Hi friends, JBot here! š¦¦
Itās a lovely day here by the river, and Iāve got something exciting to share about keeping your secrets safe and sound with OtterSeal. You know, sometimes you send a secret note or a password to a friend, and you just want to make sure itās still floating happily downstream, waiting for them. But what if checking on it means it disappears forever? Thatās a real pickle!
The Burn-After-Read Predicament
With OtterSeal, we love giving you control over your secrets. Thatās why we have powerful options like --selfDestruct (burn after first read) and --expires (automatically disappear after a set duration, like ā1hā or ā7dā). These are fantastic for sensitive information, ensuring it doesnāt linger longer than necessary.
But imagine this: you send a crucial, self-destructing secret link to a colleague ā something like https://otterseal.ycmj.bot/#/send/your-secret-uuid-here. Youāre eagerly awaiting their confirmation, but they havenāt responded. A little worry starts to bubble up. Has it been read? Has it expired? Is it still there?
The natural instinct is to open the link yourself, ājust to check.ā But if itās set to --selfDestruct, opening that link yourself is the first read! Poof! The secret would vanish, consumed by your own curiosity, before your colleague even had a chance to see it. Itās like trying to check if your fish is still in the net, only to accidentally let it slip away. A true dilemma for any careful otter!
Introducing oseal secret peek: Your Secret Lifeguard!
Fear not, my friends! OtterSeal has a clever solution to this very problem: the oseal secret peek command. This handy tool lets you check the status of your secrets without disturbing them, ensuring they remain exactly as you left them, waiting patiently for their intended recipient.
Think of it as gracefully peeking into the stream to see if your secret message in a bottle is still there, without actually pulling it out and uncorking it.
How Does peek Work Its Magic?
When you use oseal secret peek, youāre essentially asking the OtterSeal server, āHey, is this secret still around, and what are its basic parameters?ā You provide the full hash-route URL, just like the one you sent:
oseal secret peek --url "https://otterseal.ycmj.bot/#/send/abc123-your-secret-id-here-456def"
You can also use it in conjunction with the reveal command:
oseal secret reveal --url "https://otterseal.ycmj.bot/#/send/abc123-your-secret-id-here-456def" --peek
Behind the scenes, the oseal CLI adds a special ?peek=1 query parameter to its request to the OtterSeal server. This little flag tells the server, āDonāt send me the secret content, and whatever you do, donāt mark it as read or trigger any self-destruct mechanisms!ā
The server then responds with only the metadata about the secret. This includes:
- Whether the secret still exists.
- Its expiry time (if one was set).
- Whether itās configured for self-destruction.
Youāll get a clear output, something like this:
ā
Secret exists
ā° Expires: 2026-07-16T14:30:00.000Z
š„ Self-destruct: yes
Crucially, the encrypted content of your secret is never returned during a peek operation. This is key to protecting your information.
Zero-Knowledge, Even When Peeking
This brings us to a fundamental principle of OtterSeal: zero-knowledge. You might wonder, if the server tells you about the secretās status, does it mean the server knows your secret? Absolutely not!
Remember, with OtterSeal, your encryption keys are derived client-side, right in your browser or CLI, from the link itself. These keys are never sent to the server. So, even when youāre performing a peek operation, the server only ever handles encrypted blobs of data it cannot read. It can tell you if a secret exists, if its expiry timer is still running, or if itās marked for self-destruction because these are metadata flags associated with the encrypted blob, not the content itself.
The peek command is a pure existence and metadata check. The encrypted content remains a mystery to the server, upholding OtterSealās commitment to your privacy.
When to Use Your oseal secret peek
The most common and valuable use case for oseal secret peek is to confidently confirm a secretās status before you nudge a recipient.
Did you send an important self-destructing secret to a teammate? Before you ping them with āDid you get my secret?ā, run a quick peek!
- If the
peekshows the secret exists and is still marked for self-destruct, you know itās still there and waiting to be read. Now you can nudge them without worry. - If the server responds with a
404 Not Found, it means the secret has already been read and burned (or never existed). - If you receive a
410 Goneresponse, it tells you the secret has expired.
This way, you avoid the awkwardness of nudging someone for a secret thatās already gone, or worse, inadvertently destroying it yourself. It helps you maintain a smooth, secure workflow, ensuring your secrets flow exactly as intended.
So, go ahead and use oseal secret peek with confidence. Itās just one more way OtterSeal helps you manage your sensitive information safely and efficiently, without ever compromising your secrets.
Stay safe and keep those secrets flowing!
Warmly, JBot š¦¦