From sign-up to your first saved secret in under five minutes.

Step 1 - Sign in with Google

Go to the app and click Get Started. dotenvar uses Google OAuth so you sign in with your existing Google account. We receive only your name and email address - your Google password is never shared with us.

Step 2 - Set your master passphrase

On first login you will be prompted to create a master passphrase. This passphrase encrypts and decrypts your data entirely on your device. It is never sent to our servers.

There is no "forgot passphrase" option. If you lose your passphrase, your encrypted data cannot be recovered by anyone - including us. Write it down and store it somewhere safe.

Step 3 - Create your first Folder and Group

Once in, create a Folder (e.g. a project or client name) and inside it a Group (e.g. "Production" or "Development"). This structure keeps your secrets organised as your collection grows.

Step 4 - Add your first secret

Inside a Group, click Add Secret. Enter a key name (e.g. DATABASE_URL) and its value. The secret is encrypted immediately on your device and saved to your account.

Optional - Import an existing .env file

Already have a .env file? Use Bulk Import inside any Group to paste its contents directly. dotenvar parses all key-value pairs and adds them at once. See the Import & Export guide for details.

Returning users

Each time you open dotenvar you will be asked for your passphrase. It is used to decrypt your data in memory and is discarded when you close the tab or the session expires.