#dev 2018-07-01

2018-07-01 UTC
[jgarber] joined the channel
#
[jgarber] aaronpk Did the TLS cert for indieauth.com expire? I’m getting an insecure connection warning in…
#
KartikPrabhu [jgarber]: yeah me too
#
[jgarber] KartikPrabhu: Thanks for confirming!
#
martymcgui.re edited /indiewebring (+13) "/* IndieWeb Examples */ my symbol" (view diff)
[schmarty], KartikPrabhu, tantek and [miklb] joined the channel
#
[miklb] anyone running their own gitlab instance on a server with other stuff already there?
#
[miklb] mostly a security question. https://docs.gitlab.com/omnibus/settings/configuration.html#loading-external-configuration-file-from-non-root-user
iasai and [jgarber] joined the channel
#
[jgarber] !tell aaronpk Just confirmed the indieauth.com TLS certificate expired tonight: “Not Valid After Saturday, June 30, 2018 at 7:59:59 PM Eastern Daylight Time”
#
Loqi Ok, I'll tell them that when I see them next
#
aaronpk ooh I thought it was using the letsencrypt one already!
#
[jgarber] The expired cert I’m seeing is from COMODO.
#
aaronpk fixed thanks!
#
aaronpk I had a 2-year wildcard cert that I was using before, but i've been switching them over to letsencrypt. somehow missed that one.
#
[jgarber] aaronpk Awesome, thanks! Glad that was an easy fix.
#
aaronpk letsencrypt++
#
Loqi letsencrypt has 1 karma in this channel (17 overall)
#
[jgarber] In the interim, I was looking at IndieLogin and it seems `client_id` wasn’t too happy with a `http://localhost:3000` URL.
#
[jgarber] I vaguely remember that also having been an issue on IndieAuth way, way, way back when. But that might be a fuzzy inaccurate memory.
#
aaronpk hm yeah that's probably not gonna work with indielogin.com
#
aaronpk indielogin.com isn't actually publicly available for other developers yet
#
[jgarber] Heh, I was testing just how beta it was. 😂
#
aaronpk I probably won't let it be used with localhost client IDs
#
[jgarber] Hrm, that’s gonna be a pain in the butt to develop against…
#
aaronpk what are you trying to do?
#
[jgarber] I’m running my website locally (it’s a Rails thing running on `localhost:3000`). With IndieAuth, the redirection flow works (through IndieAuth then GitHub) and I can successfully log in on `localhost`.
#
[jgarber] Based on your statement from a few minutes ago, IndieLogin won’t support that development workflow.
#
[jgarber] If I understood you correctly.
#
aaronpk i'm confused, where are you logging in to?
#
[jgarber] I’m working on some features on my personal website (sixtwothree.org). It’s a Rails app and before deploying anything, I work on it locally. Rails apps run in development mode on `http://localhost:3000`.
#
aaronpk k so far so good
#
[jgarber] Some features require I be logged in (e.g. admin views).
#
[jgarber] Currently, I’m using IndieAuth.com to handle authentication. I go to `localhost:3000/login`, (see it live: https://sixtwothree.org/login).
#
[jgarber] On `localhost:3000`, I can step through the exact same auth flow (via IndieAuth) as I would on the live version of the website and I end up authenticated and back on `localhost:3000`.
#
aaronpk via indieauth.com?
#
[jgarber] Yessir
#
aaronpk so you're using this to log in to your own website via github/twitter?
#
[jgarber] Yessir
#
aaronpk do you let anyone else log in to your site for any other reason?
#
[jgarber] Not to my knowledge, no. 😄
#
[jgarber] But since you’re there, give it a shot and see if you can log in!
#
aaronpk just tried and got a nice green banner at the top saying it worked, but the login link still says log in
#
[jgarber] Hahah
#
[jgarber] _perfect_
#
aaronpk was there a reason you didn't integrate a regular github or twitter login button via omniauth?
#
[jgarber] Ah, yeah, I see the logic for that now.
#
[jgarber] > was there a reason you didn’t integrate a regular github or twitter login button via omniauth?
