SIGit allows you and your counterparties to sign and validate documents - such as contracts, agreements, or forms.

The process goes like this:

CREATE

SIGN

VERIFY

Create The creator uploads the files and chooses who will sign (and in what order) and who will be able to view the signed documents. The checksums of the files (and other metadata) are signed by the creator and stored in a Nostr event. This event, plus all the files, are uploaded onto a Blossom server inside an encrypted zip file. The first signer is then given the decryption key using a Nostr DM.

Sign The signer logs into SIGit and downloads / decrypts the zip file. The checksums of the files are automatically verified against the metadata signed by the creator in the create event. The signer then signs a signature event, including the signature of the previous sign event (or create event), making a chain.

The last signer will then DM all the other signers / viewers to notify that the document signing round is complete.

Each signer / viewer can optionally EXPORT the documents in decrypted form. In this case, the metadata will show WHO exported the document.

Verify Anybody can go to SIGit and upload an exported document (zip) file for verification. This confirms that the signatures of all the counterparties are valid (creator, signers, exporter) and the checksums match.

Progress So far the above process is working, and it is even possible to complete a SIGit round (create, sign, verify) OFFLINE - using extension or nsec login.

Roadmap We are now looking to build the following features:

NIP-17 (private) DMs

Ability to render a PDF and put date / title / name / signature squiggle at specific co-ordinates

PWA

Blossom Server selection

Website: https://sigit.io

Source code: https://git.sigit.io/sig/it/