Skip to content
BitMarks API

Introduction

Introduction to BitMarks API

Section titled “Introduction to BitMarks API”

BitMarks is a bookmark synchronization service that prioritizes security and privacy. Unlike traditional bookmark sync services, BitMarks implements true end-to-end encryption, meaning your bookmark data is encrypted on your device before it ever leaves, and only you hold the keys to decrypt it.

Core Principles

Section titled “Core Principles”

Zero-Knowledge Architecture

The server stores only encrypted blobs. It cannot read your bookmark titles, URLs, or any metadata.

Client-Side Encryption

All encryption and decryption happens in the browser or extension. Keys never leave your device.

Conflict Resolution

Automatic conflict resolution with Last-Write-Wins strategy ensures your data stays consistent across devices.

Edge-First

Built on Cloudflare Workers for low-latency responses worldwide with Durable Objects for real-time sync.

Architecture Overview

Section titled “Architecture Overview”
┌─────────────────┐     ┌──────────────────────────────────────┐
│  Browser        │     │  Cloudflare Edge                     │
│  Extension      │────▶│  ┌─────────────┐  ┌──────────────┐  │
│                 │     │  │   Workers   │  │    D1        │  │
│  - Encrypt      │◀────│  │   (Hono)    │──│  (SQLite)    │  │
│  - Decrypt      │     │  └─────────────┘  └──────────────┘  │
│  - Key Mgmt     │     │         │                            │
└─────────────────┘     │  ┌──────▼──────┐  ┌──────────────┐  │
                        │  │   Durable   │  │     R2       │  │
┌─────────────────┐     │  │   Objects   │  │  (Exports)   │  │
│  Web App        │────▶│  │  (Realtime) │  └──────────────┘  │
└─────────────────┘     │  └─────────────┘                    │
                        └──────────────────────────────────────┘

What You Can Do

Section titled “What You Can Do”

Bookmark Management

Section titled “Bookmark Management”
  • Create encrypted bookmarks with full metadata
  • Update existing bookmarks while preserving encryption
  • Delete bookmarks (soft delete with recovery option)
  • List and search through your bookmark collection

Synchronization

Section titled “Synchronization”
  • Push local changes to the cloud
  • Pull changes from other devices
  • Real-time sync via WebSocket for instant updates
  • Bulk import from browser exports (Chrome, Firefox)

Data Export

Section titled “Data Export”
  • Export your entire collection as encrypted backup
  • Download exports for offline storage
  • Manage export lifecycle

Encryption Details

Section titled “Encryption Details”

The encryption envelope includes:

  • Nonce: 24-byte random value (unique per encryption)
  • Ciphertext: Encrypted bookmark JSON
  • Auth Tag: 16-byte authentication tag for integrity

API Response Format

Section titled “API Response Format”

All API responses follow a consistent JSON format:

Success Response

Section titled “Success Response”
{
  "data": { ... },
  "meta": {
    "total": 100,
    "page": 1,
    "limit": 50
  }
}

Error Response

Section titled “Error Response”
{
  "error": "Human-readable error message",
  "details": "Additional context (development only)"
}

Rate Limits

Section titled “Rate Limits”
Endpoint TypeLimit
Authentication10 requests/minute
Read Operations100 requests/minute
Write Operations30 requests/minute
Bulk Import5 requests/minute

Next Steps

Section titled “Next Steps”