#dev 2017-06-29

2017-06-29 UTC
[grantcodes], j_juran, dougbeal|mb1 and tantek joined the channel
#
ben_thatmustbeme !tell cleverdevil i just updated stream.thatmustbe.us for the change to JF2, it should be up to date now
#
Loqi Ok, I'll tell them that when I see them next
#
grant.codes created /PostrChild (+587) "Created page with "'''<dfn>PostrChild</dfn>''' is a [[Micropub]] client in [[chatbot]] form. Get it at [http://postrchild.com postrchild.com] == About == PostrChild is created by [[User:Grant.cod..."" (view diff)
#
grant.codes edited /Node.js (+122) "/* Libraries */" (view diff)
#
grant.codes edited /Node.js (+18) "/* Libraries */" (view diff)
KevinMarks joined the channel
#
grant.codes edited /Micropub/Clients (+112) "/* Implementation status */" (view diff)
#
ben_thatmustbeme now on to creating jf2.rocks :D
#
tantek nice
#
ben_thatmustbeme aaronpk: are you cool with me using some of the styling from webmention.rocks
#
ben_thatmustbeme i know its apache license, but just want to ask anyway
davidmead joined the channel
#
tantek ben_thatmustbeme: most importantly, do you have a logo for jf2.rocks?
#
ben_thatmustbeme nope, an i'm bad at logos
#
ben_thatmustbeme i was playing with ideas for JF2 http://ben.thatmustbe.me/static/jf2.svg
#
ben_thatmustbeme besides, jf2 is more just a validator
#
aaronpk ben_thatmustbeme: yeah sure go ahead
#
ben_thatmustbeme thanks
j_juran joined the channel
#
ben_thatmustbeme http://jf2.rocks/
#
ben_thatmustbeme eh, its something
#
aaronpk nice
#
aaronpk steal this css: https://gist.github.com/davidgilbertson/6d0313bc3c6ecb5757e822620e9ebaa4
#
ben_thatmustbeme done
[kiai] and j12t joined the channel
#
ben_thatmustbeme and a highly incomplete (doesn't check anything past depth 1) validator working at http://validator.jf2.rocks/
#
ben_thatmustbeme outputs from http://stream.thatmustbe.us/ seem to validate at least
j12t and leg joined the channel
#
tantek.com edited /discuss (+176) "put minimal setup ahead of Channels to help new users" (view diff)
[evan_sirchuk] and j_juran joined the channel
#
tantek.com uploaded /Special:Log/upload "uploaded "[[File:2017-179-hwc-sf.jpg]]""
tantek, gRegorLove, barpthewire, tbbrown, AngeloGladding, cweiske, j12t, j_juran and wagle joined the channel
#
www.svenknebel.de edited /User:Www.svenknebel.de (+69) "/* short-term itches */ editing reqs" (view diff)
#
www.svenknebel.de edited /User:Www.svenknebel.de (+60) "/* long-term Itches/random ideas */" (view diff)
#
www.svenknebel.de edited /User:Www.svenknebel.de (+114) "/* mid-ter itches */" (view diff)
j_juran and j12t joined the channel
#
raucao aaronpk: i just found https://github.com/aaronpk/omniauth-indieauth and as huginn is using omniauth, i think this might be a great option for having users connect their indieweb sites for micropub
#
Loqi [aaronpk] omniauth-indieauth: IndieAuth strategy for OmniAuth
#
raucao does it have some hidden additional features like e.g. getting the webmention endpoint, or are those supposed to be implemented seperately?
#
raucao rephrasing question: as i don't see sth like that in the code, would you want it to be added there, or not? ;)
#
sknebel raucao: webmention endpoint? do you mean authentication endpoint? if yes, that's not needed because it delegates everything to indieauth.com
#
raucao yes, the url i can send webmentions to. might be a stupid question, if that's static
#
cweiske you have to discover that separately
#
raucao ok, thx
#
raucao but could make sense to do it automatically in the omniauth strategy
#
sknebel raucao: and I'm not sure why you'd want it to be in an auth plugin.
#
raucao and just return it in the user hash
#
raucao sknebel: because it's part of the user's resources
#
cweiske it depends on your use case. some people want only to know who the user is, with no additional info
#
raucao it also returns an avatar e.g.
#
Zegnat To login to the wiki, the wiki would want to know me as a user, but has 0 need for webmentions. And I do not have to support webmentions at all to be able to use my URL as login.
