How to Create a File Sharing Link in 2026 (Every Method That Works)

TL;DR: To create a file sharing link in 2026, you have three real choices: (1) a dedicated file-share service like Uploadex / WeTransfer / Smash — upload, get link, paste link wherever; this is the cleanest workflow for one-off sends. (2) Cloud storage like Google Drive / Dropbox / OneDrive — right-click the file → Share → "Anyone with the link"; good if you and the recipient are in the same ecosystem. (3) Self-hosted via rclone + Cloudflare R2, or a Nextcloud instance — full control, technical setup. For 95% of cases, option 1 is the cleanest — especially if you need password protection, link expiration, or download caps, none of which Google Drive / Dropbox give you on consumer plans.

I share files via link about a dozen times a day — design files to clients, screenshots to support tickets, datasets to collaborators, backups to my own remote storage. Each of those uses a different tool, picked for the threat model and the recipient's tech level.

Here's the honest version: "how to create a file sharing link" isn't one workflow, it's three. Picking the wrong tool for the wrong job is why people end up emailing 50 MB attachments that bounce, or asking clients to "request access" to a Google Drive link for the fifth time.

This guide walks through every method that works in May 2026, ranked by use case, with the security controls each one supports.

Quick Answer: Three Ways to Create a File Sharing Link

In order of cleanest to most niche:

1. Dedicated file-share service (Uploadex, WeTransfer, Smash, SwissTransfer). Upload → get link → done. Supports password protection, expiry, download caps on most. Free tiers cover most everyday use. → For most use cases this is the right answer.
2. Cloud storage share link (Google Drive, Dropbox, OneDrive, iCloud). Best if the file is already in your cloud storage and you and the recipient are in the same ecosystem. Less security control on free / consumer plans.
3. Self-hosted (rclone + S3 / Cloudflare R2, Nextcloud, ProjectSend). For developers who want full control over storage, expiry, and access logging. Setup overhead.

Below, each method with the actual steps.

Method 1: Create a Share Link With a Dedicated File-Share Service

This is what I default to. The tools are purpose-built for "create a link, send it, forget about it."

How to do it (Uploadex example)

1. Go to uploadex.net (disclosure: I write for them).
2. Drag your file onto the upload area, or click Choose file.
3. Wait for upload to complete — large files use parallel chunks so it's fast.
4. Set the security controls before generating the link: - Password (recommended for anything sensitive) - Link expiration (1 hour to 30 days, or never) - Download cap (default 1 for single-recipient sends) - Custom slug (if you want /f/contract-abc-2026 instead of a random ID)
5. Click Generate link — copy.
6. Paste the link wherever — email body, Slack, SMS, anywhere.
7. Send the password through a different channel than the link itself.

Other services that work the same way

For a full ranked comparison with pricing and trade-offs, see 9 Best WeTransfer Alternatives.

When this method wins

• You're sending a one-off file, not maintaining a mounted folder
• You want password protection / expiry / download cap on the link
• The recipient shouldn't need a Google / Microsoft / Dropbox account to download
• You don't want the file sitting in your cloud storage forever after the send

When it doesn't

• You're collaborating long-term on a folder of files (use cloud storage instead)
• You need the file accessible from multiple devices like a mounted drive
• Your file is over 20 GB (some services cap at 2–5 GB; pick one with no limit like Smash)

Method 2: Create a Share Link From Cloud Storage

If the file is already in your Google Drive / Dropbox / OneDrive, you can generate a share link without uploading anywhere else.

Google Drive

1. Right-click the file in Drive (or click the share icon).
2. Click Get link at the bottom.
3. Change Restricted to Anyone with the link (otherwise the recipient hits the request-access loop).
4. Set viewer / commenter / editor permission.
5. Click Copy link.

Caveats: - No password protection on consumer / personal plans - No link expiration on consumer / personal plans (Workspace Business+ adds it) - No download cap - "Anyone with the link" means anyone — if the link leaks, anyone has the file forever - Free Google account has a 15 GB total storage cap; uploading a 5 GB file fills 33% of it

Dropbox

1. Hover over the file in Dropbox web → click Share.
2. Click Create link or Copy link.
3. On Plus/Family/Pro plans, set link permissions: download / view-only, password, expiry.
4. On free Basic, you get a link with no security controls.

