-
Notifications
You must be signed in to change notification settings - Fork 132
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add NeoLogin to /wallets #843
Conversation
We have tried the wallets. It brakes when we send NEP-5 asset to the wallet. |
That is definitely a bug that needs to be fixed, we'll look into it and get back |
I just fixed it, the bug was caused by some code that tried to render a row for every asset that the account had, getting the asset's icons from a dictionary that had the following shape:
Then when it tried to render a row for neofish it broke because the dictionary query failed. The reason it did not work when you removed the neofish from the wallet is because neoscan still takes them into account when reporting them via the API and the explorer, see https://neoscan.io/address/ANXHpL2TDJE6dhXd6RvyfTbTfwcWkMUesC |
We do store plaintext private keys on localStorage when the user requests to store the keys locally on registration or ticks "remember me", so it's not the primary mode of operation (we do not do this by default, only after the user performs specific actions requesting it). We could encrypt the keys stored on localStorage, but from our point of view this doesn't seem to cause a significant difference in the security model:
Also please note that we are not posing this wallet as a replacement for other wallets, we tell everyone that this wallet is less secure compared to other wallets such as Neon or O3 and that it should only be used for small quantities of money. We've been very clear that this wallet trades security for convenience as a design decision and therefore should not be used if you plan to just store huge amounts of neo, but should be used for small amounts that you just plan to use on dApps. We've also discussed the possibility of forcing users to move to more secure wallets if they ever end up with a significant amount of tokens in our wallet, and might implement this in the future. |
Hi Albert
|
@chenquanyu That's fair, by an issues feedback link do you mean displaying a link to our support tickets? In such case, is a link to the issues tab of our github repo fine? |
Yes, it's fine👍 |
Some updates:
|
Translated everything and added "report issue" buttons, it's all live now. |
This PR adds the NeoLogin wallet to the list of wallets present in https://neo.org/wallets.
I've tried to remain impartial in my description of the wallet, especially when exposing it's drawbacks (like the fact it's a light node, has worse security compared to wallets that only store keys locally, has a central server that stores encrypted keys and requires users to pay close attention to having strong enough passwords) but I'm the creator of this wallet, so I'm quite biased.
Any corrections are welcome!