#
sknebel oh, it goes out and parses already
#
raucao yes, i realize that, but some people do need it (esp. everyone implementing micropub software), so it would just be much easier to return it there
#
sknebel then fetching the rel from the parsed data wouldn't really be overhead
#
raucao exactly
#
Zegnat Hmm, I need to take another good look at micropub software I think. As I would authenticate with a different URL then I want to post to. Is that supported anywhere?
#
cweiske so should also microsub data be returned? and all h-card data?
#
sknebel micropub software doesn't need the webmention endpoint :P it needs the micropub endpoint. maybe an option to return the entire parser result could make sense... but to me it'd make more sense to have a switch to turn the parsing off entirely and do it yourself if you need it
#
raucao yes, that
#
raucao sry i meant micropub
#
raucao although i'm building both right now, so i need both :)
#
raucao "After the user signs in, the uid reported by OmniAuth will be their URL they entered. The gem will also attempt to parse their URL for an h-card, and return their real name and profile image if available."
#
cweiske probably because other auth methods also provide those data
#
raucao i think it's a valid question why it can't also return webmention/micropub urls then
#
raucao ah ok
#
raucao didn't know auth returned an avatar. seems a bit strange
#
cweiske openid data include name and email address if you request them
#
loqi.me edited /User:Kaja.sknebel.net (+151) "/* See Also */ new section" (view diff)
#
Zegnat Auth with Facebook usually gives access to your avatar to the third-party IIRC
#
sknebel Zegnat: re micropub, you'd have to have the mp-endpoint for licit.li on your homepage as micropup endpoint, but if licit li knows that your homepage can post it'd work
#
raucao ok. my question is still valid and only the author can really decide if they want it in their lib or not
#
raucao thank you all!
#
raucao will ask on github
#
sknebel Zegnat: s/"your homepage can post"/"someone logged in as your homepage url can post"
#
Zegnat raucao always good to file issues on GitHub for things that aren’t clear :) If you need a discussion, line it up with the contributor’s time
#
Zegnat what time is it for aaronpk/
#
Loqi Sorry, I don't see aaronpk/ on https://indieweb.org/irc-people
#
Zegnat what time is it for aaronpk?
#
Loqi In aaronpk's timezone, US/Pacific, it is currently 2:57am on June 29
#
Zegnat sknebel, it requires the mp-endpoint for blog.example.org to be listed on example.org for micropub to work? That feels iffy.
#
Zegnat Well, I’ll see how it works when I get that far in the development of my new feed :)
#
sknebel Zegnat: yes, that's how it works
#
sknebel somewhere on the brainstorming page are some ideas about/around this, but...
#
Zegnat What is micropub?
#
Loqi Micropub is an open API standard (W3C Recommendation) that is used to create, update, and delete posts on one's own domain using third-party clients, and supersedes both MetaWeblog and AtomPub https://indieweb.org/Micropub
#
sebsel But Zegnat can just use Quill now right? Sign in as vanderven.se/martijn/, have a rel=micropub to licit.li/micropub. The only thing is that licit.li/micropub should accept tokens for vanderven.se/martijn/, but that's Martijn's problem ;P
#
sebsel wait this is what sknebel said.
#
sebsel goes back in the box
#
Zegnat sebsel, sure, but now I need to micropub to *either* licit.li or zegnat.net, and obviously I do both as me (me being vanderven.se/martijn/). Solve it please ;)
#
sknebel it's a bit annoying for cases where you have multiple blogs or such, then you need extra identites just for those
#
Zegnat likes how he was both Zegnat and Martijn in 1 IRC line
#
Zegnat It just doesn’t make sense to me to include a single micropub URL as part of my online identity.
#
sknebel yeah
#
Zegnat So I have both a philosophical (my primary identity should not have to claim that I only publish to one place) and a technical (multiple sites) issue with it.
#
Zegnat multi site is pretty well documented on brainstorm by aaronpk already!
#
sebsel Hm. You can also on licit.li do rel=micropub licit.li/micropub and then rel=authentication vanderven.se/martijn/auth rihgt?
#
Zegnat aaronpk++
#
Loqi aaronpk has 59 karma in this channel (1364 overall)
#
Zegnat That would identify me as licit.li to the micropub client though, right?
