Do you think it is worse than simple http login with signed event? Why? Or what do you think is a better approach @semisol ?