VAPID Key Generator
Generate an ECDSA P-256 VAPID keypair for Web Push notifications. It runs entirely in your browser — the private key never leaves your machine.
—Share this with the browser as the applicationServerKey.
—Keep this secret server-side only. Never ship it to the browser.
About VAPID keys
What is a VAPID key?
VAPID (Voluntary Application Server Identification) lets a push service verify who's sending a Web Push message. It's an ECDSA P-256 keypair: the public key is shared with the browser when a user subscribes (as the applicationServerKey), and the private key stays on your server to sign each push request.
Are these keys safe? Where are they generated?
They're generated entirely in your browser with the Web Crypto API. Nothing is sent to LitePush or any server — the private key never leaves your machine. Refresh the page and they're gone, so copy them somewhere safe.
How do I use them?
Put the public key in your front-end where you call pushManager.subscribe({ applicationServerKey }), and keep the private key on your server to sign push requests (e.g. with the web-push library). Never expose the private key in client-side code.
Don't want to manage VAPID keys yourself?
LitePush generates and manages a VAPID keypair for every project automatically — so you can skip this step and ship browser notifications with one script tag.