#
[jgarber] Maybe? This version of the site was my first foray into IndieWeb stuff several years ago.
#
[jgarber] The vibe I’m getting is that I’ve done something rather novel here without realizing it…?
#
aaronpk i'm skeptical of allowing this sort of use of indielogin.com, since that wasn't really the intent of it. it sounds to me like this might be something better suited to the other half of what indieauth.com provides
#
aaronpk but I also hadn't actually considered this use case for that new service
#
[jgarber] …and now I’m confused as to the purpose of IndieAuth and IndieLogin…
#
[jgarber] Hah, did I bend the “sign in with your domain” back in on itself?
#
aaronpk it's more that I want to avoid getting back into this confusing situation that indieauth.com is in
[jgmac1106] joined the channel
#
[jgarber] No worries. Seems like I should be looking at other options for authenticating myself to my own site.
#
aaronpk i'm trying to think this through
[dougbeal] joined the channel
#
aaronpk maybe this is an okay use case
#
aaronpk question: have you explored any of the micropub stuff yet?
#
[jgarber] That’s been on the to-do list for some time, yes.
#
aaronpk but haven't yet tried it out?
#
[jgarber] More: haven’t had the time to devote to it yet.
#
aaronpk sure
#
aaronpk I ask because indielogin.com isn't going to help you on that side of things
#
[jgarber] On the Micropub side of things?
#
aaronpk right
#
[jgarber] In what way(s)?
#
aaronpk indielogin.com doesn't ever issue access tokens, which you need for micropub
#
aaronpk my plan is to write an "IndieAuth server as a service" and launch it at myindieauth.com, and that is what you'll be able to use for building a micropub server
#
[jgarber] Ah, so IndieLogin is identity not authorization?
#
aaronpk yeah
#
[jgarber] …where IndieAuth does both?
#
aaronpk indieauth.com currently does both
#
aaronpk which is why it's so confusing
#
[jgarber] Breakthrough! Okay, I get it now.
#
aaronpk tell you what, if you're willing to be a guinea pig for a few months, i'll enable your domain and localhost:3000 on indielogin.com, as long as you are willing to eventually change that to myindieauth.com if I decide that ends up beign a better place for the part where you want to log in to your own site
#
[jgarber] If you think it’s a worthy pursuit for IndieLogin, I’m game.
#
[jgarber] But wouldn’t that then bring along the authorization baggage to IndieLogin? Or have you got an idea or two up your sleeve?
#
aaronpk well indielogin still won't help you with the micropub side of things, but it will let you log in to your site
#
[jgarber] Hrm, I don’t want to railroad IndieLogin’s development.
#
[jgarber] IndieAuth is working well enough right now (and will continue to do so until it goes away).
#
aaronpk local development of things that indielogin is intended for is still a valid use case
#
aaronpk what I end up doing is running my own local copy of IndieLogin where I have a different set of whitelisted client IDs, but that isn't really sustainable if I'm running this as a service for others :)
#
[jgarber] I’m game to give it a shot then if it’s helpful!
#
aaronpk okay, should work now!
#
[jgarber] Ah, yep, flow works as expected.
#
[jgarber] Authorization bit isn’t there, but that’s expected.
dougbeal|mb1 joined the channel
#
[jgarber] `state` is intended to be a unique identifier per user (as in, something session-based)?
#
aaronpk unique per request
#
aaronpk it's so that your auth code verification bit doesn't get tricked into sending the auth code somewhere else, since you should first check that the state matches what you expect before verifying the auth code
renem joined the channel
#
aaronpk [jgarber]++ for https://github.com/jgarber623/webmention-endpoint-ruby just found that!
#
Loqi jgarber has 3 karma in this channel (11 overall)
#
Loqi [jgarber623] webmention-endpoint-ruby: A Ruby gem for discovering a URL's Webmention endpoint.
#
[jgarber] aaronpk Ah, yeah! That’s a new one. As is https://github.com/jgarber623/micropub-endpoint-ruby.