Caveats: - Password + expiry are paid features (Plus and above) - Free tier only 2 GB total storage

OneDrive

1. Right-click the file → Share.
2. Toggle "Anyone with the link can edit" to view-only if you don't want editing.
3. Apply → Copy link.
4. On Microsoft 365 Personal+, set password and expiration in the share dialog.

Caveats: - Password protection requires Microsoft 365 Personal or Family ($6.99–9.99/month) - Free tier only 5 GB storage

iCloud (iCloud Drive)

1. Open Files app on iPhone / Mac.
2. Long-press file → Share → Copy Link.
3. Anyone with the link can view in browser.

Caveats: - No password, no expiry, no download cap on any plan - Only useful if recipient is on an Apple device or willing to use the web viewer

When this method wins

• The file is already in your cloud storage
• You and the recipient are both heavy users of the same ecosystem
• Long-term collaborative access matters more than security controls

When it doesn't

• You need password protection, expiry, or download cap (consumer cloud storage doesn't give you these)
• The recipient isn't in your ecosystem (Drive permissions become friction)
• You don't want the file sitting in your storage long-term

For a deeper look at the cloud-storage alternatives, see 8 Best Google Drive Alternatives and the encrypted cloud storage explainer.

Method 3: Self-Hosted Share Links (Technical Users)

For developers who want full control — over expiry, access logging, custom domains, and no third-party storage — self-hosting is the answer. Three real options:

Option A: rclone + Cloudflare R2 (or any S3-compatible storage)

# Install
brew install rclone               # macOS
sudo apt install rclone           # Linux

# Configure R2 (free tier: 10 GB storage)
rclone config                     # interactive setup

# Upload a file
rclone copy ./bigfile.zip r2:my-bucket

# Generate a signed URL valid for 24 hours
rclone link r2:my-bucket/bigfile.zip --expire 24h

The output URL is unguessable, expires automatically, and can be revoked by deleting the file from the bucket.

Option B: Nextcloud

Nextcloud is a full self-hosted cloud-storage suite — Drive replacement with share links, expiry, password protection, and audit logs. Run it on a $10/month VPS or a home server.

Once installed, share links work like Drive's but with stronger controls: password mandatory for external links, expiry configurable, download counters built in, end-to-end encryption available via the E2EE app.

Option C: ProjectSend

ProjectSend is purpose-built for client-deliverable file sharing — upload files, generate per-client links, email notifications when downloaded. Open source, simple, no Nextcloud's full kitchen-sink complexity.

When self-hosted wins

• You want full data ownership (no third-party seeing your files)
• You need custom domain branding (share.yourbrand.com)
• You need long-term audit logs
• You're already running a server

When it doesn't

• You're not technical — DevOps overhead is real
• You're not running a server full-time
• You need to share once and forget — overkill setup

For more on self-hosted file sharing options, see self-hosted file sharing reviewed.

What Makes a Good File Sharing Link?

If you take nothing else from this guide, take this. A file sharing link is more than just a URL — the controls around it determine whether your file is safe.

Five controls to look for

1. Password protection. A password on the link itself, communicated through a different channel (text, separate email, voice call). Defeats forwarded-link attacks.

2. Link expiration. The link self-destructs after a set time — 24 hours, 7 days, 30 days. Smaller window = smaller attack surface.

3. Download cap. The link stops working after N downloads. For one-to-one sends, set cap = 1.

4. Revocation. You can kill the link from your dashboard, immediately, without deleting the file. Useful when you realize you sent to the wrong address.

5. Per-link analytics. Who downloaded, when, from what country. Helps you spot suspicious access.

Consumer Google Drive / Dropbox / iCloud give you exactly zero of these on free plans. Dedicated file-share services (Uploadex, SwissTransfer, etc.) give you most or all.

For why these matter and the threat model behind each, see how to send large files securely — same controls, applied to the file-transfer use case.