#
sknebel sebsel: but then you log in as licit.li
#
sknebel (afk, lunch)
#
sebsel this is what you want right? :(
j12t joined the channel
#
Zegnat No. I want to login as me (I am vanderven.se/martijn/) and say I want to publish to either licit.li or zegnat.net
#
cweiske you can only have one MP endpoint
#
sebsel reads https://indieweb.org/Micropub-brainstorming#Multiple_Micropub_Endpoints
#
cweiske so you either have to have an MP endpoint that is a proxy, allowing to post to different endpoints e.g. by setting a certain variable
#
cweiske or have multiple identities
#
Zegnat Yes, cweiske, I hadn’t read up on it yet before this morning (as I am not currently implementing mp), but that is how the current spec works. And I have the 2 previously stated issues with that
barpthewire, j_juran and j12t joined the channel
#
@AlexK Testing Webmentions with Kirby’s Webmention plugin. Probably not going to work. Let’s see…Test 1Test 2Test 3Test 4Test 5Test 6Test 7Test 8T… (twitter.com/_/status/880406317634134016)
#
aaronpk Catching up
#
aaronpk it doesn't make sense for the IndieAuth plugin to return the webmention endpoint because there may be multiple webmention endpoint. The webmention endpoint depends on the page you're sending the webmention to
KartikPrabhu, j_juran, tbbrown, singpolyma, j12t and KevinMarks joined the channel
#
ben_thatmustbeme http://jf2.rocks/
#
ben_thatmustbeme woo, validator making good progress
#
aaronpk oh good, the xray output passes :)
#
aaronpk whoa i didn't know about this category: https://indieweb.org/Category:PostType
#
ben_thatmustbeme oh cool
#
ben_thatmustbeme aaronpk: its pretty hard to break the rules for just plain JF2, there are few
#
raucao aaronpk: thx
#
ben_thatmustbeme and even fewer in the actual validator yet
#
loqi.me edited /task (+54) "/* See Also */ new section" (view diff)
[miklb], [eddie], j12t, j_juran and KevinMarks joined the channel
#
Zegnat [eddie]: htodo inherited all its properties from hevent in the original mf
#
Zegnat so anything that would fit in an already existing h-entry and h-event mixed feed could easily also start supporting h-todo
#
Zegnat (Although h-todo would be new, it could be based on the old htodo format.)
#
Zegnat for reference http://microformats.org/wiki/htodo
#
Loqi htodo
#
[eddie] u-attach could always work
#
[eddie] That would allow for an h-cite for embedded context on what is attached
#
[eddie] Would be a bit cleaner and more sustainable than the current method
#
Zegnat Interesting, I don’t think I have seen u-attach yet. What mf is that one from?
#
[eddie] it’s blended
#
[eddie] htodo has an “attach” property
#
Zegnat Oh, attach was on old event
#
[eddie] yep
#
[eddie] and subsequently htodo
j4y_funabashi joined the channel
#
Zegnat yeah, that one never made it into the new h-event
#
[eddie] Yeah, doesn’t seem particularly relevant to events
#
sebsel I like the idea of h-todo having a dt-start and dt-end, but then it's more a h-action and oh boy there we go.
#
[eddie] but seems a lot more relevant to a web-based h-todo
#
Zegnat I was thinking a new h-todo would be an extension on h-event, like the old htodo was based on hevent.
#
[eddie] haha
#
Loqi nice
#
[eddie] gotcha
#
[eddie] sebsel: I see todo and action as the same
#
[eddie] Do you see differences?
#
sebsel well, 'todo' seems future, where 'action' with a dt-end can be past.
#
aaronpk keep in mind: http://microformats.org/wiki/process
#
Loqi The microformats process
#
sebsel yeah I was reading that. we are skipping things
#
Zegnat htodo was basically hevent with 3 properties added: "completed", "due", "percent". I assume this mirrors the VTODO spec (which may or may not be supported by calendar and todo software already!) so it feels like it would make sense to port that to mf2
#
aaronpk also there's a giant warning on the top of htodo that it didn't follow the process so...
#
sebsel so...?
#
sebsel I see the warning but I don't know what that leads to
#
sebsel 'do not use'?
#
aaronpk don't treat it as authoritative
#
Zegnat It is an initial draft that didn’t follow the process. That’s all it means.
#
aaronpk and it means more work is needed around the process
#
aaronpk and it means if you follow the process, you may come to a different conclusion than what's on that page
#
[eddie] That’s a good catch aaronpk
#
Zegnat I am conflicted on the mf/iw process difference though. E.g. for indieweb I would say: pick whatever sounds logical and start shipping (e.g. h-todo), for microformats I would say: follow process and document before implementing.
#
aaronpk you can ship on your site without microformats
#
sebsel well it all started with wanting it to micropub
#
aaronpk but even when implementing something for yourself, it's usually a good idea to researching existing systems
#
Zegnat And I think taking VTODO from an existing standard, and spinning off of the first version of htodo, is a great start
#
sebsel but yeah I do not want to micropub this today.
