With private you mean personal? Afaik mints doesn't have any kind of announcement mechanism so you can create your one with the existing mints solution that exist and share it just with your people. No other one will known the mint url
Discussion
That works for setting it up, but as soon as they send a cashu token the mint URL will be spread :(
so it should travel only inside encrypted direct messages then
Yes, that's true. The solution can feel quite complicated, particularly when it comes to whitelisting or blacklisting users, which is impossible due to the nature of blind signatures and e-cash. However, perhaps the solution lies in a similar direction: a middleware that utilizes blindly emmited certificates to authenticate interactions with the mint. These certificates would be issued as blind-signed notes by the mint, functioning as bearer tokens to authenticate interactions with the mint. Does this make sense, or is it a bit convoluted?
Perhaps the certificates could have an expiration time, allowing them to be used multiple times. In this scenario, the user would simply need to renew them within a defined period of time.