Going from miniapp to full app is an eye watering amount of work to undertake.

Most builders will “skip” authentication by putting themselves in debt with a centralized product.

If you fumble this or can’t manage that vendor you’re not going to make it far in building other pieces.

i have a prototype of a simple auth server that handles SIWF (nonce + verification) and issues asymmetrically signed JWTs so they can be verified by anyone

it’s only dependency is an ETH_RPC_URL

planning on hosting a public version so mini apps can have a quick way to do auth. it’s not stateful so whenever they are ready they can migrate to their own instance or use it as a reference to roll something similar in their own server

i have a prototype of a simple auth server that handles SIWF (nonce + verification) and issues asymmetrically signed JWTs so they can be verified by anyone

it’s only dependency is an ETH_RPC_URL

planning on hosting a public version so mini apps can have a quick way to do auth. it’s not stateful so whenever they are ready they can migrate to their own instance or use it as a reference to roll something similar in their own server

https://github.com/farcasterxyz/auth-server

@farcaster dev / dad / books, cooks, ski, code ~ there are many things of which a wise man might wish to be ignorant