#
sebsel take your time and investigate
#
aaronpk concrete next step: document the properties of tasks of several existing systems: github issues, wunderlist, todoist...
#
sebsel todo is kind of tricky too, because I have abandoned a lot of systems :)
#
aaronpk what is a task?
#
Loqi A task is a note about something that you need to do, are doing or have done https://indieweb.org/task
#
aaronpk need non-indieweb examples there
KevinMarks_ joined the channel
#
aaronpk my interest in this is mostly wanting a replacement for github issues more than a personal todo manager
#
eddiehinkle.com edited /task (+135) "Add some stubs for silo research" (view diff)
#
aaronpk i have a few projects that i've made a github repo (and on my private gogs instance) for even though there is no code there
#
[eddie] Added some stubs of some areas I plan on trying to brainstorm out
#
aaronparecki.com edited /task (+77) "add a few more that i use" (view diff)
#
aaronpk ?
#
aaronpk also UI screenshots!
#
[eddie] :thumbsup:
#
j4y.co uploaded /File:Screenshot_2017-06-29_16-27-49.png "screenshot of wunderlist main screen"
#
sebsel on it!
#
j4y.co edited /task (-13) "/* Silo Examples */" (view diff)
#
seblog.nl uploaded /File:task-in-things3.jpg "View of a new task in Things 3 for macOS"
#
j4y_funabashi nice, glad to see lots of people are itching for task posts :D
#
sebsel whoa, merge conficts
#
seblog.nl edited /task (+1046) "Added Things 3 + description of what a task has" (view diff)
#
sebsel :S
#
sebsel I think i now missed something
#
sebsel how does this work?
#
sebsel I will re-add your work j4y_funabashi
#
j4y_funabashi sebsel: oh cool, I just added a screenshot for wunderlist
#
seblog.nl edited /task (+64) "oops" (view diff)
#
sebsel :)
#
j4y_funabashi task << https://www.theguardian.com/technology/2016/apr/20/seven-of-the-best-to-do-list-apps
#
loqi.me edited /task (+87) "j4y_funabashi added "https://www.theguardian.com/technology/2016/apr/20/seven-of-the-best-to-do-list-apps" to "See Also"" (view diff)
#
Loqi ok, I added "https://www.theguardian.com/technology/2016/apr/20/seven-of-the-best-to-do-list-apps" to the "See Also" section of /task
#
j4y_funabashi Anyone used https://habitica.com/ ? It looks pretty interesting
#
[eddie] uh oh
#
[eddie] ?
#
[eddie] At the Baltimore HWC the other night we were just talking about gamification
#
[eddie] (primarily through me being hooked on Swarm’s coins for checkin)
#
petermolnar I'm just going to keep RPG in sci-fi and fantasy (aka as an escape from everydays)
#
KartikPrabhu "treats your real life like a game" <sigh>
#
seblog.nl uploaded /File:project-in-things3.jpg "A project in Things 3 for macOS"
#
seblog.nl edited /task (+175) "/* Things 3 */" (view diff)
#
sebsel I really like Things 3 actually :P
#
Zegnat Last time I looked at habitica.com it was crazy to try and self-host.
#
sebsel oh yeah, I used that one too!
#
Zegnat I seem to recall they were working on their commercial parts at the time as well, leading to a difference between open-source self-hostable code and code they were running themselves.
#
Zegnat Bit of a mess.
#
seblog.nl edited /task (+76) "/* Silo Examples */ add Habitica" (view diff)
#
sebsel writing about task managers is the perfect way to procrastinate
#
sebsel is going to do something else now
#
KartikPrabhu todo: write about todo lists
#
sebsel at one point I actually self-hosted a thing on https://todo.5eb.nl/
#
sebsel but it seems like it's gone now
KevinMarks and dougbeal|iOS joined the channel
#
@rubygems jekyll-webmention_io (2.2.0): This Gem includes a suite of tools for managing webmentions in Jekyll: * Tags -… https://rubygems.org/gems/jekyll-webmention_io (twitter.com/_/status/880460215677747200)
j_juran, j12t and [cleverdevil] joined the channel
#
[cleverdevil] waves
#
Loqi [cleverdevil]: ben_thatmustbeme left you a message 16 hours, 3 minutes ago: i just updated stream.thatmustbe.us for the change to JF2, it should be up to date now
#
[cleverdevil] Oh, nice.
#
[cleverdevil] Thanks, ben_thatmustbeme
#
ben_thatmustbeme also jf2.rocks is a thing now
#
ben_thatmustbeme validator.jf2.rocks .... but very early
#
[cleverdevil] Awesome. Remind me, where is the code that backs this?
