तिजोरी (Hindi for "vault/safe") - A secure environment variables manager with zero-knowledge encryption.
Tijori is a self-hosted secrets management tool that keeps your environment variables encrypted. The server never sees your plaintext secrets - all encryption happens client-side in your browser.
- 🔐 Zero-Knowledge Architecture - Server only stores encrypted data
- 🔑 End-to-End Encryption - AES-256-GCM with PBKDF2 key derivation
- 👥 Team Collaboration - Role-based access (Owner/Admin/Member)
- 🔗 Secure Sharing - Time-limited encrypted share links
- 🌐 Modern Stack - React, TanStack Router, Convex, Clerk
| Layer | Technology |
|---|---|
| Frontend | TanStack Start (React + Router + SSR) |
| Backend | Convex (Realtime database + functions) |
| Auth | Clerk (OAuth 2.0) |
| Styling | Tailwind CSS v4 + shadcn/ui |
| Crypto | Web Crypto API (client-side) |
| Runtime | Bun |
# Clone the repository
git clone https://github.com/pantharshit007/tijori.git
cd tijori
# Install dependencies
bun install
# Set up environment variables
cp .env.example .env.local
# Edit .env.local with your Convex and Clerk credentials
# Start development servers
bun run dev # Frontend (http://localhost:3000)
bun cvx:dev # Convex backend (separate terminal)| Command | Description |
|---|---|
bun run dev |
Start Vite dev server |
bun cvx:dev |
Start Convex dev server |
bun test |
Run tests |
bun run lint |
Run ESLint |
bun run check |
Run Prettier + ESLint |
bun run build |
Production build |
Tijori uses industry-standard cryptography:
- AES-256-GCM for symmetric encryption
- PBKDF2 with 100,000 iterations for key derivation
- SHA-256 for hashing
See docs/SECURITY.md for the full security architecture.
Please do not open public issues for security vulnerabilities. See our Security Disclosure Policy for responsible reporting.
tijori/
├── convex/ # Backend (Convex functions + schema)
├── src/
│ ├── components/ # React components
│ ├── hooks/ # Custom React hooks
│ ├── lib/ # Utilities (crypto, constants)
│ └── routes/ # TanStack Router pages
├── server/ # Nitro middleware
├── docs/ # Documentation
└── test/ # Tests
Contributions are welcome! Please read the security checklist in docs/SECURITY.md before submitting PRs that touch crypto or auth code.
This project is licensed under the GNU Affero General Public License v3.0 (AGPL-3.0).
The AGPL ensures that if you run a modified version on a server, you must make the source code available. See the LICENSE file for details.
Made with 🔒 by @pantharshit007