hub · playground
Send anything. Inspect everything.
Pick an endpoint, tune the parameters, hit send. The raw response comes back here — status, headers, body, timing.
Create a custom endpoint pair
Do not paste production schemas. catastrophic.io stores the schema for up to 10 minutes for endpoint generation.
Request body
—
Response
Select an endpoint above to begin.
| name | value |
|---|---|
| no response yet | |
- total
- —
- ttfb
- —
- dns
- —
- tcp
- —
- tls
- —
- bytes received
- —
- transfer size
- —
—
headers
—
body
—
headers
—
body
—
Known limits
/redirect-chaindoesn't show individual hops. The Fetch API doesn't expose intermediateLocationheaders; you'll seeresponse.redirected = trueand the final URL only. For a full hop trace, usecurl -v./dripbuffers the entire body before display rather than streaming it. The final bytes are correct, but you can't watch the chunks arrive. For a real streaming view, usecurl --no-bufferor read the response withresponse.body.getReader()in your own code./cors-brokenfrom this same-origin context bypasses the browser's CORS enforcement. The response comes through; the block doesn't. Send from a different origin (your own app, a JSFiddle, a local dev server on another port) to see the real failure.- Custom headers aren't editable in the form — only headers declared as parameters in the OpenAPI spec are surfaced (currently just
Authorizationon/auth-required). For ad-hoc headers, copy the curl command and edit it manually. - Deep-link URLs capture form values but not the request body. For
/echoPOST/PUT/PATCH, the path and method survive sharing, but the body is reset on load. - Non-browser clients hitting the live API (curl, PowerShell, test runners, language SDKs) may receive an edge bot-management challenge ("Just a moment…") instead of a chaos response. This is a WAF/Bot setting on the zone, not something the playground can work around. The playground itself runs in a browser so it's exempt.