I'd love to be able to use Amber from nostr:npub1w4uswmv6lu9yel005l3qgheysmr7tk9uvwluddznju3nuxalevvs2d0jr5 or the upcoming Frostr from nostr:npub1zach44xjpc4yyhx6pgse2cj2pf98838kja03dv2e8ly8lfr094vqvm5dy5 in a similar fashion to how I use authenticator apps now. When I'm on my computer and I attempt to sign into a particular application or website, I'm prompted to approve the action on my mobile device. This is my Nostr authentication dream. It's easy to use, keeps our private keys safe, and is familiar to most people.
Discussion
+1
This would be so dope
This all sounds possible to me based on what Zach has been demoing, right? We just need the push notification or the app on the mobile device to be always listening (and consuming battery) listening to your "authentication" relay or another way?
push notifications might be able to work, not sure if network comms can happen in the notification plugin process. It doesn't always trigger for us nostr:npub13v47pg9dxjq96an8jfev9znhm0k7ntwtlh9y335paj9kyjsjpznqzzl3l8
The nice thing about the frostr approach is that you can have virtually infinite customization in terms of your preferred authentication methods. But the downside is that itβs going to be awhile until we can get a quorum of clients to start adopting it
We would just need a couple major ones to adopt it and then others follow. All features will be replicated if they're good. It just needs to be stable and actually work. There would be no need to not do it if the experience was good. Again, it has to be right. Eventually everyone would use it if they want users to use their apps. Right now nothing that we have is roll your face across the keyboard easy, so we're left with applications using a wide variety of methods, because none of them are clearly a winner in this space.
The nice thing about the frostr approach is that you can have virtually infinite customization in terms of your preferred authentication methods. But the downside is that itβs going to be awhile until we can get a quorum of clients to start adopting it
Yes please, I need more Amber logins in my life.
We need an Amber alternative for our iOS friends too.
Hypothetically, which would be a better experience for you:
A) You enter you Nostr address into a client, a sign in with Google-like pop up window comes up, you enter a password/face id/fingerprint (using web authn), and done.
B) you enter your Nostr address, the app prompts you for a OTP from an Authenticator app, and done
For me personally, I'd prefer option B.
Zach, I assume you used your new Frostr to reply to these? I didn't know it was you at first. Amethyst showed it as a brand new npub. And now I see that it's you, but my original replies are now shown as replying to no one. Primal doesn't show my original replies are all. Really odd.
Hypothetically, which would be a better experience for you:
A) You enter you Nostr address into a client, a sign in with Google-like pop up window comes up, you enter a password/face id/fingerprint (using web authn), and done.
B) you enter your Nostr address, the app prompts you for a OTP from an Authenticator app, and done
Personally I like option B, if we're just specifically talking about experience.
If the application supports nip 46 you can do this already
How would I do this with nostrudel.ninja?
I understand that Amber works on mobile with Nostrudel. I want to use my laptop.
You need to copy the bunker url from amber to you computer and use that to login
Or you can use next.nostrudel.ninja and go to nostr connect -> create connection url -> create connection url
Go to amber -> permissions -> connect app and scan the qrcode
You know... I remember seeing the option but I completely forgot about it. I just tested and it actually works how I'd like it to work. Wow.
I think we need nostr:nevent1qqs96nlrcx5v2glqtugq4wvjhsdf63wrg4up6asja6z7kdu3xkzccqspz3mhxw309akx7cmpd35x7um58g6rsd3e9upzpgqgmmc409hm4xsdd74sf68a2uyf9pwel4g9mfdg8l5244t6x4jdqvzqqqqx257hxzkq so that the login can be initiated on the device that wants to log on.
The main difference between Nip-46 and the Frostr method is that Nip-46 requires you to trust a bunker with you nsec or run your own while with frostr you can only provide the bunker with a single share of t-of-n FROST signature scheme. This way if the bunker was ever comprimised, you would not get rugged.
how do shared secrets and encrypted notes/DMs work with frostr?
I think it's going to have to been handled with proxy keys that the client has full access to as I don't think that message decryption will work with frost. This may be better in the long run though as it should help prevent against metadata being linked to your main npub
Just installed Amber today! Just need for iOS now.