Replying to Avatar HoloKat

What if instead of only allow people to use a private key for login / registration, we had a Sign Up / sign in with Google and upon doing that, a key pair is generated for you and emailed to address. You would still have a nostr npub / nsec, but it would automatically back up for you. The user recognizes the social login, and it’s easier to populate information from that option. It would be like a hybrid mode where you keep the old sign up process but on the front end it’s all nostr. Perhaps then you could use that connection to integrate with other traditional services, perhaps with a database attached. So it would be like nostr, but with a benefit of a light database for some efficiency and integrations with minimal info collected.

Dumb idea? Defeats the entire purpose? Thoughts?
Avatar
JohnyDoor 2y ago

why send nsec tho? Just store it and sign messages on user's behalf. Pls don't give nsecs to people, who don't even know what nsec is and why it shouldn't be leaked.

Reply to this note

Please Login to reply.

Discussion

Avatar
JohnyDoor 2y ago

I guess it can be easily implemented with nsecBunker

Avatar
HoloKat 2y ago

Yeah good point. But the issue is that a person has to sign up with nsec bunker too. Essentially doubling the signup process. It’s too big a UX hurdle for mass adoption imo. But, meta mask kinda works similar and that hasn’t stopped people from using it and everything it connects to — but then again those are “crypto “ people and not average users.

I’m just thinking about ways to expand reach safely while potentially offering some minor compromises to people who are ok with them.

7b
Lucky Kite 2y ago

People (almost everyone) already use password managers. Asking users to store their nsec in a password manager isn't that out of the norm for normies . Its just a password. People are used to those. I store mine nsec in Bitwarden. nos2x is a set and forget solution that works well but for new users its should be a little more obvious what it is - a password manager for nostr. It needs an easy name. We need to call nsec nostr-passwords. Simplechangein language helps.