Yeah, the account creation part where you enter the email and username etc is in-page modal, but then the password stuff must happen on the popup so the client generating the account can’t see it.
It could be done getting absolutely everything in the client but that increases the trust significantly with the client and you also want the nsecBunker domain to have a cookie to authorize new keys without having to login. I’d say that would only make sense if the client and nsecBunker provider are the same entity in that case that would be fine.
PABLOF7z
npub1l2v…ajft
2023-12-01 16:25:09
in reply to nevent1q…768m
Author Public Key
npub1l2vyh47mk2p0qlsku7hg0vn29faehy9hy34ygaclpn66ukqp3afqutajftPublished at
2023-12-01 16:25:09Event JSON
{
"id": "6f9a33843819cf2a83338c440159bdcdc43ace57519eeda0a09e2d9746480d0c",
"pubkey": "fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52",
"created_at": 1701444309,
"kind": 1,
"tags": [
[
"e",
"c0ff5a9acaa930a26e86f90899373cd9b992238236570ca0e37846016c0b857d",
"",
"root"
],
[
"e",
"0000004555061837a92d025cd8f9631e74b6aff59ea3544b26ec84f83426ef3f",
"",
"reply"
],
[
"p",
"fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52"
],
[
"p",
"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805"
],
[
"client",
"Nostur"
]
],
"content": "Yeah, the account creation part where you enter the email and username etc is in-page modal, but then the password stuff must happen on the popup so the client generating the account can’t see it.\n\nIt could be done getting absolutely everything in the client but that increases the trust significantly with the client and you also want the nsecBunker domain to have a cookie to authorize new keys without having to login. I’d say that would only make sense if the client and nsecBunker provider are the same entity in that case that would be fine.",
"sig": "763f678ef4d8567d3c00102c73759dc28ebced276fb2f3247956cd0aeff604e8ce50351c25faf6e987a7b349257c588c80960541d6797f04551483a0dc073bd0"
}