So you’re saying whatever first app you use to get on Nostr could/should become your signer for other apps?
Discussion
Yes. Primal, Amethyst, Damus, etc. They generate your keys and sign events for you anyways. Why not add this functionality to help user experience across the ecosystem.
Obvs comes with some risks but this is a great idea
more or less risks than taking your key and pasting into various nostr websites or apps? less, right? much less.
im just thinking of ways to help with user retention and we obviously have a long way to go with authentication.
Yeah definitely less risk than pasting all over
I’m thinking through how this would work in browser though- would they make their own extension be part of the onboarding process?
Web apps just need to support bunker connection strings, which many do, but I'm sure we could make this better like nostr:npub1am3ermkr250dywukzqnaug64cred3x5jht6f3kdhfp3h0rgtjlpqecxrv7 does where it's just one tap or scanning a QR code.
The risk is entirely dependent on the client handling the keys. Could be more secure. Could be DRASTICALLY less secure... This requires trust.
Well, why I don’t like #sexist jerks so I will never willingly use #DAMUS for anything. That’s the first issue.
In an Ideal World That would be amazing… but it would provide surface for political pressure or liability.
Unless there was a way for them to allow a user supplied option or adapter/extension/addon. I am pretty ignorant on this but a open source nsec bunker what I would really want anyway.