A place for talking about the Ethereum Virtual Machine on Farcaster.

Help me I had a stupid idea but I cant explain why it's stupid: could tx.origin be used instead of explicit approvals for authorizing token transfers? Like iff you initiate a transaction your tokens are all unlocked

Auditoooor at ChainSecurity
—
EPFL Cybersec MSc.
—
CTF player w/ 0rganizers
—
Hacker & Cypherpunk
—
🌸

I think the explicit approval is to have a signature for the explicit intent of spending your tokens.

Only because you are the origin of a tx does not tell the entire story of what should or should not happen with your tokens. I think this is also why only the direct peer is viewed as spender, because smart contracts may become token holders on your behalf when you "deposit" into them, which requires you to allow them to spend your tokens, even though you are the tx.origin.

This is the alt account of Sister Hazel. Writings at https://powerlaw.systems. Building https://testnet.uvio.network. 

That's true. OTOH smart contracts also have to handle raw ETH somehow. Essentially you would need to call them to ask for tokens. I didn't think about that.

Best answer so far, and I'm half-trolling anyway

Is it common sentiment that everyone should be using account abstraction? In that case, tx.origin is not useful and batching the operation you want with an approve call is easier.