add configuration to remove `key` from url

[dillonstreator]

Add a web client configuration option for not including the decryption key in the URL and instead displaying it as a separate string. Ensure the read-side is able to handle both cases where the key is in the URL and when it is not. If the key is not in the URL, prompt the user to input the key.

Having the key in the URL is a nice QOL improvement as it removes one input but is slightly less secure as the web server can see the decryption key (though it is ignored).

Take inspiration from https://yopass.se/