PocketBase vs Doppler
Open-source backend in a single Go binary
vs. The secrets management platform for dev teams — sync env vars everywhere
Pricing tiers
PocketBase
Self-Hosted
MIT-licensed single binary. Run on any VPS / Docker / bare metal. No usage caps — only limited by your server.
$0 base (usage-based)
Doppler
Developer
$0. 5 users. Unlimited projects + secrets. Community support. For hobby/startups.
$0 base (usage-based)
Team
$18/user/mo. Unlimited projects, audit log, secret sharing, 14-day history.
$18/mo
Business
$36/user/mo. SSO (Google), advanced RBAC, 90-day audit + history, change requests.
$36/mo
Enterprise
Custom. SAML, SCIM, HIPAA, unlimited audit, dedicated support, SLA.
Custom
Free-tier quotas head-to-head
Comparing self-hosted on PocketBase vs developer on Doppler.
| Metric | PocketBase | Doppler |
|---|---|---|
| No overlapping quota metrics for these tiers. | ||
Features
PocketBase · 12 features
- Access Rules — Record-level access rules (filter expressions) referencing @request and @collect…
- Admin Dashboard — Built-in web UI for schema + data management.
- Auth — Email+password, OAuth2 (Google, GitHub, Facebook, Apple, Discord, Microsoft, etc…
- Backups — Built-in backup/restore with S3 upload option.
- Built-in Mailer — SMTP integration for verification, password reset, magic link emails.
- Collections — Schema-defined record types with fields, validations, and record/admin/auth acce…
- Embedded JS Engine — JavaScript VM (goja) lets you write hooks in JS without recompiling.
- Extend as Go Library — Embed PocketBase in a larger Go app, add custom routes and events.
- File Storage — Local filesystem or S3-compatible storage with access rules.
- Hooks — Server-side Go or JavaScript hooks that run on CRUD events (OnRecordBeforeCreate…
- Migrations — JS/Go migration scripts applied on startup.
- Realtime Subscriptions — SSE-based subscriptions to collection changes.
Doppler · 15 features
- Audit Log — Who accessed what, when.
- Auto Rotation — Rotate cloud/API keys.
- Branch Configs — dev/staging/prod as branches.
- Change Requests — PR approvals for prod changes.
- Doppler CLI — Command-line access.
- E2E Encryption — Client-side encryption.
- Local Dev Injection — `doppler run` injects env vars.
- OIDC (CI/CD) — Short-lived tokens for GitHub Actions, etc.
- RBAC — Granular project + config roles.
- SCIM — User provisioning.
- Secret History — Full version history + restore.
- Secret References — Point to secrets from other projects.
- Secrets Sync — Auto-sync to 100+ destinations.
- SSO (Google, SAML) — Enterprise auth.
- Webhooks — Secret-change events.
Developer interfaces
| Kind | PocketBase | Doppler |
|---|---|---|
| CLI | — | doppler CLI |
| SDK | Go API (extend as library), pocketbase (Dart), pocketbase (JS SDK) | @dopplerhq/node-sdk, doppler-sdk (Python) |
| REST | REST API | Doppler REST API |
| MCP | — | Doppler MCP |
| OTHER | Admin Dashboard, Realtime SSE | Doppler Dashboard, Doppler Webhooks, GitHub Actions OIDC |
Staxly is an independent catalog of developer platforms. Some links to PocketBase and Doppler may be affiliate links — Staxly may earn a commission if you sign up through them, at no extra cost to you. Pricing is verified against vendor pages at publication time — reconfirm before buying.
Want this comparison in your AI agent's context? Install the free Staxly MCP server.