Skip to content
Switch branches/tags

Latest commit


Git stats


Failed to load latest commit information.
Latest commit message
Commit time


CI Build Nuget Package Details


Web push requires that push messages triggered from a backend be done via the Web Push Protocol and if you want to send data with your push message, you must also encrypt that data according to the Message Encryption for Web Push spec.

This package makes it easy to send messages and will also handle legacy support for browsers relying on GCM for message sending / delivery.


Installation is simple, just install via NuGet.

Install-Package WebPush

Demo Project

There is a ASP.NET MVC Core demo project located here


The common use case for this library is an application server using a GCM API key and VAPID keys.

using WebPush;

var pushEndpoint = @"";
var p256dh = @"BKK18ZjtENC4jdhAAg9OfJacySQiDVcXMamy3SKKy7FwJcI5E0DKO9v4V2Pb8NnAPN4EVdmhO............";
var auth = @"fkJatBBEl...............";

var subject = @"";
var publicKey = @"BDjASz8kkVBQJgWcD05uX3VxIs_gSHyuS023jnBoHBgUbg8zIJvTSQytR8MP4Z3-kzcGNVnM...............";
var privateKey = @"mryM-krWj_6IsIMGsd8wNFXGBxnx...............";

var subscription = new PushSubscription(pushEndpoint, p256dh, auth);
var vapidDetails = new VapidDetails(subject, publicKey, privateKey);
//var gcmAPIKey = @"[your key here]";

var webPushClient = new WebPushClient();
	await webPushClient.SendNotificationAsync(subscription, "payload", vapidDetails);
    //await webPushClient.SendNotificationAsync(subscription, "payload", gcmAPIKey);
catch (WebPushException exception)
	Console.WriteLine("Http STATUS code" + exception.StatusCode);

API Reference

SendNotificationAsync(pushSubscription, payload, vapidDetails|gcmAPIKey|options, cancellationToken)

var subscription = new PushSubscription(pushEndpoint, p256dh, auth);

var options = new Dictionary<string,object>();
options["vapidDetails"] = new VapidDetails(subject, publicKey, privateKey);
//options["gcmAPIKey"] = @"[your key here]";

var webPushClient = new WebPushClient();
	webPushClient.SendNotificationAsync(subscription, "payload", options);
catch (WebPushException exception)
	Console.WriteLine("Http STATUS code" + exception.StatusCode);

Note: SendNotificationAsync() you don't need to define a payload, and this method will work without a GCM API Key and / or VAPID keys if the push service supports it.


Push Subscription

The first argument must be an PushSubscription object containing the details for a push subscription.


The payload is optional, but if set, will be the data sent with a push message.

This must be a string

Note: In order to encrypt the payload, the pushSubscription must have a keys object with p256dh and auth values.


Options is an optional argument that if defined should be an Dictionary<string,object> containing any of the following values defined, although none of them are required.

  • gcmAPIKey can be a GCM API key to be used for this request and this request only. This overrides any API key set via setGCMAPIKey().
  • vapidDetails should be a VapidDetails object with subject, publicKey and privateKey values defined. These values should follow the VAPID Spec.
  • TTL is a value in seconds that describes how long a push message is retained by the push service (by default, four weeks).
  • headers is an object with all the extra headers you want to add to the request.


VapidDetails vapidKeys = VapidHelper.GenerateVapidKeys();

// Prints 2 URL Safe Base64 Encoded Strings
Console.WriteLine("Public {0}", vapidKeys.PublicKey);
Console.WriteLine("Private {0}", vapidKeys.PrivateKey);




Returns a VapidDetails object with PublicKey and PrivateKey values populated which are URL Safe Base64 encoded strings.

Note: You should create these keys once, store them and use them for all future messages you send.




This method expects the GCM API key that is linked to the gcm_sender_id in your web app manifest.

You can use a GCM API Key from the Google Developer Console or the Cloud Messaging tab under a Firebase Project.



GetVapidHeaders(audience, subject, publicKey, privateKey, expiration)

Uri uri = new Uri(subscription.Endpoint);
string audience = uri.Scheme + Uri.SchemeDelimiter + uri.Host;

Dictionary<string, string> vapidHeaders = VapidHelper.GetVapidHeaders(

The GetVapidHeaders() method will take in the values needed to create an Authorization and Crypto-Key header.


The GetVapidHeaders() method expects the following input:

  • audience: the origin of the push service.
  • subject: the mailto or URL for your application.
  • publicKey: the VAPID public key.
  • privateKey: the VAPID private key.


This method returns a Dictionary<string, string> intented to be headers of a web request. It will contain the following keys:

  • Authorization
  • Crypto-Key.

Browser Support

Browser Push without Payload Push with Payload VAPID Notes
Chrome ✓ v42+ ✓ v50+ ✓ v52+ In v51 and less, the `gcm_sender_id` is needed to get a push subscription.
Firefox ✓ v44+ ✓ v44+ ✓ v46+
Opera ✓ v39+ Android *

✓ v42+ Desktop
✓ v39+ Android *

✓ v42+ Desktop
✓ v42+ Desktop * The `gcm_sender_id` is needed to get a push subscription.
Edge ✓ v17+ ✓ v17+ ✓ v17+
Samsung Internet Browser ✓ v4.0.10-53+ The `gcm_sender_id` is needed to get a push subscription.


Service Worker Cookbook

The Service Worker Cookbook is full of Web Push examples.