How to see what request data network service proxy is sending to attester.gateway.icloud.com

Hey I'm testing out a cool feature Apple announced a while ago Challenge: Private Access Tokens - Discover - Apple Developer.

In my Console App, I'm seeing networkserviceproxy sends a message

Fetched device identity certificate successfully

and subsequently

Sending request for https://attester.gateway.icloud.com/token-request?issuer=xxx


I was wondering if any of the data above is accessible by me? More specifically,

  1. What does "fetch device identity certificate" mean? What "device identity certificate" does it fetch?
  2. What request was sent to the site attester.gateway.icloud.com?


For more information, my Mac is on OS 13.6.6

Thanks in advance


Posted on May 22, 2024 3:09 PM

Reply
2 replies

May 23, 2024 12:33 PM in response to MrHoffman

Yeah I tried mitmproxy, I don't think it exposed the traffic sent to attester.gateway.icloud.com

I read the cloudflare blog it doesn't seem like it talks about how the client -> issuer communication works.

I actually read about https://www.ietf.org/archive/id/draft-private-access-tokens-01.html#name-client-to-mediator-request I was imagining the request under the hood looks similar to that. But not sure what it looks like without being able to intercept it

How to see what request data network service proxy is sending to attester.gateway.icloud.com

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.