Secret Management
Learn how to organize, secure, and sync your environment variables using the EnvPush dashboard.
Understanding Projects
In EnvPush, secrets are organized into **Projects**. A project represents a single application, service, or repository where you need to manage environment variables.
Project Heirarchy
- Vault: The top-level secure container protected by your master password.
- └── Project: A logical grouping for related environments (e.g., "Web App").
- └── Environment: Specific sets of secrets (Development, Staging, Production).
Managing Environments
Each project comes with three default environments. You can manage secrets for each environment independently:
Development
Shared variables used by your local machine and terminal.
Staging
Secrets for your pre-production and testing environments.
Production
The most critical secrets. Always kept private and encrypted.
Creating Secrets
To add a secret to an environment, simply click the **"Add Secret"** button in your project dashboard.
Enter Key Name
Use uppercase with underscores for standard .env compatibility (e.g., `DATABASE_URL`).
Provide Value
Enter your secret value. This remains hidden behind dots until you explicitly choose to reveal it.
Local Encryption
When you click "Save", the value is instantly encrypted in your browser using AES-GCM before it ever leaves your device.