Replying to Avatar hzrd149

I'm not sure exactly, but I think it has to do with how the AUTH message is understood in different clients and relays.

It looks like wss://mleku.realy.lol responds with an AUTH message when the socket opens and then doesn't send anything until the client responds with an AUTH

This probably doesn't work well with clients or libraries that are built expecting a NOTICE "auth-required: " message as a signal to authenticate

This seems to be an issue on both sides though, because I've started using rx-nostr and its implemented the same way. it considers AUTH messages to be a signal that the relay is asking for auth without waiting for a NOTICE "auth-required: "
Avatar
cloud fodder 11mo ago

nowhere in nip42 does it mention responding with a NOTICE.. i dont do this but i was thinking about it in addition to normal auth. is that what y'all expect now?

Reply to this note

Please Login to reply.

Discussion

Avatar
cloud fodder 11mo ago

if i understand mleku's he sends the auth in addition to a notice. cause he says clients are more likely to stop spamming that way.

Avatar
hodlbod 11mo ago

I think there's room for both, clients can respond or not depending on how aggressively they wan to auth. If there are implicit access controls going on, the relay may choose to respond with some subset of data without notifying the user. Or it may notify so the user knows to authenticate because they're missing out.

Avatar
hzrd149 11mo ago

This is the way I've implemented it in noStrudel. There's an option to enable signing auth as soon as it's received. But generally it waits till it sees a auth-required response

Avatar
hzrd149 11mo ago

Your right. I made a mistake, it's not NOTICE, I meant OK and CLOSE