Sign-In with Ethereum Digest - March
Sign-In with Ethereum offers a new self-custodial authentication option for users who wish to assume more control and responsibility over their own digital identity.
When signing in to popular services today, users will typically use identity providers (IdPs) that are centralized entities with ultimate control over users' identifiers--or "Big Login." Sign-In with Ethereum offers a new self-custodial option for users who wish to assume more control and responsibility over their own digital identity.
Here are the latest updates from our work on Sign-In with Ethereum:
Recently Completed and Announced
- We've released our Go library, which provides a Go implementation of EIP-4361 and handles functionality around Sign-In with Ethereum.
- We've released our Discourse plugin, which enables any self-hosted Discourse forum to allow users to authenticate with their Ethereum accounts. Support is available for new users wishing to sign up with their Ethereum account, or existing users to associate an Ethereum account and authenticate using it for future sessions. When signing up with an Ethereum account, the username and avatar for the Discourse account default to an ENS name and avatar if one is available.
- We've released our guide on how to implement Sign-In with Ethereum to authenticate users in any Next.js app with NextAuth. The guide features the use of our core library alongside wagmi: a React hooks library for Ethereum.
- We released our preliminary research on the on-chain activity of ENS users. Learning the trends of ENS users helps us identify other services that could benefit from SIWE, and standardize the way in which they authenticate users. This report took a look at .eth domains, the addresses that own them, and their blockchain transactions:
- We're currently in the process of creating an example application that leverages our Auth0 application to demonstrate how Sign-In with Ethereum can be used to authenticate users. The example will contain the Auth0 authentication workflow to enable users to Sign-In with Ethereum and see their own NFTs in a gallery view.
- We are currently reviewing a passport.js strategy for Ethereum that we created in order to bolster the adoption of Sign-In with Ethereum. We anticipate a release of the package in the next few weeks.
- We broke out the parser logic for our SIWE Core TypeScript package as a standalone SIWE parser package which reduces the size of the original package even further and minimizes dependencies. This is great for applications that are not interested in the included verification logic.
- We are exploring how to create templates for different commonly used development frameworks, such as React and Vue. By providing this, anyone would be able to spin up an application quickly that already includes the core Sign-In with Ethereum authentication workflow.
- We have started harmonizing the behavior of our SIWE Core APIs across different languages with a focus on unifying handling for the parsing, validating, and verification of SIWE messages. For example, we are now handling EIP-55 validation in a unified way.
- We're beginning the research planned on our initial roadmap for privacy-enhanced usage of Sign-In with Ethereum and how to prevent identifier reuse, as well as strategies for improved key management.
And finally - if you see any implementations of Sign-In with Ethereum that don't follow EIP-4361, let that team know there's a standard for it!
If you're interested in integrating Sign-In with Ethereum into your dapp, app, or service, we are more than happy to help and provide any support we can. As we continue our work supporting Sign-In with Ethereum, we especially welcome implementers who already have users relying on similar workflows, authors of related EIPs, and wallet vendors who would like to do more to support user-owned identities to join us.
If you are interested in being involved, please join our Discord server: