FileThere Logo FileThere

(PROJECT SHOWCASE)
Go Gin PostgreSQL SQLC WebSockets Docker JWT

FileThere is a secure, cross-platform file-sharing platform that redefines how teams exchange confidential documents. Built with zero-trust principles at its core, it combines military-grade encryption with intuitive design to make secure file sharing effortless.

The Challenge

In today's digital workspace, teams need to share sensitive files quickly and securely. Traditional methods like email attachments or public cloud storage often compromise either security or convenience. FileThere bridges this gap by offering a solution that's both secure and user-friendly, without the typical trade-offs.

Platform Showcase Security Architecture Real-time Collaboration Storage

Platform Showcase

Secure Authentication

A comprehensive authentication system that implements multiple layers of security while maintaining a seamless user experience. The platform uses JWT-based authentication with refresh token rotation and mandatory email verification.

Registration Security

  • • Email validation and uniqueness verification
  • • Strong password requirements with real-time validation
  • • Argon2 password hashing with unique salts
  • • Mandatory email verification process
Password Strength Checker

Login Protection

  • • Rate limiting on login attempts
  • • Secure password comparison
  • • Short-lived JWT tokens (15 minutes)
  • • HTTP-only secure cookies

Session Management

  • • 7-day refresh token rotation
  • • Domain-bound secure cookies
  • • Strict same-site cookie policy
  • • Automatic token refresh mechanism
Session Timer Demo
15:00

Secure Onboarding

A secure onboarding process that ensures proper key generation and team association while maintaining strict access controls.

Onboarding Security

  • • Verified email status verification
  • • One-time completion enforcement
  • • Role-based access control
  • • Team association validation

Key Generation

  • • ECDSA key pair for digital signatures
  • • RSA key pair for encryption
  • • Secure key storage and backup
  • • Automatic key rotation

Role Management

  • • Team leader specific permissions
  • • Team member access controls
  • • Granular permission system
  • • Audit logging for role changes
PIN Verification Demo

Try entering: 1234

FileThere File Transfer Interface

End-to-End Encrypted Transfers

Secure file transfers with military-grade encryption. Files are encrypted client-side before upload, ensuring zero server-side visibility into the content.

File Upload Demo

Drag and drop a file here

or

Client-Side Encryption

AES-GCM encryption with unique keys per file

Secure Key Exchange

RSA-OAEP for recipient-specific key wrapping

Real-time Progress

Live transfer status with chunked uploads

Team Dashboard

A powerful dashboard for managing files and team collaboration. Real-time updates keep everyone in sync while maintaining strict security controls.

Live Team Activity

Alice uploaded a new file

2 minutes ago

Bob shared a folder

5 minutes ago

Team Collaboration

Real-time presence detection and activity tracking

File Management

Intuitive organization with drag-and-drop support

Activity Logging

Comprehensive audit trail for all operations

FileThere Team Dashboard

Technical Architecture

Frontend

  • • Vanilla JavaScript with Web Crypto API
  • • TailwindCSS for responsive design
  • • WebSocket for real-time updates

Backend

  • • Go (Gin) for high-performance API
  • • PostgreSQL with SQLC
  • • WebSocket connection pool

Infrastructure

  • • Backblaze B2 for storage
  • • Docker containers
  • • NGINX with TLS

Security Architecture

End-to-End Encryption Flow

FileThere implements a comprehensive end-to-end encryption system that ensures data security at every step. From initial client-side encryption to secure key exchange and final decryption, each file transfer maintains zero-knowledge principles while providing seamless user experience.

1. Client-Side Encryption

Files are encrypted using AES-GCM (256-bit) with unique keys generated through PBKDF2 (100,000 iterations). This ensures maximum security before any data leaves the user's device.

2. Secure Key Exchange

RSA-OAEP (2048-bit) handles key exchange, wrapping each file's encryption key with the recipient's public key. This ensures only authorized users can access the content.

3. File Verification

ECDSA signing verifies file integrity, while automatic key rotation and secure storage maintain the highest level of security throughout the process.

Dive Deeper into FileThere's Security

Explore our comprehensive series on Medium where we break down the cryptographic principles and security architecture behind FileThere.

Read the Security Series
@santura on Medium

Real-time Collaboration

WebSocket Architecture

Connection Pool

Custom connection pool handling thousands of concurrent connections with automatic scaling and load balancing.

Message Protocol

Custom protocol for WebSocket messages with queuing and retry logic for offline scenarios.

Heartbeat System

JWT-based authentication with heartbeat mechanisms for connection health monitoring.

Collaboration Features

Presence Detection

Real-time user presence tracking with status updates and activity indicators, ensuring team members are always aware of who's online and active.

Activity Logging

Comprehensive audit trail for all file operations with detailed timestamps, providing complete visibility into team activities.

File Management

Intuitive file organization with drag-and-drop support and automatic cleanup, making collaboration seamless and efficient.

Live Team Presence

Alice
Viewing dashboard
Bob
Away
Charlie
Editing document

Storage

File Upload Process

Client-Side Encryption

Files are encrypted using AES-GCM (256-bit) with unique keys generated through PBKDF2 (100,000 iterations).

Key Exchange

RSA-OAEP (2048-bit) handles key exchange, wrapping each file's encryption key with the recipient's public key.

File Verification

ECDSA signing verifies file integrity, while automatic key rotation and secure storage maintain the highest level of security.

Storage Architecture

Cloud Storage

Backblaze B2 cloud storage with team-specific storage buckets, ensuring zero-knowledge data access and automatic file cleanup.

Data Protection

All data is encrypted at rest and in transit, with secure metadata handling and perfect forward secrecy maintained throughout.

Access Control

Granular access controls ensure that only authorized users can access specific files, with comprehensive audit logging for all operations.

Storage Usage Demo

Team Storage 75% used
Documents 45%
Media 30%
Other 25%
Coming Soon

Ready to Transform Your Team's File Sharing?

FileThere is launching soon, bringing enterprise-grade security to teams of all sizes. Join the waitlist to be among the first to experience the future of secure file sharing.

Visit filethere.com