#indiewebcamp 2014-05-28

2014-05-28 UTC
squeakytoy, KevinMarks2, lukebrooker, BjornW, KartikPrabhu, bnvk, pauloppenheim, mko, chrissaad, walkah and binbasti joined the channel
#
aaronpk luxagraf: try curl http://indiewebcamp.com/irc/today | grep -i foo
walkah joined the channel
#
kylewm "curl -L" to follow the redirect
#
kylewm aaronpk: that's so freaking cool that it returns plaintext for UA=curl
tantek joined the channel
#
aaronpk Thanks :) I thought it was a nice touch
#
@dimasguardado RT @katelosse: That statement in my last tweet squares with all of my vibes lately: #indieweb doesn't feel past anymore, it feels like the … (twitter.com/_/status/471467882262843392)
#
luxagraf aaronpk: ah, nice idea. then i can just filter a bit and cat it into a todo list :)
tantek, scor, snarfed, icco, KevinMarks_, hidgw and emmak_ joined the channel
#
@Cairo2Seattle http://indiewebcamp.com/site_deaths (twitter.com/_/status/471486272994025472)
snarfed and fmarier joined the channel
#
KartikPrabhu snarfed: mf2py now had backwards compatible things with microformats1
#
snarfed KartikPrabhu: awesome!
#
snarfed this is your fork? kartikprabhu/mf2py ?
#
KartikPrabhu yeah my fork.
#
snarfed pulling now
#
KartikPrabhu snarfed: maybe keep this is mind at the moment: https://github.com/kartikprabhu/mf2py/issues/41
fmarier joined the channel
#
snarfed cool, thanks. tl;dr me…does head just return bad/incomplete data for bad html? or will it sometimes raise an exception?
gregone joined the channel
#
KartikPrabhu snarfed: it seems to raise an exception. if you install lxml it will be used automatically and won't throw these exceptions
caseorganic joined the channel
#
snarfed hrm, ok
#
snarfed reading that bug, it sounds like that already existed, and this won't make it any worse
squeakytoy2 joined the channel
#
david.shanske.com created /about (+1591) "Created page with a few examples. Expecting someone to come up with a better definition." (view diff)
#
GWG I told him I'd write one.
#
GWG This is the point where someone goes in and writes a better definition.
#
KartikPrabhu snarfed: no that has nothing to do with the new additions it just exists in mf2py as of now :(
#
kylewm.com edited /about (+0) "/* Examples in the wild */ minor markup typo" (view diff)
jjuran, realzies, KevinMarks, squeakytoy, snarfed and dariusdunlap joined the channel
#
snarfed replaced the users facepile on the http://brid.gy/ front page with stats
#
snarfed 342 users, 11,524 webmentions sent, among other numbers
#
Loqi [mention] http://jasonwoj.com/the-new-jasonwoj-com/ linked to http://indiewebcamp.com/POSSE (pingback)
#
Loqi [mention] http://jasonwoj.com/the-new-jasonwoj-com/ linked to http://indiewebcamp.com/ (webmention)
#
kylewm snarfed++ stats page is awesome :) I noticed it when I ran dev_appserver, was excited to see it deployed
#
Loqi snarfed has 27 karma
#
snarfed thanks!
eschnou, chrissaad and dariusdunlap_ joined the channel
#
Loqi [mention] http://jasonwoj.com/posse-explained-indiewebcamp/ linked to http://indiewebcamp.com/syndication-models (pingback)
#
Loqi [mention] http://jasonwoj.com/posse-explained-indiewebcamp/ linked to http://indiewebcamp.com/Facebook (pingback)
#
Loqi [mention] http://jasonwoj.com/posse-explained-indiewebcamp/ linked to http://indiewebcamp.com/Twitter (pingback)
#
Loqi [mention] http://jasonwoj.com/posse-explained-indiewebcamp/ linked to http://indiewebcamp.com/federation (pingback)
#
GWG snarfed: There is no simple Geodata plugin for Wordpress.
#
snarfed GWG: bold statement
#
snarfed i think there might be a few :P
#
snarfed i used this one a while back, it was simple and worked: http://wordpress.org/plugins/geolocation/
#
snarfed and integrated easily with the android and ios apps
#
GWG snarfed: Last updated 2011
#
snarfed sure
#
snarfed for small projects, "freshness" is overrated
#
GWG You would be correct if there weren't some bugs in need of fixing.
#
snarfed that sounds like all software ever written :P
#
snarfed but that's just one. there are lots!
eschnou joined the channel
#
kylewm even /bin/true
#
snarfed hah
#
GWG Many of them seem to be geared toward different use cases.
#
snarfed ah, now there's a fair point
#
snarfed i'm guessing there are still some that will work. using/adapting existing code is usually a lot easier than starting from scratch
#
snarfed but up to you!
#
aaronpk yeah bridgy stats!!
