Create a Privacy Pass

Issues a Privacy Pass token by blind-signing a client-provided blinded token (Blind RSA, RFC 9578). The returned blind signature is unblinded client-side to produce a Privacy Pass token that can later be redeemed anonymously (for example, when generating a Relay claim).

Authentication

AuthorizationBearer

Bearer authentication of the form Bearer <token>, where token is your auth token.

Request

This endpoint expects an object.

blinded-tokenstringRequired

The base64url-encoded blinded token to be signed. Produced client-side by blinding a token input with the issuer public key identified by key-id.

key-idstringRequired

The hex-encoded identifier of the issuer signing key to use. Must match the key the blinded-token was blinded against.

Response

Returns the blind signature for the submitted blinded token.

blind-sigstring

The base64url-encoded blind signature. Unblind this client-side to produce the Privacy Pass token.

Errors

400

Bad Request Error

401

Unauthorized Error

403

Forbidden Error

404

Not Found Error

409

Conflict Error

422

Unprocessable Entity Error

429

Too Many Requests Error

$	curl -X POST https://api.withpersona.com/api/v1/privacy-passes \
>	-H "Authorization: Bearer <token>" \
>	-H "Content-Type: application/json" \
>	-d '{
>	"blinded-token": "5rT2pX9qLkV0nW3bYc7dZ1aF8gH4jK6mN2pQ5rS8tU",
>	"key-id": "a3c5f8e2d1b4079c6e5a2f8b1d3c4e5f6a7b8c9d0e1f2a3b4c5d6e7f8091a2b3c"
>	}'

Authentication

Headers

Request

Response

Errors