Couchdrop acts as a protocol gateway. All transfers use TLS 1.2+ encryption, and All protocols utilize the same authentication system, audit logging, and access controls.
This allows you to be flexible when exchanging files with partners and choose from multiple protocols for different use cases.
SFTP
One of the main use cases of Couchdrop is for partners to securely exchange files via SFTP using their existing storage accounts. The user simply connects using the SFTP protocol, and can then upload/download files from a directory securely and without having to be user on the storage account.
SFTP is enabled for all users by default, but can be disabled at the user or account level (note that this will also disable SCP). For SFTP, Couchdrop supports password authentication and public key authentication (RSA, DSA, ECDSA).
You can enable Async SFTP uploads to allow the upload/sync of large files after the SFTP client has closed the connection. This prevents client side timeouts in some cases.
FTP and FTPS
While FTP is available to use, we recommend only using unencrypted FTP when secure connections like FTPS or SFTP are not possible. Couchdrop supports both active and passive FTP transfer modes.
FTP/FTPS access can be disabled at the user or organization level.
You can enable Async FTP uploads to allow the upload/sync of large files after the FTP client has closed the connection. This prevents client side timeouts in some cases.
AS2
Couchdrop has full support for AS2, the standard protocol for EDI document exchange. Couchdrop AS2 provides message-level encryption, digital signatures, and delivery receipts (MDNs). MDN receipts are logged in the audit trail and accessible via the admin console or API.
Inbound AS2 is configured through AS2 Stations to create an AS2 Station ID to share with your partners. You can select any directory to receive files via AS2, including directories in cloud storage platforms.
Outbound AS2 connections create a virtual folder connected to a specific trading partner. When a file is placed in this AS2 folder in Couchdrop, it is automatically wrapped in an AS2 envelope, encrypted, signed, and transmitted to the configured trading partner.
You provide your own signing and encryption certificates.
SCP
SCP transfers files over SSH and shares port 22 with SFTP. SCP supports upload and download only, so is only recommended for limited use cases. For full-featured transfers, SFTP is the recommended option.
Mailboxes
Mailboxes are dedicated email addresses that extract attachments and save them directly to your configured storage. When a sender emails an attachment to a Mailbox address, Couchdrop captures it and routes it to the destination folder automatically.
HTTPS - Upload Links and Shared Links
For partners and clients who don't use a file transfer client, Couchdrop provides two browser-based methods for sending and receiving files. All HTTPS transfers use TLS 1.2+ encryption.
Upload Links are web portals where clients, partners, or suppliers can upload files directly to your storage without needing a Couchdrop account. Links can be configured with password protection, email verification, expiration timers, and custom form fields that capture metadata alongside the uploaded file.
Shared Links let you distribute files via secure download links. Links can be set to expire, restricted to single use, and protected with a password or restricted to specific emails only.
Webhooks can be sent to a HTTPS endpoint and always contain a JSON body with the event details
WebDAV (Beta)
WebDAV allows collaborative file management and editing on web servers. WebDAV support is currently in beta — contact sales for access.