Does anyone know of a good guide to setting up LN URL auth on a web site for log ins? SN has it, so @ek might know. @DarthCoin? I also think @grayruby might be setting it up on his sports app.
I know LNbits used to make this easy, but that's over, right?
Maybe not the answer you want, but the spec should be all you need
If you’re implementing it yourself (or you’re using AI), you should def read the spec yourself anyway, it should not be too complicated
I remember I even asked @nerd2ninja something about the spec because I was concerned about something and he mentioned my concern is mentioned in the spec, I just didn’t read it properly haha
(What the spec doesn’t mention though: there’s no recovery and if users use many wallets, they can easily forget which wallet they used)
Yes I have fell victim to this
You can feel honoured, I thought of you when I wrote this haha
Hahaha
Thanks. I will check it out, though I'm sure some of it will be over my head. I need one of those old yellow covered "Dummies Guide To... " books.
BTW, I have been half checked out the last week or so. Is there a link to your talk?
Afaict, your only two options is to write the code yourself or use someone else’s code but I’m not aware of any plug-and-play library
You could look up open source code like ours though and try to understand it before you copy it
not yet afaik
How do you think it went?
Pretty good for my first talk!
There weren’t many who were listening, but that was cool for my nervousness and some of the ones that were listening were very interested; they even thanked me after the talk and asked further questions 👀
We await the link
If you want a simple plugin, here is a wordpress for LN-auth https://wordpress.org/plugins/lnurl-auth/
Otherwise, like ek said, pay attention to LN-auth specs and implement it yourself in your web, if is not WP.
More resources:
I'd go with NIP-46 these days over LNURL anyway.
There's just a lot better support for it.
Oh and don't forget that both of these specs are implemented in stacker news which is open source
Thanks. There are a bunch of nostr methods, right? NIP-46 is now considered the best?
I mean, I think so, but yeah NIP-07 is also a thing
https://nostr-nips.com/nip-07
Isn’t LNURL-auth supported by a lot more wallets and services than there is support for NIP-46 via signers or clients?
Afaik, Damus and Primal, the most popular nostr clients, do not support NIP-46 and Damus doesn’t even have plans to support it
I am in a bubble that does not take popularity into consideration lmao.
So what I was thinking when I wrote that, was more along the lines of, when you go to implement it into your website, you're going to find SDKs and you'll be able to read the code of a few clients that have implemented it into a few different languages.
Whereas LNURL is pretty exclusively NPM.
yes, I think is much better a nostr based login. Just think about this:
Anyways, like SN did, a dual login LN-auth / nostr is perfect. User can always fall back to any of it.
that's somehow related to this #969776 I'm still looking to fix the user side, finding an app that provide a LNURL string for auth purposes.
@justin_shocknet please explain why did you removed LN-auth from https://lightning.video and replace it with nostr?
this is a very interesting topic anyways
We still support it but it's basically dead
For identity it's not nearly as useful as nostr because you can't easily sign interactively, its really only good for tokens... can't encrypt stuff with it etc
Also its really broken, we had a bunch of users stop being able to log in because their wallet (not ours) introduced a bug that changed their key... this is in addition to the fact its largely inconsistent among wallets, new users would often try 3-4 different wallets before finding one where it worked
Then users would forget WHICH wallet they used to log in
Whole experience was just really bad, it's dead.
very good response. I like it. @siggy47 please take notes.
Yes. That's a good point. Personally I have a separate wallet that I only use for log ins, so I can't forget!
which wallet do you use? Does it provide a LNURL string?
Wallets don't provide strings, the string is a challenge by the service you're authenticating to.
What wallets contain is a secret used to sign the challenge.
that's interesting to know. So what user should paste here (related to this plugin) and how a noob can generate one?
Is not the same, but for now I ended up using this other YEGHRO Nostr Login plugin, enabling only login for existing nostriches but not nostr-signup yet. LNURL integration still on the to-do list.
I use blixt
finally somebody is reading my guides ! 😂😂😂😂😂
and btw, this is my 30k item on SN! And you @siggy47 deserve it
There is such guide on getalby faq.
care to share what you're building?