Sign message login & Chat channel

[Coinoplex]

Login by using signature.

Signing in would change forever! This could be maybe one day a thing of the internet future.

Users register a one time wallet address on their profile account.

Random message generated for each time a user logs in which has to be signed by the private key 🔑 , user have to provide the hash using a submit window, backend checks the hash and if the hash is correct for that specific address then he is logged in.

Even if the hash is somehow stolen by someone they will be able to login in that specific time but they can never change the accounts associated address. They wont be able to login again because each time the user try’s to login random message generated which requires signature.

In the event the user wants to change there associated wallet address they will be again required to sign a random message using there private key and provide the signed hash.

——————————————-


I would suggest creating a chat channel on the forum where people can chat all together and chat as well individually so not only the current “My messages” option. To avoid the chat channel being flooded with scammers and spamming, the main chat channel where everyone talks can have a dictionary where it bans people from accessing the chat channel if they use certain spamming words. This could be run for 1 month as trial and if everyone is happy then its great if not it can be removed, I think it would be a nice trial. Also another measure could be only people who are with “member” account level or higher can enter the chat.

[SFR10]

Even if the hash is somehow stolen by someone they will be able to login in that specific time but they can never change the accounts associated address.

What if private keys were compromised as well ^{[bye-bye account]}?
^{- It's not just the issue of changing addresses but a lot more are at stake when someone could take over an account just like that.}

I would suggest creating a chat channel on the forum where people can chat all together and chat as well individually so not only the current “My messages” option. To avoid the chat channel being flooded with scammers and spamming, the main chat channel where everyone talks can have a dictionary where it bans people from accessing the chat channel if they use certain spamming words. This could be run for 1 month as trial and if everyone is happy then its great if not it can be removed, I think it would be a nice trial. Also another measure could be only people who are with “member” account level or higher can enter the chat.

Even with those restrictions, it'll be a big mess + there's already an "unofficial discord server".

[PrimeNumber7]

Login by using signature.

Signing in would change forever! This could be maybe one day a thing of the internet future.

Users register a one time wallet address on their profile account.

Random message generated for each time a user logs in which has to be signed by the private key 🔑 , user have to provide the hash using a submit window, backend checks the hash and if the hash is correct for that specific address then he is logged in.

This is not a novel concept. This is basically what google authenticator does, except it uses the current time instead of a random message, and generates a numerical code instead of a signature.

I also believe what you are calling for was specifically implemented in one or more of the darknet market sites that eventually got taken down, at least IIRC.