Tinfoil’s SecureClient verifies the enclave before sending any data — same attestation flow as Tinfoil’s inference API. Every request is authenticated against the container’s attestation report and TLS certificate.
You need two values to connect:
<CONTAINER_URL> — your container’s hostname (e.g. myapp.myorg.containers.tinfoil.dev)<CONFIG_REPO> — the GitHub repo linked to your container, in org/repo format
GET requests
from tinfoil import SecureClient
client = SecureClient(
enclave="<CONTAINER_URL>",
repo="<CONFIG_REPO>",
)
# Attestation is verified automatically
response = client.get("https://<CONTAINER_URL>/<YOUR_ENDPOINT>")
print(response.status_code)
POST requests
import json
from tinfoil import SecureClient
client = SecureClient(
enclave="<CONTAINER_URL>",
repo="<CONFIG_REPO>",
)
response = client.post(
"https://<CONTAINER_URL>/<YOUR_ENDPOINT>",
headers={"Content-Type": "application/json"},
body=json.dumps({"key": "value"}).encode(),
)
print(response.status_code)
print(response.body.decode())
Using the CLI
You can also connect to your container using the Tinfoil CLI. The proxy command runs a local reverse proxy that verifies attestation and forwards requests:
tinfoil proxy \
-e <CONTAINER_URL> \
-r <CONFIG_REPO> \
-p 8080
http://localhost:8080 as if it were your container:
curl http://localhost:8080/<YOUR_ENDPOINT> \
-H "Content-Type: application/json" \
-d '{"key": "value"}'
tinfoil http:
tinfoil http post https://<CONTAINER_URL>/<YOUR_ENDPOINT> \
-e <CONTAINER_URL> \
-r <CONFIG_REPO> \
-b '{"key": "value"}'
Debug mode containers do not pass attestation. This is by design — debug enclaves trade confidentiality for inspectability.
