Session Key
User session key to sign automatically for the smart account
What are session keys?
In the world of cryptography, the private key represents everything, and disclosing the private key is equivalent to revealing our entirety. Therefore, in practical usage, every operation in a project requires user authorization for signing. While this approach is very cautious, it may not be convenient for operations that are frequent but have relatively low security requirements.
So, we need to scope a key so that it can only send a limited set of transactions, under specific conditions, within a specific time window. We call these scoped keys "session keys."
What can you use session keys for?
There are a few core use cases of session keys:
Skipping request signing permission from the user: After obtaining the user's authorization, you can use the public and private keys you created temporarily to sign the UserOp without having to request signing permission from the user. This is useful in some high-frequency operation scenarios (such as Games)
Delegating transactions: The object of authorization can also be other projects, such as licensing some trading platforms to buy NFT prices for you when the price falls below a certain threshold
Get Started
Use our high-level RPCs to construct and use the session key Enhanced AA RPC
Use our SDKs to construct and use the session key SDKs
Try now
Enable BICONOMY 2.0.0 & switch to Polygon Mumbai
Login and use the session key feature
Demo
Learn how to use the session key to mint NFT without signing
Last updated
