1. Web
  2. HTTP
  3. Reference
  4. Headers
  5. Sec-Redemption-Record

Sec-Redemption-Record header

The HTTP Sec-Redemption-Record Fetch Metadata Request Header is used by the Private State Token API when forwarding redemption records. The header contains a list of issuer and redemption record pairs corresponding to each redemption record.

Note that a developer wouldn't be expected to generate Sec-Redemption-Record request headers — these are created automatically by the browser when invoking private state token send-redemption-record fetch requests.

Header type Fetch Metadata Request Header
Forbidden request header Yes (Sec- prefix)
CORS-safelisted request header No

Syntax

http
Sec-Redemption-Record: <string>

Servers should ignore this header if it contains any other value.

Directives

<string>

A string containing issuer and redemption record pairs.

Examples

http
Sec-Redemption-Record: "https://redeemer.example";redemption-record="eyJwdWJsaWNfbWV0YWR...

Specifications

Specification
Private State Token API
# sec-redemption-record

Browser compatibility

See also

Help improve MDN

Learn how to contribute

This page was last modified on by MDN contributors.

View this page on GitHubReport a problem with this content