1Open My Secrets

Navigation

Navigate to /secrets-notes

From any page in EmpowerNow, click Administration in the top navigation bar, then choose Secrets → My Secrets. Alternatively, navigate directly to /secrets-notes.

My Secrets is available to any authenticated user — you do not need admin privileges. Every user has their own private secret store that only they can access.

Welcome Experience

First-time visit — Welcome Experience

If you have never created a secret note before, a Welcome Experience animation plays on the right panel. It explains what My Secrets is for: a personal encrypted note pad for sensitive values like API keys, tokens, passwords, and connection strings that you need to reference regularly.

The animation has a single call-to-action: + Create your first secret. Clicking it opens the Create Secret Note modal. Once you have at least one note, the Welcome Experience is replaced by the note detail panel.

experience.your-tenant.empowernow.ai /secrets-notes
My Secrets
🔑
No secrets yet
Welcome to My Secrets
Store personal API keys, tokens, and sensitive values — encrypted, private, and always at hand.
+ Create your first secret

2Reading the secrets list

List layout

Master-detail: sidebar list + right panel

My Secrets uses a master-detail layout. The left sidebar shows all your secrets as a list. Clicking any item opens its detail in the right panel. The URL updates to reflect the selected note.

My Secrets + New
📝
GitHub PAT
⭐ Pinned · 2h ago
📝
AWS Access Key
Today, 10:24 AM
🔒
Vault Token
Vault secret · read-only
📝
Slack Webhook URL
Yesterday
AWS Access Key
📝 Note · Last modified: Today, 10:24 AM · Tags: aws, infra
Secret Value
•••••••••••••••••••
👁 Reveal 📋 Copy ✏️ Edit 🗑 Delete
List item anatomy

What each list item shows

ElementDescription
📝 Icon (note)A personal secret note you created. You can view, edit, and delete it.
🔒 Icon (vault)A vault-backed secret from Secrets Hub that has been surfaced here for convenience. It appears read-only — you cannot edit it from this view.
TitleThe name you gave the secret when creating it. Favorites show in amber text at the top of the list.
Last-modified dateWhen the note was last saved. Shows relative time for recent notes (e.g., "2h ago") and full date for older ones.
⭐ Favorite starClick the star to toggle a note as a favorite. Favorites are pinned to the top of the list above all non-favorited notes, regardless of sort order.
Sort and search

Sort modes and search filtering

ModeBehavior
Recent (default)Most recently modified notes appear first, after favorites.
AlphabeticalSorted A–Z by title. Favorites remain pinned at top.
By typeGroups notes (📝) together, then vault secrets (🔒) together.

The search box at the top of the sidebar filters the list by title in real time. Vault secrets that appear read-only are included in search results but cannot be edited.

💡
Vault secrets in My Secrets

Vault-backed secrets from Secrets Hub may appear in your My Secrets list if they have been shared with you or are included in your personal view. They are shown with a 🔒 icon and are always read-only here. To create or edit vault secrets, use the Secrets Hub guide.

3Create a secret note

Step 3.1

Click "+ New Secret Note"

Click the + New button at the top of the sidebar, or the + New Secret Note button that appears in the main area when no note is selected. The Create Secret Note modal opens.

Create form fields

Field reference

FieldRequiredNotes
TitleA human-readable name for this secret. Maximum 120 characters. Must be unique within your personal secret store.
Secret ValueThe actual secret content. Masked by default (dots). Click the eye icon to toggle visibility. Supports multi-line values — useful for private keys or .env files (see Task 5).
TagsNoComma-separated tags to categorise the secret (e.g. aws, infra). Used for filtering in the list and for .env split categorisation (Task 5).
After creation

Success celebration animation

When you click 📝 Create, a short success celebration animation plays (confetti or sparkle depending on the tenant theme). The modal closes, the new note appears selected in the sidebar list, and its detail is shown in the right panel. If you created the very first note, the Welcome Experience is replaced by this detail view.

All secrets are encrypted at rest

My Secrets values are encrypted using your tenant's secrets encryption key. Neither EmpowerNow support staff nor other users can read your secret values. Only you (and anyone you explicitly share with) can reveal the value.