#
Loqi [jgarber623] micropub-endpoint-ruby: A Ruby gem for discovering a URL's Micropub endpoint.
#
[jgarber] There are some differences in the Webmention and Micropub endpoint discovery specs that we might consider bringing into alignment. I think there’s an issue on the w3c/Micropub repo… I was looking at that earlier today.
#
[jgarber] aaronpk Thanks for merging that webmention-client-ruby PR! I’ve got a few more queued up. I’ll get to that tomorrow, though. It’s getting late here on the East Coast.
#
aaronpk looks like you might be able to collaborate with barryf on further development of webmention-client-ruby! have you chatted yet?
#
[jgarber] I pinged him here at some point in the last week, but haven’t heard anything.
#
[jgarber] !tell barryf Hey, buddy! Drop me a line when you see this. I’d like to pair up on some of the IndieWeb Ruby things if you’re interested.
#
Loqi Ok, I'll tell them that when I see them next
#
[jgarber] aaronpk Also think I got IndieLogin mainly working. I’m not properly using `state` yet, but was able to (with a few changes on my side) get to where I can log in locally.
#
aaronpk great!
#
[jgarber] The lesson I continue to learn is my Ruby chops have come _a long way_ since I wrote the code powering my website. 🙃
#
aaronpk hehe nice
#
gRegorLove Added some consuming of read-of to indiebookclub: query parameter read-of will take a URL and parse it for h-entry.read-of and populate the form. If that's not found, it falls back to checking for h-cite.
#
gRegorLove Will write up more about it soon
#
[jgarber] aaronpk Thanks for your help tonight! Keep me posted on IndieLogin things you’d like to jam on.
#
[jgarber] aaronpk++
#
Loqi aaronpk has 150 karma in this channel (1659 overall)
#
@kartik_prabhu liked https://aaronparecki.com/2018/06/30/11/your-first-webmention Nice short guide to sending webmentions. (twitter.com/_/status/1013266795417960448)
[jgmac1106] joined the channel
#
eddiehinkle.com edited /Indigenous_for_iOS (-30) "Add App Store link" (view diff)
#
aaronpk ooo
[eddie] joined the channel
#
[eddie] 🤔 ?
#
aaronpk Amazing!
#
[eddie] lol what’s that?
#
dougbeal [eddie]: MacStadium has a provide a mac mini to open source ios/mac projects, for build servers and whatnot
#
aaronpk The App Store link! It's real!
#
[eddie] Oh really, dougbeal? That’s cool! I’ll have to look into that!
snarfed joined the channel
#
[eddie] Oh! Haha, aaronpk! Yep it’s live.... didn’t get everything I wanted in: https://chat.indieweb.org/2018-06-30#t1530337998780300
#
Loqi [[eddie]] Well, I didn’t get the final couple of features done that I wanted to for Indigenous, but I didn’t change the pre-order date either, so for better or worse... it’s live! 😱
#
[eddie] 😆
#
dougbeal [eddie]: macstadium.com/opensource
#
[eddie] But hoping to quickly iterate this next week to finish that up
#
[eddie] Sweet, thanks for the link! I’m gonna check that out 🙂
#
dougbeal [eddie]: You're welcome, thanks for the app! ;)
#
[eddie] My pleasure 😁
#
[jgmac1106] Agree. Awesome post [aaronpk]
[Vanessa], iasai, barpthewire, [kevinmarks] and [jgmac1106] joined the channel
#
@_am1t In reply to https://aaronparecki.com/2018/06/30/11/your-first-webmention I always wanted to sort out my webmentions and the respective microformats in reply posts. Aaron’s post could not have arrived at a better time. Here’s hoping it comes out the way I want it to. (twitter.com/_/status/1013373431490981888)
#
@_am1t I have seen Monocle in action now and realise the power of Microsub standard. I do not think I can read feeds in any other manner now. This is fantastic! https://monocle.p3k.io (twitter.com/_/status/1013377215201992704)
#
@adactioLinks Sending your First Webmention from Scratch • Aaron Parecki https://aaronparecki.com/2018/06/30/11/your-first-webmention (twitter.com/_/status/1013378518326136833)
#
jgregorymcverry.com edited /Planning (+87) "/* IWC NYC */" (view diff)
#
www.svenknebel.de edited /indiewebring (+61) "add link to source" (view diff)
#
www.svenknebel.de edited /Vouch (+43) "/* See Also */ link IWS session" (view diff)
#
www.svenknebel.de edited /Vouch (+478) "list of ideas for pages to trust, partially from IWS 2018 session" (view diff)
loicm, [manton], davidmead, [jgmac1106], [Vanessa] and iasai joined the channel
#
[manton] [schmarty] Is there a definitive "announcing IndieWeb Ring" post to link to? Added initial support for web rings to Micro.blog today. 🙂
#
schmarty Oh man. There will have to be, soon! I just got home last night after OSBridge and am dealing with some pet problems at home though :/
#
[manton] Oh, sorry to hear it. No rush of course. (We've waited 15 years for the return of web rings, so a few more days, weeks, or months will be fine.)
[barryf] joined the channel
#
[barryf] Hey [jgarber]! Sorry to have missed your pings. I’ve been tied up with a new baby and switching jobs for the last few months. I may be able to help with some Ruby in between things though.
#
Loqi [barryf]: [jgarber] left you a message 11 hours, 6 minutes ago: Hey, buddy! Drop me a line when you see this. I’d like to pair up on some of the IndieWeb Ruby things if you’re interested.
[jgarber] joined the channel
#
[jgarber] [barryf] Not a problem! Was catching up on your site this morning and saw the big life changes. Congratulations all around! 🎉
#
[jgarber] [barryf] Thinking about a workflow for alerting folks to review requests without being annoying. Would you be okay if I requested reviews on PRs on GitHub?
#
[jgarber] Same question for any other fellow Rubyists here. 😄
#
[jgmac1106] As far as I got http://indiewebsandbox.jgregorymcverry.com/
#
[jgmac1106] Was going to be my IndieWeb summit project, but ended up doing community support.
#
[jgmac1106] Installed FrancisCM will finish build after vacation
#
[jgmac1106] My partner built our app on RoR trying to drag him into indieweb
loicm joined the channel
#
[jgarber] [jgmac1106] Nice! On Ruby 2.5.1 no less. Nicely done!
#
[jgmac1106] Launching Ruby and installing gems is fun
#
[jgmac1106] Wanted to leave summit with RoR solution with static page gem but helping WordPress took precedent
#
[barryf] [jgarber] Thanks very much! Sure, I’d be happy to help as long as you don’t mind slowish responses. I had a few ideas back when I last hacked on it.
#
[jgarber] [barryf] Not a problem!
#
[jgarber] I’m hoping there’s a small handful of folks interested in Ruby-things and we can keep things moving forward without any one person having to be the gatekeeper/blocker/etc.
#
[jgmac1106] Plus we like the two eyes before PR approach
#
[jgarber] Related to that… I’m going to add a section to /Ruby: “Support” where folks can register their interest/availability.
#
[jgarber] e.g. “jgarber is knowledgeable in Ruby, Rails, Sinatra, and available for PR reviews. His github handle is…”
#
[barryf] I know [gerwitz] is developing a fork/rewrite of Transformative. He may be interested too.
#
[barryf] jgarber++
#
Loqi jgarber has 4 karma in this channel (12 overall)
#
[barryf] Nice idea
#
[jgarber] Updating wiki… Please hold.
[gerwitz] joined the channel
#
[gerwitz] Indeed I am. I have mangled [barryf]’s code for sitewriter.net
#
sixtwothree.org edited /Ruby (+449) "Add "Support" section to page" (view diff)
#
[jgarber] Done! [barryf] [gerwitz] [jgmac1106] and anyone else interested in Ruby, please add yourself to the “Support” section on /Ruby if you’d like to be tagged in on code reviews, etc.
#
[jgarber] I listed my skills (such as they are), GitHub username, and what I’d be interested in helping with, but don’t consider that a template for your own addition.
#
[jgarber] ☝ Also: [deeden] may be interested in this, too.
