Web apps can be PWAs - I have nostrudel installed, works with nsec.app pretty well.  

 This depends on what you mean by 'down'. 

If our APIs are down then the background signing won't work, but the web app (and pwa) will work and will allow export and signing (with an open nsec.app tab). 

The web app is unlikely to be down - it's hosted by vercel cloud, and it's heavily cached in your browser so even if vercel is down it would still work from cache. 

We also have roadmap for various backup strategies being auto-implemented or at least auto-suggested.

In the worst case we're permanently down or have killed our database and you clear your browser data and have no backup - then your nsec is gone.  

 Nip46 is a good idea, hopefully with a set of patches I sent last week we'll have major apps (habla, snort, coracle, nostrudel, etc) supporting it well on all platforms. Nsec.app or not, a good cross-platform key  storage with permission management etc is way better than copy-pasting nsecs.  

 There is Amber for Android  

 Yes 

 Omg how did you do that? 

 Fantastic! 

 Try nsec.app works with many web clients  

 Where is 9? 

 I just did, thank you! 

 I've been receiving such bugs for the last three weeks for nsec.app, feels good to get a chance to complain too! 

 Tried w/ 1k sats - same issue 

 Ok thanks for help everyone. Phoenix copied invoice with lightning: prefix, Alby doesn't recognize it. 

 @Karnage 👍👍👍  

 Awesome! 

 Awesome! 

 Awesome! 

 We are on the same camp here, next time I talk to native dev I will call you for reinforcement  

 I agree in theory, in practice no native app devs have shown enthusiasm. Native apps are proud of their low latency, nip46 can never get that performant and predictable. Batching solves dm decryption, and signer-relay saves one round trip, but one rt stays no matter what. Unless it's some nip46-over-ipc on the same device. 

 No, native apps don't support nip46, and most of them don't plan to, due to performance concerns. 

 It won't mature without your feedback! 

 The difference is using one website vs many, proper controls of what each site can do, e2ee encrypted key sync btw devices, coming soon 2fa, etc. A product focused on managing your nsec the best way it can. 

 There is no support for password protected nsec import yet, plus graphene likely to have other issues - this thing need web push notifications to work properly, not sure if those work on graphene. 

 Thank you for the huge zap! 

 It's asking for a new password that will be used to do e2ee sync of key between devices - you will use your username and this password to log into nsec.app 

 On mobile you can try importing your keys into nsec.app and user your name@nsec.app to login 

 Any plans for nip46 @wavlake @ltngstore ? 

 Not sure what's not working for you, I've just created and account there, you can see the created pubkey in console. I landed on the homepage of nostrmeet though, maybe something's wrong with result handling?https://i.nostr.build/Dzr4.png 

 Ok Safari is a problem. The error message will be more meaningful and an explainer will be shown. You should go to ios setting advanced experimental and turn push api on and then add nsec.app to homescreen as pwa. Then this error should go away. I need to do more testing on apple devices  

 Nsec.app on iOS needs these settings for now, until the web push technology graduates from 'experimental'. Not sure if 'add to homescreen' requirement stays or not. On other platforms it works out of the box.

Nostr-login is nip46 client, noauth/nsec.app is nip46 server (running in your browser) - there isn't much more than that.

The smoothest mobile-first signup experience is when you just generate nsec in your client and eventually when user is ready start explaining to them how to get their nsec 'reused' in other apps. If you need to immediately give them an option to sign into other apps then you could host your own nsecbunker instance and generate nsecs inside it and store on your server - it would be as smooth, but custodial. The next option is nsec.app - non-custodial, but more friction on some platforms/browsers like iOS or Brave.  

 On use.nsec.app click Get started (or Add account) and then Import keys. 

 Right, but also I am not sure adding a password is that necessary for starters. 

 Secret is stored in your browser. It's not oauth, it just resembles it.  

 Unlikely, more likely damus becomes a bunker too. 

 Take your name@nsec.app and use it to login to npub.cash to try. Most apps have limited support for this type of auth, that's why it might be failing in your case. 

 Great! Yeah a guide would be great, maybe @Tony could help? 

