For apps, Is there a way to use a key signer extension such as Nostore instead of directly inputting a private key?
Don’t understand enough about apps to know if safe to enter my privkey, just know I don’t want to do so in a browser
Discussion
Anyone have an answer to this?
Thanks in advance!
#[0]
I’ve stayed away from web clients for this reason. I sign in with my npub just to get used to using the different clients and to see what they are all about.
Yesterday, I used nstore with safari on my phone as people I trust on here, with more technical knowledge than me, we’re recommending it.
People also recommend getalby and nos2x.
Yes, just wondering whether there is a way to use an extension with an app. Been on Damus since test flight (still here 99% of the time), but wanna check out Iris app and maybe Current, hoping there’s a way to use a key extension signer to do so?
Oh, sorry I thought you meant web client. This is a good question, which I am not sure of. I have TestFlight of Nostur, and didn’t want to enter my nsec either.
In order to sign a message the private key is going to have to be in the memory of *something*. Eventually we’ll be able to delegate keys out from a master key which will be revocable in some way which will make it a little less of a disaster if it gets exposed.
So for now when signing into an app, one cannot use an extension because the app cannot connect to the extension that is holding the key right?
Right. If we are talking mobile I don’t think it’s really possible in a usable way yet. Delegated keys with the “master” kept in a hardware signing device will probably be the way I want to use nostr when it’s possible.