#
GWG Geolocation Plus is a fork of Geolocation that is only 2, instead of 3 years old.
#
snarfed aaronpk: thanks!
#
aaronpk am I reading this right that it found webmention endpoints for 10% of the links it discovered?
#
aaronpk technically 8.2%
#
snarfed aaronpk: yeah i was surprised by that too
#
snarfed seems unlikely
#
snarfed but the 11k number is right, i generated it another way to check
#
aaronpk well i mean you're starting with a set of links that has a high likelihood of supporting webmention so maybe it's right
#
aaronpk assuming that people who support webmention are likely to talk to other people who support webmention
#
snarfed yeah, i was about to type the same thing
#
snarfed and also many of the users who support it are higher volume and have more responses
#
aaronpk right
#
aaronpk will be interesting to see how that number changes. you should track it
#
snarfed also roughly matches the ratios from stats i generated a while back: https://www.brid.gy/about#stats
#
snarfed true!
#
aaronpk alright heading to bed! good night!
#
Loqi goodnight!
#
snarfed night!
squeakytoy2 and caseorganic joined the channel
#
@aaronpk @kevinmarks @kevinmarks: @veganstraightedge @benwerd @jlsuttles @t @erinjo @caseorganic would love to but we'll be... http://aaronparecki.com/replies/2014/05/27/1/indieweb (twitter.com/_/status/471528495563042816)
caseorganic, eschnou and cweiske joined the channel
#
@crossslide RT @katelosse: That statement in my last tweet squares with all of my vibes lately: #indieweb doesn't feel past anymore, it feels like the … (twitter.com/_/status/471539556123033600)
#
Loqi [@psigrist] The web’s dead, baby
#
Loqi the web’s dead http://www.salon.com/2014/05/26/the_internet_as_we_know_it_is_dying/ #indieweb (http://twtr.io/mnSemDezD4)
LauraJ, eschnou, snarfed, carlo_au, friedcell, tantek, tobiastom and jonnybarnes joined the channel
#
@hackr ankündigungen von indieweb-projekten haben ähnlich viel varianz wie ankündigungen von bwl-projekten. (twitter.com/_/status/471565385297575937)
#
cweiske :)
Sebastien-L, Garbee and krendil joined the channel
#
@leogaggl Excellent news for decentralised web @benwerd of elgg fame betting on #indieweb http://werd.io/2014/known-taking-a-big-bet-on-the-indieweb (twitter.com/_/status/471573751394340865)
petermolnar, Sebastien-L, jjuran, friedcell, Garbee, bnvk, lmjabreu_, ttepasse, adactio and lionzan joined the channel
#
lionzan msg aaronpk Hi! I managed to have webmention inside S3-Website running with no errors. it says it sends 4 webmentions, but they don't appear on the klinked posts... see my post her http://lionzan.me/2014-05-25/testing-webmentions/
nloadholtes, barnabywalters, jonnybarnes and LauraJ joined the channel
#
@maxbarners .@adactio with more #indieweb goodness: Selfish publishing http://adactio.com/journal/6801/ (twitter.com/_/status/471622051338661888)
bnvk, krendil and pbeaulieu joined the channel
#
@dennishorn Site Deaths. http://indiewebcamp.com/site_deaths (twitter.com/_/status/471622270289739776)
jonnybarnes, tpinto, Sebastien-L and garietyxxx joined the channel
#
garietyxxx What's the best way to prevent spam on an email address which still using rel="me" to gain IndieMark Level 1?
pbeaulieu and chloeweil joined the channel
#
@lionzan Webmentions in and out! https://twitter.com/lionzan/status/471639487681155072/photo/1 (twitter.com/_/status/471639487681155072)
#
lionzan hi all! I just got webmentions working -in and -out on my Jekyll site http://lionzan.me !!!
#
lionzan and I'm gonna kill that annoying IFTTT repost :)
#
cweiske do you have to re-render your static pages when webmentions come in?
#
lionzan dunno, I'd guess so, using https://webmention.herokuapp.com/
#
cweiske so the mentions are loaded via javascript?
barnabywalters joined the channel
#
lionzan guess so. I'm no CS, doing what I can!
jsilvestre, pbeaulieu and inimino joined the channel
#
david.shanske.com created /apprentice (+646) "Create a specific Appenticeship page" (view diff)
#
david.shanske.com edited /apprentice (+164) (view diff)
barnabywalters, bnvk, eschnou, jonnybarnes and nloadholtes joined the channel
#
@Ramblurr @aaronpk Trying to use openid w/ IndieAuth, but its hanging when scanning for rel="me" links (on http://binaryelysium.com) Any idea what's up? (twitter.com/_/status/471664221399560192)
caseorganic and chrissaad joined the channel
#
jonnybarnes is aaronpk there?
#
cweiske he's away, but in this channel
#
aaronpk Sorta
#
@aaronpk @Ramblurr That's really strange... I see what you mean. Maybe the OpenID consumer is assuming your site is... http://aaronparecki.com/replies/2014/05/28/2/indieauth (twitter.com/_/status/471665594756898816)
#
jonnybarnes how does ownyourgram actually send the photo? Can me PHP code essentially treat it as a form file upload?
#
@aaronpk @ramblurr it's usually pretty fast. Does it work for you if you just sign in on https://indieauth.com/ (http://aaronparecki.com/replies/2014/05/28/3/) (twitter.com/_/status/471668331234066434)
Kyle-K joined the channel
#
aaronpk jonnybarnes: that is exactly how it sends the photo
#
aaronpk Http multipart post, it should show up in $_FILES in php
tantek joined the channel
#
tantek kylewm - I tried to favorite http://kylewm.com/reply/2014/05/28/1 by clicking your "favorite" link but it went to https://twitter.com/intent/favorite?tweet_id=None
#
jonnybarnes hmm, looks like kylewm needs to out some conditions in his views
snarfed, iangreenleaf and pbeaulieu joined the channel
#
tantek !tell kylewm tried to favorite http://kylewm.com/reply/2014/05/28/1 by clicking your "favorite" link but it went to https://twitter.com/intent/favorite?tweet_id=None
#
Loqi Ok, I'll tell them that when I see them next
#
GWG tantek, added two new pages to the wiki.
#
tantek GWG thanks!
#
GWG Expecting them to be picked apart
#
tantek collaborative iterative improvement!
#
GWG I always think that I can do better.
#
GWG tantek, either way, I respect the opinions of those who have been thinking about these issues longer
#
kylewm tantek: ew that's bad on my part, thanks for pointing it out!
#
Loqi kylewm: tantek left you a message 8 minutes ago: tried to favorite http://kylewm.com/reply/2014/05/28/1 by clicking your "favorite" link but it went to https://twitter.com/intent/favorite?tweet_id=None
#
kylewm that post wasn't POSSEd to twitter, so nowhere for it to go...
#
GWG kylewm, I have the same issue on my list of things to add a safety check for. If the variable is empty
#
GWG I also want to check for wrong urls
#
@AttentiveBot @jeremyzilar: https://twitter.com/indiewebcamp/statuses/469895553602449409 (twitter.com/_/status/471683168848711680)
tilgovi joined the channel
#
kylewm barnabywalters: with web-action-hero-toolbelt, is there a way to configure synonyms for a verb? s.t., favorite=like=bookmark=props
#
barnabywalters kylewm: not currently, the hope was that we would figure out a common vocabulary
#
barnabywalters you can always just create more handlers with the same URL
#
kylewm sure, that makes sense
#
kylewm I'm just grateful there's not favorite and favourite ;)
#
barnabywalters kylewm: lol
#
barnabywalters in all seriousness, that is a legit reason against using favourite (or “favorite”, whatever that means)
#
paulmunday.net edited /IRC_People (+59) "added myself to the list" (view diff)
#
tantek kylewm - I'd say your reply was worthy of POSSEing to Twitter!
#
kylewm ha! honestly i've been hesitant to posse replies to indieweb posts until we figure out de-duplicating them on the receiver side
#
@jeremyzilar RT @indiewebcamp: The 4th annual #IndieWebCamp is in 5 weeks & bicoastal (PDX & NYC) http://indiewebcamp.com/2014 Sign-up! http://indiewebcamp.com/2014/Guest_List (twitter.com/_/status/471690395039326208)
#
tantek kylewm - that's the receiver's responsibility - we have figured out how to do it, just a simple matter of implementation ;)
zaal joined the channel
#
kylewm hehe, ok I'll try it
pbeaulieu joined the channel
#
tantek I wrote up some thoughts on deduping on the /webmention page but perhaps it's worth discussing it a bit more and solidifying a primary approach.
#
kylewm.com edited /https (-138) "/* Level 2 security */" (view diff)
#
kylewm.com edited /https (+65) "/* Level 4 security */ level up" (view diff)
#
snarfed kylewm++ for https! near and dear to my heart
#
Loqi kylewm has 14 karma
#
snarfed kylewm++ also for fixing https://github.com/snarfed/bridgy/issues/158 , thanks again
#
tantek I feel like we should split level 4differentiate https support that works without a warning triangle (i.e. you get a lock), vs. https support that doesn't cause an alert, but still causes a warning triangle next to the URL in the address bar
#
kylewm tantek: good call, that's a much bigger hurdle than e.g., level 3 vs. level 4
#
tantek then perhaps we should bump the existing level 5 to level 6, and introduce a new level 5 which is level 4 + no warning triangle (e.g. no mixed mode warnings)
#
tantek seems to make more sense to put this new level there (at 4.5 between existing 4 and 5), rather than at 3.5 (between existing 3 and 4), since sending redirects from http to https is both easier, and worthy of doing even with the warning triangle.
paulcp joined the channel
#
tantek snarfed - what do you think?
#
tantek.com edited /https (-95) "/* Level 4 security */ Willnorris is at level 5, no need duplicate here." (view diff)
#
snarfed tantek: agreed that redirecting is easier than fixing mixed mode errors
#
snarfed personally i'm not really into the ranking and gamification, so i'll abstain there, but the reasoning sounds good
#
tantek snarfed, but presumably you are into measuring and metrics right?
#
kylewm.com edited /https (+433) "/* How to */ added note about OCSP warning" (view diff)
#
snarfed tantek: sure, for data. design and feature implementations aren't quite that though (and are also more subjective)
#
snarfed [probably better for in person conversation]
#
tantek.com edited /https (+190) "/* Level 5 security */ explicitly require prev levels, note willnorris use of 301 redirect from Level 4 notes, note rough years" (view diff)
#
tantek !tell willnorris was IWC SF (2014-03-07) when you got https working on your site with proper ciphers etc. to get an A+ rating on ssllabs?
#
Loqi Ok, I'll tell them that when I see them next
#
@grigs Known: taking a big bet on the #indieweb http://werd.io/2014/known-taking-a-big-bet-on-the-indieweb So pleased to see @erinjo is part of this. Can’t wait! (twitter.com/_/status/471697444678295553)
#
snarfed tantek: nah, he did it earlier, looks like dec 16 2012
#
snarfed https://willnorris.com/2012/12/all-https-all-the-time
#
snarfed https://willnorris.com/2013/11/improving-my-https-support
#
kylewm woohoo, got rid of the mixed-mode warning, at least on the landing page
#
tantek snarfed - oh neat - thanks! looks like that 2012-12 post is about reaching level 4 (serve everything over https), and 2013-11 he reached grade "A" on the SSL Report
#
KevinMarks_ haha https://medium.com/message/587479c215f4##microformats+meetup
#
Loqi hehe
#
kylewm MC Frontalot :)
#
tantek KevinMarks, nice. and yay for being in the same sentence as an MC Frontalot show
#
Loqi giggles
#
tantek btw, aaronpk and I met because he decided to show up to a microformats meetup at 21A
#
tantek that he found, yes, on Upcoming
#
snarfed oh man, so good. "he's so indie" suddenly seems very apropos
#
KevinMarks_ waxy++
#
Loqi waxy has 1 karma
#
tantek upcoming++
#
Loqi upcoming has 1 karma
#
snarfed "The most is how much I front. It's….it's the amount."
#
snarfed love it
#
KevinMarks_ do we need a "resurrections" item on http://indiewebcamp.com/site-deaths now?
#
tantek "Upcoming.org was temporarily down from yyyy-mm-dd to yyyy-mm-dd"
#
tantek KevinMarks_: perhaps just on /Upcoming :)
#
KevinMarks_ I'm amused by the firts header: http://indiewebcamp.com/site-deaths#Upcoming
#
tantek heh
#
kevinmarks.com edited /site-deaths (+158) "/* Site Deaths */" (view diff)
lionzan joined the channel
#
lionzan aaronpk are you there?
#
tantek !tell lionzan go ahead and !tell aaronpk your actual message or question instead of presence querying. It's bettter for everyone here (and someone else might be able to answer your question).
#
Loqi Ok, I'll tell them that when I see them next
#
lionzan hi tantek, I made it! webmention in and out on Jekyll!!
#
Loqi lionzan: tantek left you a message 53 seconds ago: go ahead and !tell aaronpk your actual message or question instead of presence querying. It's bettter for everyone here (and someone else might be able to answer your question).
#
tantek lionzan - awesome!!!
#
lionzan I used aaronpk code for out and
#
lionzan and voxpelli hirokuapp for webmentions in
#
lionzan it was tough (especially the code part) since I'm no CS :)
#
tantek !tell aaronpk do you remember which microformats meetup at 21st Amendment that you first came to years ago?
#
Loqi Ok, I'll tell them that when I see them next
#
lionzan now I want to create different types of posts - should be easy with markdown in Jekyll
#
lionzan !tell aaronpk I made it! your code works within S3 (but still very rough way of doing things mine)
#
Loqi Ok, I'll tell them that when I see them next
edge226 joined the channel
#
tantek !tell aaronpk looks like maybe 2009-09-23? http://microformats.org/wiki/events/2009-09-23-weekly-dinner-sf looks like upcoming.org isn't redirecting event permalinks to archive.org URLs yet, but when it does: http://upcoming.org/event/4521748/
#
Loqi Ok, I'll tell them that when I see them next
#
tantek looks like for some URLs, Upcoming's 404 page provides a link to archive.org
#
tantek and not others
#
@Cloudy_Mine One first generation CloudyMine HE100GB is for sale. Details are at the CloudyMine Facebook page -> https://www.facebook.com/ownyourdata #cloudymine (twitter.com/_/status/471712309002252288)
#
tantek haha that's quite the ironic FB page URL
#
@erinjo RT @grigs: Known: taking a big bet on the #indieweb http://werd.io/2014/known-taking-a-big-bet-on-the-indieweb So pleased to see @erinjo is part of this. Can’t wait! (twitter.com/_/status/471712736250830848)
KartikPrabhu and paulcp joined the channel
#
jonnybarnes when a micropub token request is made, one of the values sent with the request is a `client_id`
#
jonnybarnes for webapps is this the URL that actual API requests will come from
#
jonnybarnes it doesnt appear to be a value that is sent with subsequent micropub requests from reading the wiki
chrissaad joined the channel
#
kylewm !tell lionzan small tip on the microformats markup on your site -- if you move the author image inside your h-card, parsers will be able to pick it up
#
Loqi Ok, I'll tell them that when I see them next
barnabywalters joined the channel
#
jonnybarnes hey barnabywalters
#
barnabywalters greetings jonnybarnes
#
jonnybarnes you've done some micropub work
#
barnabywalters indeed
#
jonnybarnes what is the client_id? i.e. its sent during the request for an access token
#
jonnybarnes but it doesnt seem to be sent with subsequent requests looking at the wiki examples
#
barnabywalters jonnybarnes: client_id is a URL identifying the client used to create a post
#
barnabywalters client apps need to provide one to be identified
#
barnabywalters resource providers can optionally store client IDs and use them to credit apps, as aaronpk does
#
barnabywalters e.g. http://aaronparecki.com/notes/2014/05/26/1/p3k-indieweb-micropub-quill
#
jonnybarnes cool, right just been told my dinners ready, so talk later :)
shaners, bnvk, j12t and CaptainCalliope joined the channel
#
Jeena I think I have a new itch I need to scratch soon. Indieweb likes, I often would like to "like" a page but don't have a way of doing it yet.
BjornW joined the channel
#
snarfed Jeena: indieweb liking is great! no need to wait on code to try it, just write the markup by hand
#
snarfed as examples, here are mine: https://snarfed.org/responses#likes
#
snarfed many are fb likes or twitter favorites, sent with https://www.brid.gy/about#like
#
Jeena but don't I need a special url for every like on my website?
#
Jeena and I need to send a webmention to the site too
#
Jeena ah bridgy, let me read that first
#
snarfed also http://indiewebcamp.com/like
#
jonnybarnes hey again, is barnabywalters still there?
#
barnabywalters for the moment
#
barnabywalters how can I help
#
snarfed Jeena: yeah, you'd publish the likes as posts with u-like-of links, and send a webmention, but i'm guessing your site already does that
#
snarfed if you don't want the like posts to show up in your feed, maybe the minimum new code you need is to hide "like" post types from your feed
#
jonnybarnes so client_id, trying to get my head round it, my thought at the moment is actually saving access tokens on my site, i.e. I'd love to be able to go to /admin/tokens and be presented with a list of all the tokens I've generated, i.e. it could list one for ownyourgram and one for waterpigs.co.uk etc
#
jonnybarnes so I know that when ownyourgram requests an access token it sets a client_id of https://ownyourgram.com
#
barnabywalters jonnybarnes: yep, saving access tokens on your server is totally legit and has the benefits you outline above
#
barnabywalters the easier alternative is to “store” the access tokens as encrypted cookies
#
barnabywalters but that way it is harder to, for example, list or revoke them
#
jonnybarnes and im just getting confused, this may seem a stupid question, how do I know that an API request has come from ownyourgram.com
#
barnabywalters jonnybarnes: because the request will have an access token either in the body or authentication header which you previously granted
#
barnabywalters jonnybarnes: it might help to see a PHP implementation and example code: https://github.com/taproot/authentication
pauloppenheim joined the channel
#
tantek.com created /Federated_Social_Web_Summit_2010 (+55) "r" (view diff)
#
jonnybarnes barnabywalters: so if my access tokens are random strings, and server side those random strings have metadata associated with them (currently thinking simple files as oppose to db) then having a file of that random string is how I know its an authenticated request, and then I could say in my UI, this partiuclar post was posted by `client_id`
#
barnabywalters jonnybarnes: exactly
#
jonnybarnes this now makes sense
#
barnabywalters note that there’s no guarantee that the client ID will actually be the URL you’re posting from, or even the same domain. But it will be the URL your authorization endpoint shows you
#
barnabywalters i.e. in the question “xxxx wants the “post” permission on jonnybarnes.net — grant?∏
#
barnabywalters ”
#
barnabywalters ”
#
barnabywalters (stupid curly quotes)
#
tantek.com created /Upcoming (+2755) "plenty of links here, time to create it. stub with dfn, site death, domain return, notability to indiewebcamp" (view diff)
#
tantek.com created /Upcoming.org (+22) "r" (view diff)
#
jonnybarnes does client_id have to be a URL, what if someone makes an iOS app for example (that'd be amazing btw)
#
jonnybarnes would client_id be the name of the app?
#
tantek.com created /upcoming (+22) "r" (view diff)
#
barnabywalters jonnybarnes: it’s probably a good idea to always make it a URL, so discovery can be done
#
jonnybarnes or a URL for the homepage of the app
#
barnabywalters in that case it would be the URL of the app, probably
#
barnabywalters but ask aaronpk, he actually has experience doing this exact thing
#
barnabywalters heading off now, goodnight
#
Loqi goodnight!
#
jonnybarnes too late Loqi, he's already gone
#
@jon_neal RT @grigs: Known: taking a big bet on the #indieweb http://werd.io/2014/known-taking-a-big-bet-on-the-indieweb So pleased to see @erinjo is part of this. Can’t wait! (twitter.com/_/status/471742915425746944)
nloadholtes joined the channel
#
@kevinmarks A kickstarter to bring Reading Rainbow to everyone on the web: https://www.kickstarter.com/projects/readingrainbow/bring-reading-rainbow-back-for-every-child-everywh #indieweb https://twitter.com/kevinmarks/status/471744474763501568/photo/1 (twitter.com/_/status/471744474763501568)
#
@lhawthorn RT @kevinmarks: A kickstarter to bring Reading Rainbow to everyone on the web: https://www.kickstarter.com/projects/readingrainbow/bring-reading-rainbow-back-for-every-child-everywh #indieweb https://twitter.com/kevinmarks/status/471744474763501568/photo/1 (twitter.com/_/status/471744747892383744)
#
tantek.com edited /site-deaths (+88) "/* Site Deaths */ change heading to dfn, one link to Baia post in intro is sufficient" (view diff)
#
@martindave RT @kevinmarks: A kickstarter to bring Reading Rainbow to everyone on the web: https://www.kickstarter.com/projects/readingrainbow/bring-reading-rainbow-back-for-every-child-everywh #indieweb https://twitter.com/kevinmarks/status/471744474763501568/photo/1 (twitter.com/_/status/471745069037649920)
#
@alipasha RT @kevinmarks: A kickstarter to bring Reading Rainbow to everyone on the web: https://www.kickstarter.com/projects/readingrainbow/bring-reading-rainbow-back-for-every-child-everywh #indieweb https://twitter.com/kevinmarks/status/471744474763501568/photo/1 (twitter.com/_/status/471745323262832641)
#
tantek !tell kylewm nicely done with getting rid of the warning triangle icon on https://kylewm.com/ ! I see a lock icon now instead!
KevinMarks joined the channel
#
@kevinmarks #indieweb @t: earlier today in Dusseldorf there was a session on IndieMark - I want to talk about improving http://indiewebcamp.com/indiemark (twitter.com/_/status/471746508875112448)
#
KevinMarks that restarting chrome noterlive bug strikes again
#
kylewm thanks tantek :)
#
KevinMarks sorry about leaving that link in both places, tantek
jjuran joined the channel
#
tantek kylewm: your permalinks look good too with lock icon, e.g. https://kylewm.com/checkin/2014/05/27/1
#
tantek no mixed content warning
#
tantek so you have https-only working everywhere on your site then?
paulcp joined the channel
#
tantek !tell jonnybarnes when did you start serving everything on your site with https? Do you remember when you flipped the switch? (i.e. to redirect all your http to https)
#
Loqi Ok, I'll tell them that when I see them next
#
jonnybarnes tantek: sorry, I can't say, over a year at least
#
Loqi jonnybarnes: tantek left you a message 2 minutes ago: when did you start serving everything on your site with https? Do you remember when you flipped the switch? (i.e. to redirect all your http to https)
#
jonnybarnes kylewm: I'm still seeing mixed content warnings on your homepage
#
jonnybarnes ooh, nope a refresh and its a padlock
#
kylewm almost... I am mirroring a lot of stuff locally (e.g., user pics), but there are some older posts where I embedded an image from an http that still give the mixed content warning
#
KartikPrabhu how do you ensure that external content is over https? If I have an avatar for a comment from tantek it will be over http since he uses http
#
KartikPrabhu seems having everything over http is an unrealistic goal
#
jonnybarnes KartikPrabhu: my solution to that particular problem is when I receive a webmention, I download the image from the hcard and display it myself
#
jonnybarnes unless its a twitter mention, in which case i link to https://twitter.com/username/profile_image
#
KartikPrabhu jonnybarnes: doesn't twitter advise you to not do that
#
jonnybarnes do they?
#
KartikPrabhu snarfed: should bridgy be using https://twitter.com/username/profile_image to link to twitter profile images?
#
snarfed maybe, news to me
#
jonnybarnes bridgy doesnt
#
jonnybarnes it uses pbs.twimg.com links
#
jonnybarnes but I've come across one or two that were dead links
#
KartikPrabhu i came across dead links too!
#
jonnybarnes https://brid-gy.appspot.com/like/twitter/BarnabyWalters/443337312085495808/19090770
#
KartikPrabhu yeah this one is different from their API links
#
jonnybarnes that links to a dead one
#
KartikPrabhu yup.
#
KartikPrabhu i didnot know this url existed!
#
jonnybarnes where as twitter.com/username/profile_image will always work I think
#
jonnybarnes and shoudl always be their latest profile image
#
KartikPrabhu twitter itself doesnot use that url!
#
KartikPrabhu atlesat not publically
#
snarfed api docs: https://dev.twitter.com/docs/user-profile-images-and-banners
#
kylewm KartikPrabhu: I locally mirror those profile images too. mostly because I wanted a clean Ghostery report
krendil joined the channel
#
KartikPrabhu snarfed: that does not document this url does it?
#
snarfed aha, that's where i remember the /profile_image redirect from
#
snarfed i think it's backed by the v1 api internally, specifically this: https://dev.twitter.com/docs/api/1/get/users/profile_image/:screen_name
#
snarfed so (fud warning) i suspect it will disappear at some point
#
KartikPrabhu hmm
#
tantek you can also use http://avatars.io/twitter/username to get the pbs.twimg.com image URL, and then use it with https
#
KartikPrabhu yes but those are hacks... is having "everything https" that necessary or even feasible?
#
tantek why is local caching a "hack"?
#
tantek certainly feasible since now a bunch of people are doing it
#
KartikPrabhu local caching is fine i guess
#
tantek.com edited /Twitter (+306) "remove h1, update dfn to include Twitter and Twitter.com, Additional Resources / Profile Image URLs" (view diff)
#
KartikPrabhu but then if I want to embed reply contexts do I also cache images from that?
#
tantek snarfed, feel free to link to Twitter dev docs here for clarification: http://indiewebcamp.com/Twitter#Profile_Image_URLs
#
snarfed sure. A
#
tantek KartikPrabhu: that's the use-case I think kylewm was talking about
#
snarfed tantek: er. sure. i'm a bit reluctant since this is more speculation than fact, but i'll add what i know
#
tantek add caveats as you wish :)
#
pauloppenheim i would expect caching to become more universal
#
pauloppenheim after all, it's required for true independence
benwerd joined the channel
#
KartikPrabhu another question: while linking to external posts shoudl I use "//example.com" too. The problem is that webmention receivers look for exact url match and target="https://example.com" won't match "//example.com" from my post source
#
tantek webmention requires absolute URLs
#
tantek for target and source
erinjo joined the channel
#
KartikPrabhu tantek: so "//example.com" is not absolute... asking so I know which URLs are safe to replace without "http" in my site
#
tantek snarfed, when did you start doing everything https on snarfed.org?
#
snarfed tantek: good question! not sure
#
tantek estimated year?
#
snarfed maybe this year
#
snarfed could dig it up later but not now, sorry
#
tantek no problem - just resorting examples by year
benwerd and paulcp joined the channel
#
tantek.com created /Template:tantek (+24) "r" (view diff)
#
tantek.com edited /Template:tantek (-19) "r" (view diff)
#
tantek.com edited /https (+1700) "/* Level 4 security */ no warnings, lock icon at least, jb/snarfed years, kylewm caveats, Check..., FAQ for external content, capture brainstorming for splitting mixed content warning fix to new level" (view diff)
#
tantek !tell kylewm when did you start posting checkins? very cool!!!
#
Loqi Ok, I'll tell them that when I see them next
#
@willnorris @schnarfed #IndieWebBugReporting :) https://willnorris.com/2014/05/weird-brid-gy-author-urls (POSSE'd to https://github.com/snarfed/bridgy/issues/160) #indieweb (twitter.com/_/status/471757595623968768)
#
@hfwilke RT @kevinmarks: A kickstarter to bring Reading Rainbow to everyone on the web: https://www.kickstarter.com/projects/readingrainbow/bring-reading-rainbow-back-for-every-child-everywh #indieweb https://twitter.com/kevinmarks/status/471744474763501568/photo/1 (twitter.com/_/status/471759098367574016)
Kyle-K, paulcp and luxagraf joined the channel
#
@dotpeople #decentralization #indieweb #foss How Google missed the boat http://scripting.com/2014/02/20/howGoogleMissedTheBoat.html?utm_content=buffer42e71&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer (twitter.com/_/status/471760352360017920)
chrissaad joined the channel
#
tantek.com edited /checkin (+153) "/* IndieWeb Examples */ add kylewm" (view diff)
eschnou joined the channel
#
tantek.com created /User:Petermolnar.eu (+78) "stub with an h-card" (view diff)
#
tantek.com edited /https (+283) "/* Level 5 security */ dates for willnorris https level 4-5 support with citations, link user page for Peter, forward secrecy, bold headings" (view diff)
#
tantek !tell dariusdunlap when did you start supporting https for your admin pages with a self-signed cert per https://indiewebcamp.com/https#Level_2_security ? Was it at IWC SF?
