Real cryptographic verification for Web Bot Authentication using RFC 9421 HTTP Message Signatures
Cryptographically secure signature verification using modern elliptic curve cryptography
Fetches public keys from JWKS endpoints with caching
Implementation of HTTP Message Signatures specification
Click "Verify Request" to start verification...
This page demonstrates Web Bot Authentication verification using HTTP Message Signatures (RFC 9421).
The verification endpoint expects Signature, Signature-Agent, and Signature-Input headers
and verifies cryptographic signatures using the Ed25519 algorithm.
Since browser requests don't include these headers, you'll see an error response by default.