Playing with #nostr stuff on mobile recently, I realized I kind of think everything should give to option to log in with your private key, just maybe not explicitly announced.
Discussion
Yeah, mobile isnt the best for signing in on the web. Being patient with Spring 🙂. Nostrudel does work with amber though!
Personal risk measurement should provide the choice of being fast & loose or slow & secure, especially with easy throw-away identities. Not that it should be encouraged or even highlighted in a "this is not safe" way... but available (like an unlabeled box maybe or hidden under a tiny boring button?) There's a lot of cool stuff people can't try anymore without a bunch of extra steps. It's like accidental lock-in.
I do miss using Spring but I'm kind of glad it's down because I've had this realization. 😅
Feel like that would make a nice feature for a signer - what is the kind you are using and what are its implications? A good practice of developers to add a little description of what they are doing and why as opposed to just the technical information like the raw json.
Kind of how it's good practice to use relay hints in your events - to show where they are at minimum being broadcasted to. The web itself also has accessability features to help aid browsing - including extra metadata in the website to help the reader understand what the image is of if they can't acthally see it.
Well, my assumption here is that most will try nostr first through social type clients, a lot on mobile. All of them that I have tried from cold start automatically sign you in upon key generation, so you start out compromised well before you know you should/could be using a signer anyway. The stuff that makes nostr sticky isn't the social (on the human level i currently believe the opposite but as far as "cool new tech stuff" goes lol) but you can't currently try out much other stuff. Aside from providing for space to experiment, the only other way I can see is if apps were to default to not signing the user in automatically and adding an offer to take you to an extension... which is putting the cart before the horse for the moment too. It just seems ashame that everyone that tries nostr through mobile right now are hamstrung on experiencing the ecosystem even though those keys are likely already unprotected.