#
ben_thatmustbeme linked at the bottom of those pages
#
[cleverdevil] I'd like to create a quick script that lets me dump a bunch of sample content from real sites.
#
Zegnat Argh, running into problems with selfauth and unsure if it is untested original code or errors in my new code. Looks like I should also write an app that actually uses the login flow just so I can more easily debug :(
#
ben_thatmustbeme you can just curl those urls, but the code would certainly be faster
#
ben_thatmustbeme Zegnat: whats the issue?
#
Zegnat Apparently something I did invalidated the codes it is sending back
#
Zegnat But there might also be problems with the default validation code already. Is anyone running selfauth live right now?
#
Zegnat https://github.com/Inklings-io/selfauth/blob/master/index.php#L101-L104 sets $fullcode and then requires $full_code ...
#
Zegnat So I am not sure any verification is supposed to work with the current version from master
#
Zegnat Now writing my own consumer. I was testing by using telegraph.p3k.io
#
[cleverdevil] curl is certainly easier ?
#
[cleverdevil] I may just do that.
#
Zegnat curl would work too, but a nice big button to keep hitting is nice ;)
#
ben_thatmustbeme would also save my server the load, lol
#
ben_thatmustbeme depends on how many sites you are running through
#
ben_thatmustbeme Zegnat... well then
#
ben_thatmustbeme thats clearly a bug
#
Zegnat I also thought I spotted a bug in how scope is being included in the token. But because it is token generation I am currently rewriting that may have gotten lost in my code already.
#
Zegnat Ah, yes, when $scope is passed to verify_code() it can be an array. Inside verify_code it just gets concatted with strings. That might lead to strange things happening.
#
ben_thatmustbeme let me know when you push that code, i can test out the setup myself too
#
ben_thatmustbeme hmm
#
ben_thatmustbeme i see that now
#
ben_thatmustbeme i would say just pass the version thats already stringified with commas to them both
#
ben_thatmustbeme this is what i get for doing too many things at once
#
ben_thatmustbeme and all on a train where i have no internet access
#
Zegnat Yes. Or even a hash of that string. As the scope string theoretically is of an infinite length
#
ben_thatmustbeme i suppose
#
ben_thatmustbeme feel free to go ahead with that then. whatever you feel like. Obviously i broke it something bad
#
ben_thatmustbeme should probably put in some tests to make sure things like generate_code and verify_code always agree
#
Zegnat I started tinkering just to replace the MD5s with proper HMAC (which is what you want, the token is then a signed message). And then my tests break, and turns out there were bugs elsewhere. So not sure what path I should take now :p I’ll keep hacking at it until it works again, I guess :)
#
ben_thatmustbeme Zegnat: if you like i can fix the bugs i added
#
ben_thatmustbeme and you can just focus on the hmac piece
#
Zegnat I’m just doing everything in one big swoop now. But pausing it for a minute and first making a one button tester that records the entire back and forth.
#
ben_thatmustbeme cool, let me know when you push the code and I can test it
#
Zegnat Some time late this evening (CEST), I will probably be interrupted for dinner. Will push to a side branch so we can test before merging.
#
Zegnat I might sneak in a quick bug-fixes-commit to master first
#
ben_thatmustbeme no one is using it live (as far as i know) yet
#
ben_thatmustbeme so i'm okay just doing it in master too, but sounds good
#
ben_thatmustbeme i should probably start transitioning to using branches for it
#
[cleverdevil] That worked great, ben_thatmustbeme.
#
[cleverdevil] I've got a nice little script that takes in a list of sources, then uses your site like an API to convert them to JF2, and dumps the individual JF2 formatted items to disk by source.
#
[cleverdevil] This will be a nice way to generate sample data for /together
#
Loqi definitely
#
ben_thatmustbeme please feel free to add that sample data to https://github.com/dissolve/jf2_validator
#
Loqi [dissolve] jf2_validator
#
ben_thatmustbeme if its a lot, just add it to a subfolder of samples/jf2
#
ben_thatmustbeme i need to add a jf2feed version to that site too
#
gregorlove.com edited /Planning () "(-3198) /* Summit */ link to archived planning notes" (view diff)
#
Zegnat keeps finding bugs that stop him
#
Zegnat Including " in state breaks the entire thing
#
ben_thatmustbeme wait, why would " be in the state?
#
ben_thatmustbeme oh, wait, that comes from the client
#
ben_thatmustbeme so ... ugh
#
Zegnat state=serialize($object)
#
[cleverdevil] ben_thatmustbeme one thing I've noticed is that many items on tantek's site don't have 'published' as a field.