4View & edit a note

Opening a note

Click any note in the list

Click a note row in the sidebar to open it in the right detail panel. The detail panel shows:

Panel elementDescription
TitleThe note name displayed as a large heading at the top.
Masked valueThe secret value displayed as ••••••••. Click the 👁 Reveal button to show the plain text. The value re-masks after 30 seconds of inactivity, or when you navigate away.
📋 Copy buttonCopies the secret value to the clipboard. A "Copied!" badge appears for 2 seconds, then disappears. The value is copied even while masked — you do not need to reveal it first.
Last-modified dateShown below the title as metadata. Updates every time you save changes.
TagsDisplayed as small badges below the title. Clicking a tag filters the list to show only notes with that tag.
Editing

Click ✏️ Edit to modify a note

Click the ✏️ Edit button in the action row below the secret value field. The detail panel switches to edit mode — the title and value fields become editable inline. No modal opens.

Title
Secret Value
👁
💾 Save Cancel

Click 💾 Save to commit the changes. The last-modified date updates immediately. Click Cancel to discard any edits and return to read mode.

⚠️
Navigating away discards unsaved edits

If you click a different note in the sidebar while in edit mode, EmpowerNow shows a "Discard changes?" prompt. Click Discard to switch notes, or Stay & Save to commit first.

5.env format detection

Automatic detection

Paste a .env file — EmpowerNow detects it

When you open the Create Secret Note modal and paste content into the Secret Value field, EmpowerNow inspects the pasted text. If it looks like a .env file — lines in KEY=value format — a detection banner appears automatically above the field.

Secret vs. config classification

How EmpowerNow categorises variables

EmpowerNow automatically classifies each detected variable based on its key name pattern. Secret variables contain sensitive data and are included in the split. Config values are operational settings and are excluded.

CategoryKey name patternsIncluded in split?
🔴 SecretContains: KEY, TOKEN, PASSWORD, PASS, SECRET, CREDENTIAL, AUTH, PRIVATEYes — each becomes an individual secret note
⚪ ConfigContains: URL, HOST, PORT, PATH, ENV, NAME, MODENo — excluded from the split to avoid cluttering your secret store with non-sensitive config
Split action

Click "Split into X secrets"

Clicking the ⚡ Split into 4 secrets button closes the modal and creates one individual secret note per detected secret variable. The title of each note is set to the variable name (e.g., API_KEY), and the value is set to the variable's value. Each note is created immediately with a quick success animation per note.

The config values (e.g., APP_PORT, BASE_URL) are silently dropped — they are not stored anywhere. If you need to keep them, choose Keep as one note to store the entire .env content as a single note.

💡
Why split?

Splitting allows you to copy, rotate, or share individual secrets without exposing all your other secrets at the same time. For example, you can share only the STRIPE_SECRET with a teammate without revealing your database password.

6Delete & share a secret

Soft delete

Click 🗑 Delete — note moves to soft-deleted state

In the detail panel, click the 🗑 Delete button. A confirmation prompt appears: "Delete this secret? You can undo this within 30 days." Confirm to soft-delete the note.

Soft-deleted notes are removed from the main list immediately but are not permanently destroyed. They are recoverable for 30 days.

Undo delete

Show deleted notes and recover within 30 days

At the bottom of the secrets list sidebar, a Show deleted toggle becomes visible once you have any soft-deleted notes. Toggle it on to reveal deleted notes in the list — they appear dimmed with a red trash icon and an Undo Delete button.

Click Undo Delete on any note to restore it to your main list. After 30 days, soft-deleted notes are permanently purged and cannot be recovered.

🚨
After 30 days: permanent destruction

Soft-deleted notes are permanently and irreversibly destroyed after 30 days. This includes the encrypted value. Set a reminder if you think you may need to recover a recently deleted secret.

Share a secret

Click Share to open the Share Modal

In the detail panel, click the 🤝 Share button. The Secret Sharing modal opens. Full sharing documentation — including time-limited links, grant-based shares, and revoking shares — is covered in the Secret Sharing guide.

💡
Sharing from My Secrets vs. Secrets Hub

You can share both personal notes (📝) and vault-backed secrets (🔒 read-only) using the Share modal. For vault secrets, you are sharing a time-limited view of the vault value — you are not duplicating the secret outside Vault.