Replying to Avatar ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ

oshit it needs to be slightly modified too

the URL check needs to be loosened to a prefix if expiration is present also, and http method isn't needed either
Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 9mo ago

this is now available, token generator tool generates and signs an expiration auth event and i can now do privileged stuff including publishing events using the openapi documentation interface on #realy

and the JWT junk is gone, i'm sure fiatjaf will be amused except i don't give a fig about his opinion

it should be trivial now to generate tokens, and then an ebook reader type thing with some mechanism to input the token into an app and voila, no problem if the browser is too dumb to be able to sign the event as per normal nip-98 flow

Reply to this note

Please Login to reply.

Discussion

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 9mo ago

the point is more about enabling me to use auth protected endpoints on the http api with the scalar docs, than anything else though... now i can publish events and trigger other things to happen like restarting the relay, regenerating event indexes, and if i want to i can now use curl or whatever else too, any other language, don't need to import the stupid websocket nostr library anymore just to be able to pull events and examine them (just a json codec, really), all bog standard HTTP