pull down to refresh

50 sats \ 1 reply \ @optimism 2 Oct \ on: OAuth-like wallet attach flows nostr
Maybe the connect request doesn't need encryption, only signatures from client+server. It's not the request that is sensitive, but the response.
Can you elaborate this?
write
preview
100 sats \ 0 replies \ @ek OP 2 Oct
The response will include credentials to spend, so the server shouldn’t be able to send the request and get a response
reply