You are viewing a single comment's thread from:
RE: A new start for SteemConnect
With SteemConnect you don't need to delegate posting authority to prove your identity. It's never been the case.
With SteemConnect you don't need to delegate posting authority to prove your identity. It's never been the case.
Yes it has. You can't login using the SteemConnect TTP unless you delegate it (and more) to the SteemConnect TTP.
You can, but if you don't believe me you can try by yourself, go on smartsteem.com and click login, you will see that posting authority delegation is not necessary.
Uhm, the TTP doesn't delegate authority to the dapp, but the user still needs to delegate a lot of her authority to the TTP. There is no "sign this token with your memo key" login, no "use this token in the memo field of a micro transaction" option, the only option the user gets to proof it's identity is using a TTP that in turn can only be used if you trust the TTP with your keys. That is a whole lot of trust to put in a TTP if all I want to do is use a few services that merely want me to prove my account ownership.
Yet, how many of the 683 apps don't just verify identify, but actually asks by default for posting and voting auth? I bet its like 95%
Please give us data, and stop derailing useful conversations
Yes, I've seen people using steemconnect to unknowingly "hack" people's keys. This happens. They are simply linking a link to enable all permissions and tell users they will give "upvotes" if they do. They didn't tell them about the permissions of course :D