption/encrypted-file-sharing.md) — Provides the core capability of creating encrypted, self-destructing links for sharing sensitive text. ([source](https://docs.pwpush.com/docs/self-hosted-configuration/)) - [Self-Destructing Payloads](https://awesome-repositories.com/f/security-cryptography/secret-encryption/self-destructing-payloads.md) — Creates encrypted secrets that are entirely deleted after a specified duration or number of views. ([source](https://docs.pwpush.com/docs/pushes/)) - [Secure Secret Sharing](https://awesome-repositories.com/f/security-cryptography/secure-secret-sharing.md) — Shares sensitive text, files, or passwords via encrypted links that automatically expire. - [RESTful Lifecycle Management](https://awesome-repositories.com/f/security-cryptography/encrypted-secret-management/restful-lifecycle-management.md) — Offers a RESTful interface to manage the full lifecycle of encrypted secret pushes within external workflows. ([source](https://docs.pwpush.com/docs/json-api/)) - [Encrypted Secret Sharing](https://awesome-repositories.com/f/security-cryptography/end-to-end-encryption/encrypted-secret-sharing.md) — Implements secure distribution of credentials and encrypted files to external parties via a CLI and API. ([source](https://docs.pwpush.com/feed.xml)) - [AES-GCM Data Encryptors](https://awesome-repositories.com/f/security-cryptography/privacy-data-protection/data-encryption/end-to-end-encryption/media-encryption/stream-encryption-and-decryption/aes-gcm-data-encryptors.md) — Uses AES-GCM authenticated encryption to secure sensitive data at rest with unique keys. - [Transit and At-Rest Encryption](https://awesome-repositories.com/f/security-cryptography/privacy-data-protection/data-encryption/end-to-end-encryption/transit-and-at-rest-encryption.md) — Encrypts database records at rest using AES-GCM with unique per-field keys. ([source](https://docs.pwpush.com/docs/security/)) - [Self-Hosted Vaults](https://awesome-repositories.com/f/security-cryptography/secret-storage/self-hosted-vaults.md) — Allows deploying and administering a private instance for storing and distributing secrets on internal infrastructure. - [Self-Destructing Sharing](https://awesome-repositories.com/f/security-cryptography/sensitive-data-access-controls/self-destructing-sharing.md) — Creates encrypted, self-destructing links for sharing sensitive text and files. - [Access Control](https://awesome-repositories.com/f/security-cryptography/access-control.md) — Controls whether secret link creation requires authentication or allows anonymous access. ([source](https://docs.pwpush.com/docs/self-hosted-configuration/)) - [Bearer Token Authentication](https://awesome-repositories.com/f/security-cryptography/bearer-token-authentication.md) — Secures programmatic API access to secret management using bearer tokens in HTTP headers. - [RESTful Secret Management APIs](https://awesome-repositories.com/f/security-cryptography/encrypted-secret-management/restful-secret-management-apis.md) — Provides a RESTful interface to create, retrieve, and expire encrypted secret pushes. - [Workspace Security Policies](https://awesome-repositories.com/f/security-cryptography/infrastructure-policy-enforcement/security-policy-enforcers/workspace-security-policies.md) — Enforces mandatory expiration limits and passphrase requirements across shared team workspaces. ([source](https://docs.pwpush.com/feed.xml)) - [Multi-Factor Authentication](https://awesome-repositories.com/f/security-cryptography/multi-factor-authentication.md) — Supports multi-factor authentication via TOTP codes from authenticator apps to enhance account security. ([source](https://docs.pwpush.com/docs/self-hosted-configuration/)) - [Link Protection](https://awesome-repositories.com/f/security-cryptography/password-management/link-protection.md) — Adds an optional password layer to shared links for security beyond the unique URL. ([source](https://docs.pwpush.com/feed.xml)) - [Secure Link Dispatchers](https://awesome-repositories.com/f/security-cryptography/secure-link-dispatchers.md) — Emails secure, encrypted links directly to recipients on behalf of the sender. ([source](https://docs.pwpush.com/feed.xml)) - [Single Sign-On Integrations](https://awesome-repositories.com/f/security-cryptography/single-sign-on-integrations.md) — Integrates with external identity providers to enable centralized single sign-on authentication. ([source](https://docs.pwpush.com/docs/editions/)) ### Data & Databases - [Pluggable Object Storage](https://awesome-repositories.com/f/data-databases/data-engineering-infrastructure/data-persistence-storage/data-storage/file-based-storage/local-file-storage/s3-compatible-cloud-storage/pluggable-object-storage.md) — Supports flexible data persistence via local storage, Amazon S3, and Azure Blob Storage. ([source](https://docs.pwpush.com/docs/editions/)) - [Pluggable Database Backends](https://awesome-repositories.com/f/data-databases/persistent-storage-backends/pluggable-database-backends.md) — Supports switching between SQLite and PostgreSQL for storing encrypted payloads based on deployment scale. ([source](https://docs.pwpush.com/docs/installation/)) - [Record Deletion](https://awesome-repositories.com/f/data-databases/record-deletion.md) — Permanently removes sensitive records