nsecbunker with granular permissions and policies 😱 this is what we wanted with NIP-26 Delegation.
working on getting nsecbunker to create one-time-use tokens
you'll enter the generated token on a client and have a policy automatically apply to it the permissions the administrator has granted
here, a policy that just allows using DMs, but can't do anything else:
https://nostr.build/av/1acd661c0a267f3c859ce2cf1e9deadc1a4f5c2479f362d44a315df01d688dea.mov
Discussion
Exactly, but this model permits a level of granularity (and full-guarantee revocation!) that NIP-26 could never ever dream of allowing.
I am now doing single use tokens; copy a single code (or scan a QR code) and an entire preset policy is set for that application! 🙌
Do clients have to specifically add support for this though, just like NIP-26? That seemed to be a pain point for that NIP, getting support for it. If that's needed for nsecbunker, hopefully since it's much more powerful, we'll see wider support across the ecosystem.
No; that’s the beauty of it. No one has to support it (other than the application users want to use) no relay needs to change, no client needs to change.
I’ve been using it for over a month and no one had to do anything.
No one can even tell that I’m using it to write this very note! 😂
