Hey guys, thanks for taking the time to meet and considering adding me to the team. App url: https://ven-cura.vercel.app/ This was definitely interesting task, and I would like to share in writing (also happy to do that over a call) some thoughts about the addons implementations and security features could be implemented here. I tried to keep everything simple and short, but have a lot more to say :)
The most important topic, security: We all know that storing encrypted private keys is not an ideal approach for production, what I would do in a production environment is:
- For fully custodian, I'd consider using a tool like AWS KMS.
- For semi custodial, I'd break the mnemonic to pieces using an alghoritm like Shamir.
- For non custodial, I'll generate a passphrase similar to MetaMask and let the user keep it.
To be able to invite users to share access to an acocunt, i would add a connection table between wallet and user, so there's many to pamy relation between user and wallet.
To show transaction history:
-
Offchain (not recommended i guess, loses the point of using blockchain). very easily could get out of sync and have race conditions. but of course we could always save a transaction record every time we process successfull transaction.
-
Onchain, I'd try to offload the logic to an indexer or external querying system like Dune, so we won't compute and spend user resources.
I'm looking forward hearing from you and happy to hear about different ways to approach this task! Or.