1.3 KiB
1.3 KiB
Signup Flow
We need a flow that avoids any copy pasting of nsecs, and allows regular key rotation. The principle then is that all system nsecs are generated locally, and never leave the device.
Admin (bootstrap) flow:
| Kind | Type | Purpose |
|---|---|---|
| X1 | Encrypted to admin, ephemeral | Discovery of DVM npub by Admins |
| X2 | Encrypted to dvm, ephemeral | Register admin client |
| X3 | Encrypted to client, ephemeral | Confirm admin client registration |
| X4 | Public, Replaceable | Discovery of DVM npub by end users |