#
aaronpk checks the list of valid characters for state
#
Zegnat is there a valid list? I thought it was all up to client?
#
Zegnat Still shouldn’t just trust it with whatever
#
aaronpk %x20-7E
[kevinmarks] joined the channel
#
aaronpk https://tools.ietf.org/html/rfc6749#appendix-A.5
#
Zegnat does not speak native ASCII
#
Zegnat Does that range include " ?
#
[cleverdevil] I'm also seeing wildly different parsed results for checkins between my site and aaronpk's
#
ben_thatmustbeme yes, i believe it does
#
ben_thatmustbeme includes space, !, ", +, %,
#
Zegnat I am tempted to start by using filter_input() for all values we get from a client and validate those before doing anything else.
#
Zegnat If everything validates, we still need to encode them for our own form fields.
#
ben_thatmustbeme Zegnat++ i'm all for improving the safety of it in any way
#
Loqi zegnat has 17 karma in this channel (103 overall)
#
Zegnat adds to todo list
#
aaronpk oh, this is the problem: https://github.com/Inklings-io/selfauth/blob/master/index.php#L184
#
aaronpk you need htmlspecialchars around all those
#
Zegnat yes
#
[cleverdevil] https://github.com/cleverdevil/together/blob/master/sampledata/generate.py <- the quick script I threw together/
#
aaronpk right now you could even inject a script tag there
#
Zegnat I am going to use this myself, hopefully live before the day is over, so there might be a big pull coming up later ben_thatmustbeme ;)
#
ben_thatmustbeme cool
#
[cleverdevil] now, meeting, bbiaf
#
ben_thatmustbeme i just started it as a proof of concept, would love to see it actually made safe and usable
#
aaronpk state="><script>alert('gotcha')</script><input "
#
Zegnat you can put that in any field, aaronpk, there is no URL validation I believe
#
ben_thatmustbeme no, there isn't that definitely needs to be added
#
Zegnat Which we can get for free from filter_input(), even on lower versions of PHP IIRC.
#
Zegnat So... working on it. I am starting to smell dinner though, so will probably be called a way any minute
#
ben_thatmustbeme 5.2.0 and up
#
aaronpk wow chrome blocked the page
#
ben_thatmustbeme so yeah, i'd say filter_input is good
#
aaronpk "Chrome detected unusual code on this page and blocked it to protect your personal information (for example, passwords, phone numbers, and credit cards)."
#
ben_thatmustbeme what?
#
aaronpk "ERR_BLOCKED_BY_XSS_AUDITOR"
#
ben_thatmustbeme woah
#
Zegnat Oh. Right. I always forget XSS auditor is a thing, hahaha.
#
Loqi rofl
#
Zegnat So rarely run into it
#
Zegnat ERR_BLOCKED_BY_XSS_AUDITOR++
#
Loqi err_blocked_by_xss_auditor has 1 karma
gRegorLove, [anomalily], j_juran, [chrisaldrich], [miklb], KartikPrabhu and tantek joined the channel
#
tantek.com edited /Events (-14) "move June events to past" (view diff)
snarfed joined the channel
#
tantek updated warning text and such at the top of htodo so hopefully that helps
#
[eddie] That color at the top of the page does help a lot. Because when I had looked at the page the top section didn’t stand out earlier in the day. Now it definitely does
#
tantek that page predated the warning template that gives that color
#
tantek.com edited /Events (+716) "add 2017-07-26 HWC" (view diff)
#
tantek.com edited /Events (+1498) "/* 2017 */ Add August HWC" (view diff)
#
kartikprabhu.com edited /User:Kartikprabhu.com (+12) "/* Setup */ add itch section title" (view diff)
#
[eddie] !tell aaronpk: I added a media endpoint but teacup still doesn’t seem to have a way to upload an image. Anything special need to happen for it to detect the media endpoint? I have it added as part of the ?q=config response
#
Loqi Ok, I'll tell them that when I see them next
#
[eddie] !tell aaronpk: Oh that’s about teacup ?
#
Loqi Ok, I'll tell them that when I see them next
j_juran joined the channel
#
tantek.com edited /Falcon (+407) "/* event posts */ quick fixes needed, reprocess previous task items done vs reprioritize" (view diff)
#
kartikprabhu.com edited /itches (+114) "/* IndieWeb Examples */ add me" (view diff)
eli_oat and tbbrown joined the channel
#
gRegorLove tantek: should htodo be removed from the see also on /task?
#
tantek let's see if the warnings on htodo are sufficient
#
tantek it is related even if not recommended
#
[kevinmarks] Like me posting attention.xml to see also - it can be a warning
#
@rubygems jekyll-webmention_io (2.2.1): This Gem includes a suite of tools for managing webmentions in Jekyll: * Tags -… https://rubygems.org/gems/jekyll-webmention_io (twitter.com/_/status/880515383198986240)
#
Zegnat ben_thatmustbeme, I wonder if this is turning into too much https://gist.github.com/Zegnat/e6fa541a7226e18f95b4231a51423925
#
ben_thatmustbeme Zegnat, if you are going to be using it personally, go as overboard as you like
#
Zegnat Haha, I guess. I just would like to keep the selfauth codebase small. This is still readable, but still a lot of extra code
#
Loqi nice
#
aaronpk it's important to not get hacked tho :)
#
Loqi aaronpk: [eddie] left you a message 1 hour, 9 minutes ago: I added a media endpoint but teacup still doesn’t seem to have a way to upload an image. Anything special need to happen for it to detect the media endpoint? I have it added as part of the ?q=config response
#
Loqi aaronpk: [eddie] left you a message 1 hour, 9 minutes ago: Oh that’s about teacup ?
#
aaronpk [eddie] IIRC teacup only checks when you log in,so you might have to log out and back in again
[eddie] joined the channel
#
[eddie] I think i logged out and back in.
#
[eddie] I’ll try again
#
[eddie] I tested on micropub.rocks and it found and sent the image to the endpoint so I know it works
#
[eddie] Hmmm yeah, logged out and back in, still nothing
#
schmarty might need to be forced to forget all your info. iirc that feature was recently added to quill?
j_juran joined the channel
#
aaronpk hm okay i'll have to add that to teacup
#
aaronpk whoa just passed 1000 people who have attempted to sign in to quill
#
[eddie] Wow!
#
aaronpk or rather, 1000 domains, some of which are not actually URLs
#
aaronpk [eddie]: i just reset your account manually, try logging in again
#
snarfed quill++
#
Loqi quill has 1 karma
#
ben_thatmustbeme Zegnat, i don't think small is as important. so long as its one file
#
ben_thatmustbeme and readable
#
[eddie] Hmmm, odd. It definitely reset. Still no image upload area
#
aaronpk hm it didn't find it
#
Zegnat continues on his quest for extremely careful parameter checking
#
Zegnat Not sure if I’ll finish tonight. Ugh. Wanted to have auth running.
#
aaronpk ahh teacup doesn't use q=config!
#
[eddie] ohh interesting ? How does it do it?
#
aaronpk that was before we had q
#
aaronpk so it was just making a GET
#
[eddie] ohhh
#
aaronpk i'm gonna fix it
#
[eddie] cool :thumbsup:
#
ben_thatmustbeme Zegnat, no? whats still left to do?
#
aaronpk [eddie]: k try loggin in again
#
[eddie] YAY ?
#
[eddie] It’s there ?
#
Zegnat Current way I do filter input on POST broke it separating post for verification and post after password.
#
[eddie] Thanks!
#
Loqi ?
#
aaronpk woo
#
Zegnat So mostly small things that break when you change other things. Stuck on a möbius strip.
#
KartikPrabhu Zegnat: so you change orientation when you go once around?
#
KartikPrabhu jk
#
Zegnat I can’t come up with a witty comeback to that. Your win KartikPrabhu ;)
#
KartikPrabhu for this one time ;)
#
KartikPrabhu it is a good thing your aren't stuck on a Klein bottle :)
[aarongustafson] joined the channel
#
[aarongustafson] Just updated my Jekyll plugin to add in async loading from webmention.io—for between publishes—and some other stuff. Docs here: https://github.com/aarongustafson/jekyll-webmention_io/
#
[aarongustafson] It lets you aggregate specific webmention types to display them differently, handles redirection (including legacy domains), counts, and more. I’ve got some more features to add in the coming week or so and welcome any feedback & feature requests.
#
tantek hello [aarongustafson] !
#
KartikPrabhu what is jekyll?
#
Loqi Jekyll is Ruby software that helps you create "Simple, blog-aware, static sites" suitable for static domain hosting https://indieweb.org/Jekyll
#
KartikPrabhu [aarongustafson]: could you add your plugin in that page ^
#
[aarongustafson] @KartikPrabhu sure thing
#
[aarongustafson] Hey tantek!
#
KartikPrabhu should we change the logs behaviour on @-mentions linking to Twitter? maybe default to people's websites and fallback to Twitter?
