freighter icon indicating copy to clipboard operation
freighter copied to clipboard

Published 20 hours ago verified publisher icon stellar

Feature Request: Make getPublicKey() return a Signed Message

Open agenio opened this issue 4 years ago • 5 comments

What problem does your feature solve?

Improve authentication to a third party (web application, ecc) ensuring that a user owns the corresponding secret key

What would you like to see?

In my opinion could be useful if the getPublicKey() will implements:

Accept:

  • an input parameter String (this will be an arbitrary token generated by the requesting application)

Return:

  • Public Key (this is already returned)
  • Message Signed
  • Signature

Almost like albedo (albedo.link) does:

This feature will permit also to the requesting application (web application, ecc) to check the authentication data

What alternatives are there?

agenio avatar Jan 23 '21 16:01 agenio

Look like we need function signMessage(msg) and verifyMessage(msg, signature), same as https://github.com/orbitlens/stellar-expert-id do.

dinhduongha avatar Apr 13 '21 01:04 dinhduongha

In my opinion would be better like albedo (albedo.link): https://albedo.link/playground?section=public_key

The view public key function of Albedo return also the signed message and the signature. In this manner is more simple even for the user because it requires only one UI interaction.

agenio avatar Apr 25 '21 13:04 agenio

+1 this feature would be useful in my opinion

wkta avatar Jul 26 '22 10:07 wkta

bumping now

GHesericsu avatar Jun 28 '23 01:06 GHesericsu

version 5.2.6 adds signBlob which signs arbitrary data(base64 encoded) & returns signature. https://github.com/stellar/freighter/releases/tag/5.2.6

aristidesstaffieri avatar Aug 04 '23 21:08 aristidesstaffieri