 Amazing! 

 Thank you for using it! 

 There is _A LOT_ to improve there, don't hesitate to complain on anything that's broken or missing or annoying. 

 You can generate new keys inside the app and try logging in somewhere to see how it works, no need to put your real keys for starters. The app works pretty well and we're working hard on improving it. 

 Your keys are in your browser, we just give you a username to simplify logging into apps, and password is to enable end to end encrypted sync of your keys between devices. Technically there is no need for an account, but then connecting to apps becomes much trickier, and moving keys btw devices too. 

 You can login with nostr with nip98, by signing auth http header. 

 On iOS you need to go to Settings, Advanced, Experimental and enable Push API, and then add nsec.app on homescreen. Then it should start working in the background. But I haven't done extensive iOS testing yet, so no guarantees there.  

 Take a look at nsec.app, many nostr web apps already support nip46 remove key access  

 I am skeptical about both the problem statement of "email+password are failing tech" and the solutions proposed for nsec failures.

A good solution for nsec sharing seems to be nip49 - nsec should only be exported in encrypted form. Adding a warning or a different nsec formatting doesn't help a user who is in a rush and copy pasting stuff around and clicking 'publish'. Storing nsec in keychain is great, but it's not available on many platforms.

Also nsec is as prone to phishing as passwords - if apps keep asking for your nsec. That's why nip46 adoption should make a difference - no nsec sharing, and it's an open protocol and you're not locked in to a single SSO provider. 

 It works! Signed in with nsec.app on mobile! 

 Topics and sub feeds from lists are awesome! And nip46/64 too 😂
nostr:nevent1qqsfqgxd8qver85ns835szpt744n4lu63wfjeezu5cck564r3hh2mscpz3mhxue69uhhyetvv9ujumn0wd68ytnzvupzpd7x76g4e756vtlldg0syczdazxz83kxcmgm3a3v0nqswj0nql5pqvzqqqqqqyuj8lat 

 Thanks for your feedback, need to check up that browser. 

 You can import your nsec into nsec.app, it's stored in your browser. 

 Well, maybe you're right, the common meaning of "non-custodial" might not be obvious for most people.  

 Can you please tell me more about the problem with nsec.app? 

 Thanks for your feedback!  

 Very cool! Which software are you using? Which course? 

 Added this - the last param to connect and create_account is the list of requested permissions, i.e. sign_event:1,sign_event:3 implemented at nsec.app and nostr-login, check in action on nostr.band. Any feedback? Should we be adding this to nip46?
https://i.nostr.build/o9rx.jpg 

 We're discussing the protocol level, the UI on screenshot is just the first implementation of it, we will make it more meaningful and simple later. 

 Yes it's coming 

 Sorry, I didn't mean to discourage you from providing feedback.
Some nip05 services also provide email service using the same name, but not sure if that's relevant here. 
The nip05 and password can be used to sign in to (soon to be) any nostr client using nsec.app or other nip46 implementations. Try signing up on nsec.app (or import your relay keys there) and then you can use your name@nsec.app to sign in to nostr clients like Nostrudel, Snort, Habla etc. 

 I see 'calle' assigned to your npub https://nsec.app/.well-known/nostr.json?name=calle
In fact I see 3 other names assigned to your npub too. I guess it's just that the old name was saved in your browser under your npub. I should fix the app to allow you to edit name to the one already assigned to npub on the server. Meanwhile you can try clearing nsec.app data in your browser and then login with calle@nsec.app and you should see it there.  

 My bad, I should have foreseen that users will want to put anything in the password. I will fix that, sorry. 

 Usernames (nip05 names) are case-insensitive. The app should convert entered names into lowercase, but doesn't in this screen - will fix that. Try typing in lowercase, should work. 

 Deleting keys from browser is a dangerous operation, we will add it when we have a proper flow in place, like "please make sure you export your keys first" etc. Btw you can already do encrypted nsec export (nip49) in key settings, you can do that and then just clear the browser data for nsec.app, and then import back only keys that are needed, all apps and connections should be synced back from relays.