Ifyou're already here you've figured it out. We should ask how we can get people who don't want to figure it out here.
Discussion
How do you manage yours? I really don't know what others do. I'm not sure what the standard practice is.
But maybe when clients provide people an nsec, they should make a practical suggestion rather than only saying "don't share your nsec with anyone else." Maybe they should add something like, "One popular way to save and protect your secret key is to use a trusted password manager, such as...."
But then I dont know how many normal people are familiar with password managers. I only started using them during COVID when I become privacy conscious.
I don't have easy answers. I'm still working on getting people to ditch SMS messages for FOSS encrypted messengers.
When people don't care about commonsense privacy, they don't care to make any extra effort regarding messengers, emails, crypto, or social media. They're products of the system.
Check out something like nostr:npub1am3ermkr250dywukzqnaug64cred3x5jht6f3kdhfp3h0rgtjlpqecxrv7 where you don't ever have to expose your nsec to clients to authorise usage.
nos2x extension from nostr:npub180cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsyjh6w6 for desktops, as another example.