Privacy Null

Redact Bearer Tokens

Safely remove Bearer tokens from HTTP headers before sharing code with AI assistants.

Runs locally. Nothing uploaded.

# HTTP Request with Bearer token
GET /api/users HTTP/1.1
Host: api.example.com
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIn0.dozjgNryP4J3jVmNHl0w5N_XgL0n3I9PlFUP0THsR8U

# cURL command
curl -H "Authorization: Bearer abc123token" https://api.example.com/data

Features

Detects "Authorization: Bearer" patterns

Works with JWT and opaque tokens

Handles cURL commands

Preserves header structure

Frequently Asked Questions

Does it work with Basic auth too?

Yes! We also detect "Authorization: Basic" headers and can redact the Base64-encoded credentials.

What about custom header names?

We detect the standard Authorization header. For custom headers like X-API-Key, enable the API Key preset for broader detection.

Redact Bearer Tokens

Features

Frequently Asked Questions

Does it work with Basic auth too?

What about custom header names?

Related Tools