danfinlay
commented
4 years ago Related to our persona EIP.
Open danfinlay opened 4 years ago
danfinlay
commented
4 years ago Related to our persona EIP.
danfinlay
commented
4 years ago danfinlay
commented
4 years ago
There are some use cases where the notion of account is a bit broken under the current alpha plugin system.
A few things that indicate the issue
Possible Solutions
Approach one: Plugin per account
We initialize an instance of a plugin per account, so when logging into a site that needs this plugin, they can share keys and permissions.
Problem: This prevents plugins like ipfs from sharing a cache between sites.
Approach two: Multiple scripts per plugin
Much like the WebExtension standard has
contentscriptandbackgroundscripts (one per site, one per browser), we might want to introduce a similar concept:per_accountscript, for managing resources per account.per_wallet, for managing global state.Possibly also
per_site? This is a very early phase concept, and needs a lot of honing, so opening the issue so others can contribute to it before it takes further form.These scripts would be able to intercommunicate, since they're all in the background, we could probably allow them to pass objects directly, or maybe just proxy/membrane representations of each others' objects. Maybe only hardened objects?
Also, the asset management API probably needs to be per-account.
Approach Three: Plugins can initiate from any account
The
sendTransactionmethod doesn't need to enforce thefromfield, as the user is already going to be prompted with the transaction, so perhaps a simple solution is to stop enforcing thefrom/eth_accountsvalidation, and allow plugins to propose transactions/signatures (which are then presented to the user) from any of the user's addresses.