Thread
Login to reply
Replies ()
Holy shit I can't believe that worked.
html-only client + bunker auth.
This looks so cool! Nice job.
should have it hosted soon!
I decided it's better to get stuff up early rather than keep trying to polish stuff. don't spread it around too much, this is a test/staging domain, more or less. but if you want to play with it:
and if you want to convince yourself that it's safe to login with your bunker, the github link is further up this thread. After you add the app to your signer, you have to click the "check connection" button - we don't have live listeners in html :)
Nostr Timeline - Nostr Hypermedia
Its a bit slow to post but really great job! Might send a PR after I play with it more extensively.
I added naddr and nevent support last night so I'll send the PR later today 😎
PR submitted.
*Security model
Server only sees your public key
All signing happens in your signer app
Communication is NIP-44 encrypted (ChaCha20 + HMAC-SHA256)
Server uses a disposable keypair for each session
Sessions stored server-side with HTTP-only cookies*
Love a no JS nostr client - great for locked down browsers and small attack surface. At Masters of The Lair we care a lot about that. What use case are you targeting first?
I'm continually amazed that this works. I can't tell if this is broken nostr or perfect nostr...
View quoted note →
^ proof.
authenticated with bunker/Amber. pure HTML hypermedia nostr
I'm continually amazed that this works. I can't tell if this is broken nostr or perfect nostr...
View quoted note →
View quoted note →
View quoted note →
Owww, explain to me as a non dev please. Is this a way to run nostr client services on your own server?