ZecPass lets any web app add “Sign in with Zcash” — users prove ownership of a shielded address without ever exposing it. A ZK proof hash serves as the stable, address-free user identifier.
// User sends shielded memo to ZecPass
ZECPASS:v1:challenge_id:nonce:timestamp
// ZecPass returns address-free identity
zk_proof_hash = SHA256(challenge:tx:nonce:app)
Your Zcash address is never stored or shared with any app. ZK proof hashes are app-scoped — no cross-app tracking.
Add <ZecPassButton /> to your React app and integrate in under 10 minutes. Node.js SDK for server-side verification.
Issue and verify privacy-preserving credentials. Prove memberships, contributions, and achievements without revealing identity.
Your app calls ZecPass API with app_id and requested scopes.
User scans QR code with Zcash wallet — sends challenge memo to ZecPass address.
Memo watcher detects the memo, verifies nonce, timing, and replay protection.
A signed JWT with zk_proof_hash is issued. The user's address is never stored.