Sign-In with Ethereum
npm install lit-siweSign-In with Ethereum describes how Ethereum accounts authenticate with
off-chain services by signing a standard message format parameterized by scope,
session details, and security mechanisms (e.g., a nonce). The goals of this
specification are to provide a self-custodied alternative to centralized
identity providers, improve interoperability across off-chain services for
Ethereum-based authentication, and provide wallet vendors a consistent
machine-readable message format to achieve improved user experiences and
consent management.
- Node
- Frontend
- Backend
- End to end
- Sign-In with Ethereum Notepad
Already, many services support workflows to authenticate Ethereum accounts using
message signing, such as to establish a cookie-based web session which can
manage privileged metadata about the authenticating address. This is an
opportunity to standardize the sign-in workflow and improve interoperability
across existing services, while also providing wallet vendors a reliable method
to identify signing requests as Sign-In with Ethereum requests for improved UX.
This work is sponsored by the Ethereum Foundation and Ethereum Name Service
(ENS). It is being developed in the open through a series of recorded community
calls and public repositories, and its development is informed by over twenty
user interviews with a focus on currently-in-production uses, related prior
EIPs, and fits within product roadmaps.
Our TypeScript library for Sign-In with Ethereum has not yet undergone a formal security
audit. We welcome continued feedback on the usability, architecture, and security
of this implementation.
npm install to install dependencies, then npm bootstrap to link the dependenciesnpm run build to build the library.package/* level with tests being run on each package itself.