Sandbox quickstart

Run 5 real AI calls. Get 5 signed receipts. No signup required.

The anonymous sandbox is the fastest way to see prxy.monster in action without a credit card or an account. Sandbox sessions emit signed public_demo receipts — anyone can click into them and verify the signature.

Safety first

The sandbox is for evaluation only.

• Do not paste secrets, private code, or customer data. Sandbox receipts are public_demo by design.
• The sandbox uses prxy-managed Bedrock inference. The bill is on us.
• Each session is rate-limited and call-capped (request_limit).
• Bare anon tokens never persist at rest — only anon_key_hash, ip_hash, and counters.

1. Open the sandbox

Visit prxy.monster/sandbox. The page mints a session for you on first call. You can also drive it from the API directly:

# Create an anonymous sandbox session
curl -X POST https://api.prxy.monster/v1/anon/sessions \
  -H "Content-Type: application/json" \
  -d '{}'
# → { "session_id": "...", "anon_token": "anon_...", "request_limit": 5, "expires_at": "..." }

The anon_token you get back authenticates the next 5 calls and is only valid for that session. Keep it in memory; it never appears anywhere else.

2. Make a real Bedrock call

curl -X POST https://api.prxy.monster/v1/messages \
  -H "Authorization: Bearer $ANON_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "model": "us.amazon.nova-micro-v1:0",
    "max_tokens": 200,
    "messages": [{ "role": "user", "content": "Say hi" }]
  }' -i

The response includes the standard receipt headers:

Payment-Receipt: https://receipts.prxy.monster/r/<id>
Payment-Receipt-Digest: sha-256=:<base64>:
Payment-Receipt-Kid: prxy-receipt-2026-q2

3. Click the receipt

https://receipts.prxy.monster/r/<id> shows the polished detail page with a live <VerifyBadge>. The ✓ Verified you see is real — Web Crypto Ed25519 in your browser, against the public JWKS. No prxy server claim involved.

4. List the session’s receipts

curl https://api.prxy.monster/v1/anon/sessions/<session_id>/receipts \
  -H "Authorization: Bearer $ANON_TOKEN"

Returns the receipts persisted under this session, in snake_case. Useful for stitching the sandbox into a UI.

5. Convert to a real account (optional)

If you sign up for prxy.monster while a sandbox session is active, the sign-up flow can claim those sandbox receipts onto your new account. Receipts themselves are never mutated — the linkage lives in a sidecar table (anonymous_session_receipt_claims), so the original signature stays valid forever.

What the sandbox proves

• The wire is real. The model call hits Bedrock.
• The receipt is real. Ed25519 + JCS, verifiable against the public JWKS.
• The pipeline is real. module_chain shows which modules ran.
• Privacy is real. Tenant / project / agent / IP / trace IDs are hidden on the public page; the signature still verifies.

Next

• Cloud BYOK quickstart — production setup in 5 minutes.
• Receipts — schema, visibility levels, signing details.
• POST /v1/anon/sessions — full anon-sandbox API.