If instead of a web wallet you create browser extension then you (developer with open source code) never see user’s private key.
One thing that @renzokuken was looking into a while ago, was using the wallet seed/private-key as basis for deriving 2FA (using a custom derivation path). In that way you one time would need to link your wallet to an user name, and in the future could login using the username and 2FA key derived directly from your wallet. The nice thing is that would mean your wallet would become useful for ID and passkey management to login to all kind of services and that upon loss of the wallet, only the username and mnemonic are needed to recreate the ID.
Edit, this is also where I would see a open source Hardware Wallet (HW) to have additional value for the community, since it can also be used for 2FA similar as how the Bitcoin Jade HW is used both as HW and 2FA key.
3 Likes
Brilliant. The trivial way - just submit the username, this works. No account no personal data.
After creating a wallet the passphrase and pw is shown on the website. No email required.
1 Like
there is unmaintained wordpress plugin which worked well in the past
4 Likes
I know it’s on @renzokuken roadmap to make a wordpress plugin too
3 Likes