there is openid which no one uses and there is openid connect which is basically a majority of enterprise implementations along with SAML unfortunately no what you are saying used openid not openid connect and a “nostr identity provider” defeats the entire point since you can just use passkeys or the npub directly depending on need

Why would it defeat the point entirely? The nostr ID provider gives the nostr app a session token, refresh token and ID token so that you don't continuously have to log in everytime you click a button on the page.

OAuth/OIDC flows are perfect for this, no need to reinvent the wheel and OIDC support in libraries/frameworks is pretty solid these days. Which makes integrating this in apps quiet easy I suppose if you can expose OIDC compliant "nsec bunker" endpoints.

I thought pablo had invented an oauth-like login method, no?