Nostr Web Client

Replying to

Dan Gould

I was imagining the authentication to part prevents a zaptunnel relay from stealing, not for privacy

Carman 2y ago

The zap tunnel can always just give it's own invoices if it wants to steal. You can't really prevent that

Reply to this note

Please Login to reply.

Discussion

Dan Gould 2y ago

couldn’t that be prevented with a MAC from the destination on the invoice?

Carman 2y ago

Lnurl doesn't really support anything like that

Dan Gould 2y ago

Looks like LUD 12 allows a comment where one could put a MAC associated with an invoice & nsec-derived key. nostr client could verify with the mac that the invoice came from a particular npub