habanero
An experimental attempt-limiting, remote pepper provisioning protocol with a bundled Javascript implementation.
WARNING: This protocol has not been peer reviewed - use at your own risk.
Protocol
Example
let hb = require('habanero/server')
let e = Buffer.from(process.env.HABANERO_SECRET, 'ascii')
// ...
hb.get(e, commitment, P, queryCb, limitCb, (err, result) => {
if (err) return res.status(500).end()
if (result.limited) return res.status(403).end() // optional (information leak)
if (!result.pepper) return res.status(401).end()
res.status(200).json(result)
})