Common Mistakes When Creating File Sharing Links

Three I see constantly:

1. Sending the password in the same email as the link. Defeats the purpose. If the email is breached or forwarded, attacker has both. Use a different channel.

2. Default-permissive sharing. "Anyone with the link" on a Google Drive file → the link gets forwarded → company info goes public. Use restricted sharing or dedicated services with password + cap.

3. Forgetting to set expiry. A file shared in 2022 with "no expiration" is still accessible in 2026. Half the data leaks I see in security forums are five-year-old share links that someone forgot to kill.

FAQ: Creating File Sharing Links

How do I create a file sharing link?

Three ways: (1) use a dedicated service like Uploadex / WeTransfer / Smash — upload, click "generate link," copy, send. (2) Use cloud storage like Google Drive / Dropbox / OneDrive — right-click the file → Share → set "Anyone with the link" → copy. (3) Self-host via rclone + S3 or Nextcloud. Option 1 is easiest and most secure.

How do I create a free file sharing link?

The free tiers of Uploadex (2 GB per file), Smash (unlimited file size, no account), SwissTransfer (50 GB per transfer, no account), Google Drive (15 GB total storage), and Dropbox (2 GB total) all let you create share links for free. Best free balance of file size + security: SwissTransfer or Smash.

How do I make a download link for a video?

Same as any file — upload the video to Uploadex / Smash / WeTransfer / Google Drive → generate a share link → send. Don't bother converting the video to a direct URL — services give you a download page that handles browser compatibility, mobile playback, and tracking.

Can I password-protect a file sharing link?

Yes — on Uploadex (free), Smash Pro, SwissTransfer (free), Dropbox Plus and above, OneDrive (Microsoft 365 Personal+), and Tresorit Send (free). Consumer Google Drive and consumer iCloud do not support password-protected links.

How long do file sharing links last?

It depends on the service: WeTransfer free — 3 days. Smash free — 14 days. SwissTransfer free — up to 30 days. Uploadex — configurable, up to never (paid plans). Google Drive / Dropbox / OneDrive — until you delete the file or revoke sharing.

How do I create a private file sharing link?

Use a service that supports password protection + download cap of 1. Examples: Uploadex (free), Tresorit Send (zero-knowledge encryption), SwissTransfer (with password). Send the password through a different channel than the link itself.

What's the safest way to share a file via link?

A service with end-to-end / zero-knowledge encryption (Tresorit Send, Proton Drive share links) where the provider cannot read the file, combined with a password sent through a different channel, a short expiration (under 24 hours if possible), and a download cap of 1. For everyday "secure enough" sharing without zero-knowledge, Uploadex with the same controls is the practical balance.

Can I make a Google Drive link without giving access to everyone?

Yes — instead of "Anyone with the link," choose Restricted and add specific recipient emails. They'll be prompted to sign in to a matching Google account to access. For non-Google recipients, this loop is friction-heavy; a dedicated file-share service with password protection is usually a better UX.

Summing Up!

Creating a file sharing link in 2026 isn't a single workflow — it's a choice between:

1. Dedicated file-share (Uploadex, etc.) — for one-off sends with security controls
2. Cloud storage (Drive, Dropbox, OneDrive) — for collaboration in an ecosystem
3. Self-hosted (rclone, Nextcloud) — for full control

For 95% of cases, option 1 is the cleanest — especially if you need password protection, link expiry, or download caps, which consumer cloud storage doesn't offer.

Whichever route you pick, the five controls to verify are: password + expiry + download cap + revocation + analytics. If your chosen tool is missing any of those, ask whether you'd be comfortable with the file forwarded, archived forever, and downloaded by an unknown party — because that's the failure mode you're accepting.

For the full secure-transfer workflow, see how to send large files securely and the Gmail-specific guide. For service comparisons, 9 Best WeTransfer Alternatives and 8 Best Google Drive Alternatives.

Sources: 
- Google Drive sharing documentation 
- Dropbox sharing documentation 
- Microsoft OneDrive sharing 
- Cloudflare R2 documentation