These keys need to be approved in nsec.app when connecting for the first time. Connection can be revoked any time in nsec.app.
Discussion
Can this be done without having any user in nsec.app ? Like starting from scratch?
I donβt think so. You need to input the nsec you want to sign things with there. Itβs stored encrypted by a password in the browser.
# Example Oauth-like flow to create a new user account with Nsecbunker
Coming soon...π
https://nips.nostr.com/46#example-oauth-like-flow-to-create-a-new-user-account-with-nsecbunker
So basically if you have setup nsec app, apps can generate new keys to your account? But it would be new keypairs for new nostr users, right?
the clients are supposed to generate new keys any time anyone logs in using nip-46
Yes, but that is only to communicate with the signer, not to act as that user as I read it.
I found this in the mean time:
https://github.com/nostrband/nostr-login?tab=readme-ov-file
It seams like it can trigger an account creation on a bunker. This seems like a solution to try
Iβve been logging in to apps as NotBiebs using the bunker URI from my nsec.app account. Iβm actually updating my notacomment app right now to support nip-46 so I can use it with my nsec.app bunker URI.
Yeah nostr-login is great. Forgot that you can also sign up for an nsec.app account with it. I only use it to sign in.