Fetch from issuer URL

Fetch and validate directory issuer response. Issuer directory URL SHOULD ends with "/.well-known/private-token-issuer-directory", even though this is not enforced in this interface.

Submit

Validate public key

Given a Privacy Pass issuer encoded public key, checks if it can be imported in your browser. This only supports type 2 key at the moment, encoded as in the spec.

-- token type -- 0x0001 0x0002 0xda7a Submit

Create challenge

Create a challenge based on the provided issuer keys.

-- token type -- 0x0001 0x0002 0xda7a
-- token type -- 0x0001 0x0002 0xda7a
-- token type -- 0x0001 0x0002 0xda7a Submit

Inspect challenge

If you inspect HTTP request in your network tab, and want to copy/paste WWW-Authenticate header to understand what's inside.

Submit

Trigger origin challenge

Request the local server to trigger a Privacy pass challenge with the provided WWW-Authenticate header. Behaviour is going to change depending on your platform implementation.

Submit

Send Token Request

Send a token request directly to the issuer. This only works if the agent you are on is able to reach the issuer.

Submit

Inspect token

If you inspect HTTP request in your network tab, and want to copy/paste Authorization header to understand what's inside.

Submit

Verify token

Check that your token is valid against the issuer public key, for the challenge you received.

Submit