#
KartikPrabhu @-mentioning IRC usernames seems to be quite prevalent
#
tantek it's not prevalent, it's just not infrequent
#
KartikPrabhu or frequent ;) but yeah that was my point
#
KartikPrabhu specially due to the Slack bridge
#
aaronpk oops i thought the slack bridge removed that
#
tantek that would work too :)
#
KartikPrabhu @KartikPrabhu is a suspended account on Twitter :P
j_juran joined the channel
#
tantek KartikPrabhu - you should file a support ticket asking for it!
#
KartikPrabhu naah, not bothering with changing accounts
#
tantek changing is just one option. point is to have it at least so you can set the URL to your site
#
tantek an additional discovery mechanism as it were
#
KartikPrabhu I have little footprint on Twitter for that to matter. I am not "Famous" ;)
#
KartikPrabhu also I don't want to bother with more silo account management stuff
#
tantek I can respect that
#
snarfed tantek: can you actually file a twitter support ticket to ask for and get an inactive username?
#
snarfed every time i've looked at that in the past few years, the answer seems to be no. ie the last paragraph on https://support.twitter.com/articles/15362
#
tantek yes. especially if you have a trademark or are verified etc.
#
snarfed aha trademark
#
tantek and having the domain name may get you close enough
#
snarfed (don't see anything directly related on http://indieweb.org/twitter)
#
tantek hasn't really come up much
#
snarfed huh interesting. i wonder if the verified user part still applies now that anyone can get verified
#
snarfed next question, i wonder if you can de-verify yourself. i'd happily verify if it gets me @snarfed, but i don't want to stay verified
#
gRegorLove You're famous to us, KartikPrabhu!
#
KartikPrabhu KartikPrabhu ™ ©
#
tantek snarfed, that support page is also re:inactive accounts whereas *suspended* is something else entirely
#
snarfed ah yes true
#
tantek in general it makes sense on such systems to leave inactive accounts alone for occasional users
j12t joined the channel
#
tantek gives people a chance to "come back to" their Twitter accounts etc., which is in Twitter's incentive
#
tantek / interest
#
KartikPrabhu yeah I think FB does that too
#
KartikPrabhu or did
#
tantek hence why I figured owning domain name may be sufficient to take over a suspended account
#
snarfed agreed
#
tantek and if it does, would certainly make a good case to own your domain name!
j12t joined the channel
#
www.aaron-gustafson.com edited /Jekyll (+129) "Added jekyll-webmention_io" (view diff)
KartikPrabhu and [miklb] joined the channel
#
[miklb] aarongustafson++
#
Loqi aarongustafson has 2 karma
#
www.aaron-gustafson.com edited /Jekyll (+78) "Adding myself" (view diff)
#
www.aaron-gustafson.com created /User:Www.aaron-gustafson.com (+847) "Created page with "__NOTOC__ <span class="h-card">As would be expected from a former manager of the Web Standards Project, [https://www.aaron-gustafson.com/ <img src="https://www.aaron-gustafson.co..."" (view diff)
[kevinmarks] joined the channel
#
ben_thatmustbeme aarongustafson++
#
Loqi aarongustafson has 3 karma
#
gregorlove.com edited /Facebook (+464) "/* Criticism */ === Censorship === ProPublica citation" (view diff)
tantek and KartikPrabhu joined the channel
#
KartikPrabhu nice article on online and real life obfuscation http://nautil.us/issue/49/the-absurd/how-to-obfuscate
KevinMarks, AngeloGladding and KevinMarks_ joined the channel
#
sebsel hm, ben_thatmustbeme, selfauth sets a me-parameter in the final redirect URL, like IndieAuth.com, but according to https://github.com/aaronpk/IndieAuth.com/issues/85 that should not be used.
#
Loqi [fkooman] #85 do not send `me` to callback
#
sebsel aaronpk can is safely be removed now?
#
aaronpk it probably should be removed. if clients break then clients probably aren't using the state parameter and they should be using it
#
sebsel ok :)
#
sebsel Removed it from my code and filed an issue on selfauth
#
gregorlove.com edited /Planning (-395) "/* Completed */ rm 2015 after confirming /Planning archived on IWC pages" (view diff)
leg joined the channel
#
gregorlove.com edited /Planning (+637) "/* Past Planning Notes */ My current steps for archiving" (view diff)
davidmead joined the channel
#
AngeloGladding aaronpk or anyone else know of existing work regarding blogroll webmentions? https://indieweb.org/Vouch#Old_Notes alludes to something of the nature but certainly nothing concrete
#
Loqi AngeloGladding: rascul left you a message on 2016-10-26 at 12:49pm UTC: https://m.do.co/c/f07b4d2bfb77