Replying to Avatar ryan

What is the most efficient way to manage read access permissions on a relay? nostr:npub180cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsyjh6w6

Avatar
ManiMe 1y ago

AFAIK, this is done by sending a NIP-42 ephemeral event. Regular HTTP auth DOES NOT WORK over nostr, because there is no server side to verify credentials. NIP-42 is how relays can dynamically authenticate client access.

https://github.com/nostr-protocol/nips/blob/master/42.md

Reply to this note

Please Login to reply.

Discussion

Avatar
Raymon 1y ago

Can use mTLS and make the cert offloading in an apache reverse proxy?

Avatar
HazardMack 1y ago

Thanks! I took a look and it and definitely in line with what I’m looking to do. Probably have to make a relay specific implementation to distinguish permissions amongst pubkeys.