I am a huge fan of my ux flow on Primal with nos2x and alby. This probably isnt for everyone, but I like feeling in control at each stage of things, and this accomplishes that.

nos2x handles the authentication, so when I open my primal shortcut, at first nos2x popped up and asked if I wanted to allow primal to use my public key. I was able to allow this forever, so now Im not prompted in my primary desktop browser.

I can view my main feed, but if I want to interact with a note, nos2x pops up to ask if I want it to sign that particular even type with my private key. It never hands my private key to Primal.

I've allowed a few specific event types to always sign, but special things like zaps...

if I zap a post, I get the signing notification from nos2x, which I allow one time, very intentionally, because I dont want anything able to auto-zap without my explicit permission. then Alby pops up and has me confirm the amount - which I also like, because my default amount is pretty low, and if I decide ro zap more, I just cancel it there and zap again with a larger amount.

This works like a double approval on anything that involves money, and at least a single approval on anything posted.

Sure, there are things I wish Primal did, and actually Snort works the same way, so I go to Snort sometimes if I want to do something Primal cant do. And the same approval and two-stage approval happens there too.

I'm hoping eventually nsecbunker will make this somewhat similar on my other devices, phone, laptop, whatever. but this is a great start.