{"id":15715408,"url":"https://github.com/cloudflare/privacypass-origin","last_synced_at":"2025-10-06T00:27:43.610Z","repository":{"id":215478671,"uuid":"707693545","full_name":"cloudflare/privacypass-origin","owner":"cloudflare","description":"A TypeScript Origin for the Privacy Pass Authentication Protocol","archived":false,"fork":false,"pushed_at":"2025-05-15T18:16:46.000Z","size":335,"stargazers_count":7,"open_issues_count":3,"forks_count":2,"subscribers_count":10,"default_branch":"main","last_synced_at":"2025-05-15T19:28:37.732Z","etag":null,"topics":["authentication","cryptography","privacy-pass","token","typescript"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cloudflare.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2023-10-20T13:00:47.000Z","updated_at":"2025-05-15T18:16:43.000Z","dependencies_parsed_at":"2024-06-19T03:45:01.618Z","dependency_job_id":"f2e04e7d-c815-44a2-9b83-961659ad38d1","html_url":"https://github.com/cloudflare/privacypass-origin","commit_stats":null,"previous_names":["cloudflare/pp-origin"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/cloudflare/privacypass-origin","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudflare%2Fprivacypass-origin","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudflare%2Fprivacypass-origin/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudflare%2Fprivacypass-origin/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudflare%2Fprivacypass-origin/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cloudflare","download_url":"https://codeload.github.com/cloudflare/privacypass-origin/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cloudflare%2Fprivacypass-origin/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":260281567,"owners_count":22985626,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["authentication","cryptography","privacy-pass","token","typescript"],"created_at":"2024-10-03T21:41:27.058Z","updated_at":"2025-10-06T00:27:38.579Z","avatar_url":"https://github.com/cloudflare.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# privacypass-origin\n\nThis Worker implements the [challenge](https://ietf-wg-privacypass.github.io/base-drafts/draft-ietf-privacypass-auth-scheme.html#name-token-challenge) and [redemption](https://ietf-wg-privacypass.github.io/base-drafts/draft-ietf-privacypass-auth-scheme.html#name-token-redemption) protocols in Privacy Pass. A live demonstration of this worker can be found [here](https://demo-pat.research.cloudflare.com/login). \n\n## Overview\n\nThe test server has two HTTP endpoints:\n\n- `GET /login`: This API will return a static HTML page representing the application, which is a simple (and non-functional) login form. It also returns a `WWW-Authenticate: PrivateToken` challenge as defined by [Privacy Pass authentication](https://datatracker.ietf.org/doc/draft-ietf-privacypass-auth-scheme/).\n- `GET /login (+Authorization: PrivateToken)`: This API is used by the application for performing a \"login\" request. Clients will interact with this API upon submitting the login form details. \n    - If the login request contains a Privacy Pass token, the token is validated before accepting the request.\n    - If not, it's the request above.\n\nWhen verifying Privacy Pass tokens, the server will first fetch the token verification key from the issuer (as identified by `ISSUER_NAME`).\n\nThat's it!\n\n## Configuration\n\nTo deploy and interact with this test server, you need to configure the following Cloudflare Worker variables:\n\n- ISSUER_NAME: This is the name of the Privacy Pass issuer server that the origin trusts for issuing tokens. This is a public variable.\n\n## Dependencies\n\nThe test server uses existing APIs for creating Privacy Pass token challenges and verifying the resulting tokens. For example, when verifying a token, one can use [standard WebCrypto APIs](https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/verify) for verifying the Token signature against the Issuer's public key.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudflare%2Fprivacypass-origin","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcloudflare%2Fprivacypass-origin","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcloudflare%2Fprivacypass-origin/lists"}