This seems to be nossky where the password-encrypted key is given to the server. But the mechanism for signing using the nsecbanker mechanism is very smart. I'm going to look at it some more..😁

@brugeman I was wondering about one point🤔 Is the password the only thing needed to get the encryption key🔑 from the cloud server?

Yes, right now it's only password. I was planning to add webauthn later as second factor.

That's great. As a matter of fact, nosskey has it I've implemented it as a prototype. You may be able to use it as a reference.

GitHub

GitHub - ocknamo/nosskey: ⛔️ DEPRECATED: Nosskey challenges better ways to handle Nostr keys

⛔️ DEPRECATED: Nosskey challenges better ways to handle Nostr keys - ocknamo/nosskey

@brugeman You mention using webauthn as a second factor. But in my opinion, only webauthn authentication is sufficient and password authentication is not necessary. This is nosskey.😁