and files automatically based on time limits or view counts. ([source](https://docs.pwpush.com/docs/security/)) - [Pluggable Storage Backends](https://awesome-repositories.com/f/data-databases/pluggable-storage-backends.md) — Provides an abstraction layer to store encrypted files on local disk, S3, Google Cloud, or Azure Blob Storage. ### DevOps & Infrastructure - [Secure Secret Distribution](https://awesome-repositories.com/f/devops-infrastructure/configuration-management/configuration-distribution-and-sharing/secure-secret-distribution.md) — Exposes a stateless REST interface for the secure distribution and expiration of encrypted links. - [Self-Hosted Deployments](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-deployments.md) — Can be installed on private infrastructure using Docker, Kubernetes, or various cloud platforms. ([source](https://docs.pwpush.com/docs/installation/)) - [Programmatic Secret Distribution](https://awesome-repositories.com/f/devops-infrastructure/configuration-management/configuration-distribution-and-sharing/programmatic-secret-distribution.md) — Provides a RESTful API and CLI for the automated distribution of secrets within external scripts. - [Containerized Production Setups](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/infrastructure-as-code/provisioning-and-deployment/server-installation-methods/automated-production-server-setup/containerized-production-setups.md) — Provides Docker Compose configurations with automated SSL/TLS certificate provisioning for production instances. ([source](https://cdn.jsdelivr.net/gh/pglombardo/passwordpusher@master/README.md)) ### Web Development - [View-Count and Time Expirations](https://awesome-repositories.com/f/web-development/data-fetching-caching/cache-invalidation-utilities/time-to-live-expirations/database-document-expirations/view-count-and-time-expirations.md) — Automatically deletes encrypted records and files once a specific time limit or view count is reached. - [Encrypted File Sharing Platforms](https://awesome-repositories.com/f/web-development/self-hosted-file-servers/encrypted-file-sharing-platforms.md) — Provides a private infrastructure for distributing encrypted files stored on local disk, S3, or Azure Blob. - [JSON APIs](https://awesome-repositories.com/f/web-development/json-apis.md) — Provides a JSON-based API for programmatically pushing sensitive data into secure sharing workflows. ([source](https://cdn.jsdelivr.net/gh/pglombardo/passwordpusher@master/README.md)) ### Artificial Intelligence & ML - [TOTP Authentication Systems](https://awesome-repositories.com/f/artificial-intelligence-ml/agentic-systems-frameworks/agent-orchestration-multi-agent/security-and-auth/authentication-strategies/passwords-mfa/totp-authentication-systems.md) — Requires time-based one-time passwords (TOTP) to provide a second layer of security during sign-in. ### Networking & Communication - [Custom Domain Mapping](https://awesome-repositories.com/f/networking-communication/network-infrastructure-routing/network-routing-traffic-management/network-traffic-management/cdn-routing-gateways/custom-domain-mapping.md) — Maps the application to a unique organizational domain to improve trust and brand recognition. ([source](https://docs.pwpush.com/docs/editions/)) ### Software Engineering & Architecture - [Database-Agnostic Frameworks](https://awesome-repositories.com/f/software-engineering-architecture/database-agnostic-frameworks.md) — Decouples application logic from the database, allowing users to switch between SQLite and PostgreSQL. ### System Administration & Monitoring - [Administrative Dashboards](https://awesome-repositories.com/f/system-administration-monitoring/administrative-dashboards.md) — Provides a web-based dashboard for managing system configurations, pushes, and user data. ([source](https://docs.pwpush.com/docs/admin-dashboard/)) - [Secret Access Auditing](https://awesome-repositories.com/f/system-administration-monitoring/secret-access-auditing.md) — Tracks and logs the access history of shared secrets to maintain a security audit trail. ### User Interface & Experience - [Branding Customization](https://awesome-repositories.com/f/user-interface-experience/branding-customization.md) — Allows uploading custom logos and modifying visual elements to align the interface with corporate identity. ([source](https://docs.pwpush.com)) - [Sharing Revocations](https://awesome-repositories.com/f/user-interface-experience/dashboard-sharing-controls/sharing-revocations.md) — Allows immediate manual deletion of shared links to revoke access before the expiration limit. ([source](https://docs.pwpush.com/feed.xml)) - [White Labeling](https://awesome-repositories.com/f/user-interface-experience/white-labeling.md) — Customizes the look, feel, and domain of the service to align with an organization's professional brand identity. - [White-Label Security Gateways](https://awesome-repositories.com/f/user-interface-experience/white-labeling/white-label-security-gateways.md) — Provides a customizable interface for organizations to share secrets under their own domain and branding. ### Part of an Awesome List - [Open Source Applications](https://awesome-repositories.com/f/awesome-lists/devtools/open-source-applications.md) — Secure password delivery and sharing tool.