Sign-In with Ethereum - January Updates
Sign-In with Ethereum offers a new self-custodial option for users who wish to assume more control and responsibility over their own digital identity.
When signing in to popular services today, users will typically use identity providers (IdPs) that are centralized entities with ultimate control over users' identifiers--or "Big Login." Sign-In with Ethereum offers a new self-custodial option for users who wish to assume more control and responsibility over their own digital identity.
Here are the latest updates from our work on Sign-In with Ethereum:
Recently Completed and Announced
- Our Sign-In with Ethereum developer portal is now available with a quickstart guide, instructions for a number of our libraries, and even additional information on SIWE. We plan on adding to this regularly with additional tutorials, guides, and more.
- We redesigned the login.xyz portal, adding sections for the latest Sign-In with Ethereum updates, supporter highlights, and we've added a number of other supporters signaling their intent to use the standard.
- We released a Rust library for Sign-In with Ethereum, adding support for any Rust project that wishes to integrate.
siwecan now be found and used as a crate as well. - We released an Elixir library for Sign-In with Ethereum, which leverages the existing work on our Sign-In with Ethereum Rust library for signature verification and message format validation.
siwecan now be found and used as a hex and installed in Elixir projects. - We released a Python library for Sign-In with Ethereum, adding support for Python projects that wish to integrate, and
siwecan now be found and installed via pypi. - We've continued our work on our Ruby library, Rails compatibility, and a Discourse plugin to enable any Discourse form to let their users Sign-In with Ethereum. If you're interested in being an early adopter for your Discourse forum, please get in touch!
Exploration Phase
- We are exploring support for libraries in Go and PHP to continue to support Sign-In with Ethereum integrations across the entire ecosystem.
- We are exploring what support for a custom OAuth provider would look like to support Sign-In with Ethereum in NextAuth.js, an extremely popular open-source authentication solution for Next.js applications.
- We are going to be continuously adding more resources and building more tutorials into our developer portal. If you have any ideas for guides you would love to see on Sign-In with Ethereum and what it could enable, please get in touch, as we'd love to include it!
- Now that we're in a great place with our work on the OpenID Connect Identity Provider Server, we are beginning to explore integrating Sign-In with Ethereum as an option in the Auth0 Marketplace, as the server was a major prerequisite.
Updates on the OpenID Connect Identity Provider Server
As mentioned in our previous update, we've been working on an OpenID Connect (OIDC) server. Part of our strategy in developing this was to ensure support for organizations that wanted to consolidate the Sign-In with Ethereum workflow to a single service that could be used to access their entire ecosystem using OpenID Connect to forward the user authentication.
The latest updates on the OIDC server are the following:
- We are currently going for OpenID Connect certification which involves our implementation conforming to a specific conformance profile of the OpenID Connect protocol. This would add additional certainty around the integrity and guarantees of the server, and enable anyone to comfortably rely on the implementation.
- We have refactored the server to run as a Cloudflare worker so it can be lightweight and easily audited by a 3rd party. Additionally, this refactoring makes it even easier to be hosted by a non-profit entity because it effectively minimizes most of the required overhead.
- We've deployed a demo version of the server working here.
Community Snapshots
This is amazing! We cannot wait to implement on https://t.co/1uKsAupTwc!
— TIMEPieces.eth ᵍᵐ ⏰ (@timepieces) December 17, 2021
👏🏼👏🏼👏🏼 https://t.co/CzeDe3nUFR
Clarity is a coordination & info management tool for DAOs.
— Clarity 💡 (@clarityteams) December 17, 2021
DAO contributors tell us access control is their biggest issue in this category. We're solving this in Clarity—starting with identity.
Available today:
1. Sign-in with Ethereum
2. @ensdomains usernames
How it works 🧵 pic.twitter.com/LYei4LR5Un
Signing in to the @flipsidecrypto app?
— Flipside Crypto (@flipsidecrypto) January 19, 2022
Just use the new Sign-In with #ETH feature, built in collaboration with https://t.co/hd6JWyNTe4 🥳🥳🥳 @ethdotorg @ensdomains @SpruceID https://t.co/VSbLSuF3A7 pic.twitter.com/cRRcsDn9pc
And finally - if you see any implementations of Sign-In with Ethereum that don't follow EIP-4361, let that team know there's a standard for it!
If you're interested in integrating Sign-In with Ethereum into your dapp, app, or service, we are more than happy to help and provide any support we can. As we continue our work supporting Sign-In with Ethereum, we especially welcome implementers who already have users relying on similar workflows, authors of related EIPs, and wallet vendors who would like to do more to support user-owned identities to join us.
If you are interested in being involved, please join our Discord server:
