nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhhq7tjv9kkjepwve5kzar2v9nzucm0d5hszxmhwden5te0wfjkccte9emk2um5v4exucn5vvhxxmmd9us2xuyp is the vision with nostr that me as my families uncle Jim, run a relay that is friends & family, invite only and that Odell runs a bitcoiner relay? Each relay is like a forum for a niche topic like back in the day?
wait, aren't you the one who runs coinkite?
Lol I know what it's for. I don't think you're following this convo.
what do you need a refresh token for if you are getting an npub once
how do you trust the ID provider
Refresh token so you don't need to log in every 15 minutes (because session token should not be long lived). There isn't much trusting to do with the ID provider. You have to trust that the software works. It's like using the "login with Google" or "login with Facebook" buttons. They also use OIDC. In those cases, you have to trust them with your personal info. With this nostr ID provider, you hold the personal info on your device. We can maybe have some sort of encryption scheme between the nostr app and your phone app to make sure the info doesn't leak in transit. And tbh so far nostr apps have asked for your name, username, maybe an email. You can always enter fake or burner info in your device app so that nostr ID provider gets nothing. Its a very low trust system IMO.
Why would it defeat the point entirely? The nostr ID provider gives the nostr app a session token, refresh token and ID token so that you don't continuously have to log in everytime you click a button on the page.
What if we use OIDC. You're building your app and you want to allow nostr login. Your app uses OIDC via a nostr ID provider. This nostr ID provider connects with an app you have on your phone which is where your nsec is. Whenever you click "login with nostr" the nostr app uses OIDC and pings the nostr ID provider. Nostr ID provider then provides a NIP-97 auth URI back to the nostr app. Nostr app displays this URI as a QR code. Using the app on your phone, you scan this QR code. This will then prompt you to confirm you want to log into this site, and even what info you'd like to share with this site. All your personal info is stored only locally on device in the app and you could even create different profiles for different sites. Once you confirm, your app sends that in the form of NIP-97 auth message to nostr ID provider. Nostr ID provider then creates session token, refresh token and ID token and gives it back to nostr app. Voila you're logged in and you never had to enter your nsec anywhere.
Ahhh yes I remember being where you are now in my social media journey. The next step is deleting your Twitter. It felt like storm clouds that were hanging over me finally gave way to the sunshine.
Damn your UI looks good. Is this a special UI framework?
Anybody else feel like the language we use with LLMs and neural nets in general is way too anthropomorphic? "It doesn't know X", " It understands Y". "it said Z". These things are glorified, n-dimensional curve fitting algorithms. They do not think. #asknostr
Reddit is filled with posts from bots, I mean on the order of 100s that all link the same stream that requires an account. First link I click from nostr is legit. We are winning #nostr
I've turned this account in one of those that just quote-tweet wise sayings from others: nostr:nevent1qqs0m82yd3tkn9v6uh6dz5y3l5eu7enqa0exraa7wgr26vc4qy6hrtqprfmhxue69uhhyetvv9ujuam9wd6x2unwvf6xxtnrdaksyg8yvswsamt36tgvpa5v6dgg658umvv4ftquek3xnhdm0fuf0s3xzsh0ktxa
This doesn't work on amethyst. Is the idea that it should just work or would I need to manually add the relay where this note is stored to my list of relays?
If it can't even perform simple tasks then why should we assume it can be used to push some agenda?
Fuck, you beat me to it! I was gonna build this
ChatGPT is wrong about a lot of things. Ask it how many letter R are in the word strawberry and to tell you the index of the letters in the word. Or ask it to name ten fruit that end in 'ums': https://www.youtube.com/watch?v=cXw4mZZXJNU
I agree, it's an interesting theory you're implying here and worth consideration but applying scientific method: seek to disprove your own theory and see where it stands. Tbh I think its quite easy to pick this apart making it far more likely that ChatGPT isn't trying to sell you telegram but instead is just trained on text data that assumes it's good for privacy.