PABLOF7z (nprofile…vcxr) what is your opinion of using OAuth instead of tokens to integrate with nsecbunker? I think this would be a much more familiar flow, and would allow clients to introduce users to the pattern rather them having to discover it themselves. The key store could also double as a nip 05 provider. So:
- The user clicks "sign in with nostr address" and enters an address (or clicks sign up)
- The client redirects using OAuth to the domain name in the nostr address
- The nip05 provider asks the user to sign up/log in, asks the user to approve scopes, etc, and redirects the user to the original app
- If the app needs further permissions they can redirect the user again to the provider so the user doesn't have to be checking the bunker all the time
Karnage (nprofile…dq49) The: Daniel⚡️ (nprofile…ds64) dtonon (nprofile…6cgs)
hodlbod /
npub1jl…jynqn
2023-09-15 17:13:41
Author Public Key
npub1jlrs53pkdfjnts29kveljul2sm0actt6n8dxrrzqcersttvcuv3qdjynqnPublished at
2023-09-15 17:13:41Event JSON
{
"id": "ae68d50f5c9987c461718c5f416c1f69b268e268957ce8cbf60e1afcc7810380",
"pubkey": "97c70a44366a6535c145b333f973ea86dfdc2d7a99da618c40c64705ad98e322",
"created_at": 1694798021,
"kind": 1,
"tags": [
[
"p",
"fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52",
"wss://relay.damus.io",
"PABLOF7z"
],
[
"p",
"1bc70a0148b3f316da33fe3c89f23e3e71ac4ff998027ec712b905cd24f6a411",
"wss://relay.damus.io",
"Karnage"
],
[
"p",
"ee6ea13ab9fe5c4a68eaf9b1a34fe014a66b40117c50ee2a614f4cda959b6e74",
"wss://relay.damus.io",
"Maybe: Daniel ⚡️"
],
[
"p",
"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805",
"wss://relay.damus.io",
"daniele"
]
],
"content": "nostr:nprofile1qqs04xzt6ldm9qhs0ctw0t58kf4z57umjzmjg6jywu0seadwtqqc75spp4mhxue69uhkummn9ekx7mqpz3mhxue69uhhyetvv9ujuerpd46hxtnfduq3qamnwvaz7tmwdaehgu3wwa5kueg6cvcxr what is your opinion of using OAuth instead of tokens to integrate with nsecbunker? I think this would be a much more familiar flow, and would allow clients to introduce users to the pattern rather them having to discover it themselves. The key store could also double as a nip 05 provider. So:\n\n- The user clicks \"sign in with nostr address\" and enters an address (or clicks sign up)\n- The client redirects using OAuth to the domain name in the nostr address\n- The nip05 provider asks the user to sign up/log in, asks the user to approve scopes, etc, and redirects the user to the original app\n- If the app needs further permissions they can redirect the user again to the provider so the user doesn't have to be checking the bunker all the time\n\nnostr:nprofile1qqsph3c2q9yt8uckmgelu0yf7glruudvfluesqn7cuftjpwdynm2gygpzpmhxue69uhkummnw3ezuamfdejsz9rhwden5te0wfjkccte9ejxzmt4wvhxjmcpzemhxue69uhhyetvv9ujumn0wd68ytnzv9hxgg6dq49 nostr:nprofile1qqswum4p82uluhz2dr40nvdrflspffntgqghc58w9fs57nx6jkdkuaqppamhxue69uhk2tnwdaejumr0dsq3samnwvaz7tmjv4kxz7fwdehhxamgv4ex2tnrdaksz9nhwden5te0wfjkccte9ec8y6tdv9kzumn9wscgds64 nostr:nprofile1qqs8hhhhhc3dmrje73squpz255ape7t448w86f7ltqemca7m0p99spgpzemhxue69uhky6t5vdhkjmn9wgh8xmmrd9skcqg4waehxw309ajkgetw9ehx7um5wghxcctwvsq3wamnwvaz7tm2d9nkw7t5dakjuerydeejumn9wsd76cgs",
"sig": "cf77a99d98a594ae515398270654fb5dff718289a6ae447e08bf0f088e4d9ebcd09ac308446d4bd77427098107d43afd80a4737cf38cb839e072146d9ca75f31"
}