Nostr Web Client

I'm still kinda lost on nostr keys safety. I've generated them on astral.ninja and I'm using the same website to browse. Since we are not using signing devices and private keys needs to be on the computer, maybe even on the site server, I guess I don't have total control.

bekantan 3y ago

I didn’t review the code, but I would expect that keys are generated client-side and that private key doesn’t leave the browser storage

Reply to this note

Please Login to reply.

Discussion

Derek Ross 3y ago

I did not review the code either, but this is how I believe it works. Both keys are stored in local browser storage unless you use a signing extension, then only the public key is stored there.