#
Loqi Ok, I'll tell them that when I see them next
luxagraf joined the channel
#
tantek.com edited /User:Dunlaps.net (+26) "h-card it up" (view diff)
#
tantek.com edited /https (+275) "/* Level 2 security */ bold headings, user: links, since dates" (view diff)
#
kylewm tantek: dariusdunlap got setup with a legit cert (Level 3) at IWC SF
#
Loqi kylewm: tantek left you a message 45 minutes ago: when did you start posting checkins? very cool!!!
#
tantek hmm - re: https://twitter.com/willnorris/status/471757595623968768 I thought someone else aaronpk, barnabywalters was posting GH issues to their own site and POSSEing to GH.
#
@willnorris @schnarfed #IndieWebBugReporting :) https://willnorris.com/2014/05/weird-brid-gy-author-urls (POSSE'd to https://github.com/snarfed/bridgy/issues/160) #indieweb (twitter.com/_/status/471757595623968768)
#
kylewm.com edited /checkin (+0) "/* Kyle Mahan */ add exact date" (view diff)
nloadholtes joined the channel
#
tantek kylewm indeed - just saw his post: https://dunlaps.net/darius/2014/03/25/indieweb-update/
eschnou joined the channel
#
tantek.com edited /https (+231) "DariusDunlap got to Level 3 at or right after IndieWebCampSF, some style tweaks" (view diff)
kylewm and icco joined the channel
#
tantek !tell pauloppenheim when did you start using a cert from a trusted CA on your own site? Do you remember when you got the cert / installed it / made sure it worked for https://pauloppenheim.com/ ?
#
tantek !tell aaronpk when did you start using a cert from a trusted CA on your own site? Do you remember when you got the cert / installed it / made sure it worked for https://aaronparekci.com/ ?
#
tantek hey Loqi, what's up?
#
Loqi Ok, I'll tell them that when I see them next
#
Loqi Ok, I'll tell them that when I see them next
#
tantek ah there we go
dybskiy and dybskiy_ joined the channel
#
Jeena snarfed yeah my website does that but I don't want to save the likes in the same database structure as my notes and I don't want to show them in the same views, etc. it is mostly a UI question not so much a implementation question.
#
snarfed Jeena: right, makes sense that it's a UI question. so, why not store them in the same structure and just hide them from the UI?
#
snarfed (just curious, you can obviously do whatever you want :P)
#
Jeena it is just because it is easier to handle in its own table, but moslty just because I didn't think of consolidating all those from the beginning and now I have different properties for different types of posts in the db. I would need to rewrite it and write migrations to rebuild the database structure and that is just too much work for now ^^
#
snarfed ok! fair enough
#
tantek mo tables, mo problems
#
pauloppenheim tantek: SSL added 2012-01
#
Loqi pauloppenheim: tantek left you a message 15 minutes ago: when did you start using a cert from a trusted CA on your own site? Do you remember when you got the cert / installed it / made sure it worked for https://pauloppenheim.com/ ?
#
tantek pauloppenheim: nice! where did you get your cert?
#
pauloppenheim tantek: dreamhost, which just uses comodo
#
pauloppenheim someday i will use a real cert
#
tantek how is that not a real cert?
#
tantek looked legit (got a lock icon)
#
pauloppenheim it's real, but i'm not in control of the private key or host or anything else in the chain
#
pauloppenheim for many purposes SSL shouldn't be considered guaranteeing of privacy, but in my case it is possible to have somewhat better guarantees than i have now.
tilgovi and lukebrooker joined the channel
#
bret https is hardish
#
pauloppenheim yes, and even if you get it right there's only so much good it does, depending on everything else
#
pauloppenheim INDIEBOX WILL SAVE US
fmarier joined the channel
#
tantek nearly any amount of https does some incremental good
#
tantek.com edited /https (+512) "paul since 2012-01, guessing aaronpk since 2013, some reasons for Level 3 including privacy per Tim Bray post, added him there too" (view diff)
#
tantek gives up on where/how to document indie bug reports per https://twitter.com/willnorris/status/471757595623968768 - someone else is welcome to take a crack at it (and decide what /post-type-page it should go under)
#
@willnorris @schnarfed #IndieWebBugReporting :) https://willnorris.com/2014/05/weird-brid-gy-author-urls (POSSE'd to https://github.com/snarfed/bridgy/issues/160) #indieweb (twitter.com/_/status/471757595623968768)
luxagraf, jacus, paulcp and benwerd joined the channel
#
snarfed.org edited /Twitter (+837) "/* Profile Image URLs */ API details" (view diff)
#
snarfed.org edited /Twitter (+1) "/* Profile Image URLs */ fix typo" (view diff)
barnabywalters, bnvk, paulcp, luxagraf, caseorganic, jgee and KartikPrabhu joined the channel