would it be safe to say this is similar to keycast, but with multi-sig? or something different?
Discussion
Yes, very similar to keycast, but instead of OAuth it's headless, and uses multisig to secure keys instead of trusting a backend
it seems like multi-sig would be better here. love it. thank you.
Is there a working instance of keycast I can play with? I tried with divine, but signups are turned off. One other difference is that my understanding of KMS is that it doesn't allow users to take custody of their keys, I'm not sure if that's correct though.
what is keycast?
nostr:nprofile1qyghwumn8ghj7mn0wd68ytnhd9hx2tcpzdmhxue69uhk7enxvd5xz6tw9ec82c30qyv8wumn8ghj7mn0wd68ytngv9ekscnpdenjumnv9uq36amnwvaz7tmfdejx27r9wghxxmmjv93kcefwwdhkx6tpdshsz9thwden5te0wfjkccte9ejxzmt4wvhxjme0qqspwwwexlwgcrrnwz4zwkze8rq3ncjug8mvgsd96dxx6wzs8ccndmcxv0x8f made it a while ago and nostr:nprofile1qyghwumn8ghj7mn0wd68ytnhd9hx2tcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhszrnhwden5te0dehhxtnvdakz7qg3waehxw309ahx7um5wghxcctwvshsz9mhwden5te0wfjkccte9ehx7uewwdhkx6tpdshsqgrkcud2uwjfruweamz8ewshug5umfq38g9mkmn2u9mk6ajru2w2lg4dgdtn modified it for diVine
Uh, but what it *is* is a oauth frontend on key storage
a custodial signing api?
Yes, it's the new gold rush
We are running a version of keycast at login.divine.video. I don’t think custodial keys are something most nostr users would like to use. And I think it’s vital that any nostr app works with non-custodial keys. The goal is to make it easier to onboard users. Think of it as the bitcoin exchange that bridges to tradfi.
We generate a bunker url so you should be able to use the custodial key to access most nostr apps. And you can take your key and ask the service to delete it. Yeah you’d need to trust the keycast server operator to actually delete it and not use it. But this is the same thing users face in any service that uses traditional non-key based accounts.
Yeah, I'm working on something similar but also different. I'm skipping nip46 because bunker urls are unfamiliar, but I am using multisig to make it more secure. And I'm allowing the user to recover their key and login via email just in case they lose their backup. For the normies!