Reckless_Satoshi

> We are also looking into a timelocked escrow solution where the script is a regular multisig. To guarantee the seller can be refunded, we'd presign a timelocked refund transaction....

> 1. The definition of Coordinator and Operator is same person, why this distinction is being made? It makes it more confusing. I think so far we have been using...

Indeed, while the first robot is generated without user input at all once the app loads, any subsequent robot avatar generation is comprised of 2 step: - Step 1. Enter...

Closing since this issue will be worked on in the new landing page.

Just checked around on `/api/` and this is very very top! Super useful explanations of all the endpoints and very useful examples. I am feeling the urge to build something...

> @Reckless-Satoshi It's taken longer than expected to complete this. Reading through all the logic flows and figuring out when some field is sent in the response was really time...

Can you take care of solving the merge conflict too?

> ``` > lnbc6m1p3nnjycpp53zxaupmfaxpzjlgzeewvj9m3wr7cvv3sg02lfs5hdsxmtugsjlksdqqcqzpgxqyd9uqsp5e5l5h2hgfkkfaf0lgeq33h2rghdr0xgr6v838k89gwgtsltkpjts9qyyssqp0afyn9cf5kysfwh0nj99nzf6etd6sl53h4run78pjwg5hmpnj44hf4r0yyd8rf79zflde708fxelk43lyatek42g2z9zcqquupeqaqpevvgzr > ``` 888dde0769e982297d02ce5cc9177170fd86323043d5f4c2976c0db5f11097ed

Thanks for reporting and the work to put RoboSats App together for EmbassyOS. HTTPS access from not whitelisted domains are blocked by the backend, unfortunately white-listening all origins is not...

> 2\. Completely move away from cookie based auth (which then means we no longer require CSRF protection - see [here](https://security.stackexchange.com/questions/166724/should-i-use-csrf-protection-on-rest-api-endpoints)) and only use token based auth. I would favor...