#
hans.gerwitz.com edited /Ruby (+104) "/* Support */" (view diff)
#
barryfrost.com edited /Ruby (+123) "/* Support */ Adding barryf" (view diff)
#
[jgmac1106] Ruby is actually one of the largest dev communities in IndieWeb if 4-5 people get on it.
[eddie] joined the channel
#
[eddie] “Added initial web rings support to Micro.blog today” - [manton] :exploding_head::exploding_head:
#
[eddie] [manton]++
#
Loqi manton has 6 karma in this channel (59 overall)
[chrisaldrich] joined the channel
#
Jeena Hm I can't log in to https://xn--sr8hvo.ws/ I'm getting "ReferenceError: Micropub is not defined" and because there is no link to the author on the page I have no idea who to talk to about it.
#
Zegnat Talk to schmarty about it. Though that sounds as if he is in the process of tweaking things.
#
schmarty hello it's me.
#
schmarty i started breaking things before i was ready to finish fixing them, one sec.
#
schmarty should be back up now.
leg joined the channel
#
GWG Does anyone implement refback?
#
Zegnat What is refback?
#
Loqi Refback is a linkback method that works using the standard HTTP Referer header https://indieweb.org/refback
#
Zegnat No implementations come to mind.
#
Zegnat It would be interesting to forward all referer headers you see to your webmention endpoint
#
GWG I am tempted to implement it.
#
GWG I was looking at Vouch implementations and using referrer links is what two people did
#
GWG https://indieweb.org/InkBlot#Searching_for_a_domain_to_use_for_a_vouch
#
GWG That explanation is a bit confusing with letters
#
GWG I know gRegorLove said something about using referer links also
#
@kevinmarks Aaron put together a nice clear guide to creating and sending your first webmention https://aaronparecki.com/2018/06/30/11/your-first-webmention #Indieweb (twitter.com/_/status/1013457673109434368)
#
@ShaneHudson ↩️ @kevinmarks I need to rewrite the webmention plugin I was using, upgraded to Craft 3 and no longer compatible. (twitter.com/_/status/1013458338091290624)
#
Zegnat It is a way of creating a list of pages that like to you, for sure, GWG
#
Zegnat That’s why it might be interesting to treat them as webmentions, and you can query your received-webmentions table for possible vouches
#
GWG Zegnat: Are you going to try that?
#
Zegnat Sending vouched webmentions is currently a very low priority for me, I first need to get back into blogging. So probably not any time soon
mblaney_ joined the channel
#
mblaney_ GWG I've looked at refbacks for webmentions but decided the data is too noisy.
#
aaronpk I was logging all my refbacks for a while but it was kind of a mess
#
mblaney_ I just capture it and use it for analytics instead.
#
GWG aaronpk: How do you generate vouches?
#
GWG I'm looking at ways to send vouches
#
aaronpk I don't send vouches yet, I just receive them
[dougbeal] joined the channel
#
aaronpk somehow I still get a few spam pingbacks leaking through, and if you look at my referer logs those are just a total mess of spam, so i'm not convinced that's much of a useful signal
#
GWG There aren't a lot of implementations because of the lack of suggested ways to send them.
[Vanessa] joined the channel
#
aaronpk yeah. there's a big difference between a spec and an implementer's guide
#
aaronpk the Vouch spec is correctly defining the minimum it needs for interop, but as you're seeing, that leaves a gaping hole in other parts.
#
GWG That's why more people receive than send.
#
GWG aaronpk: How do we fill the hole?
#
GWG snarfed suggested indiemap
#
aaronpk need to write more guides
#
aaronpk pstuifzand: your photo of your like isn't showing up on my post because it's running through your media proxy and that blocks it unless it's got a referer header of your own site
#
aaronpk er, bookmark, not like
#
GWG aaronpk: To do that, I have to figure out what to suggest people do to generate vouches.
#
Zegnat I'd say definitely query webmentions you have received. I think that's a pretty good sources for vouches, and one you already have available in WP, I assume?
#
GWG That would mean when the webmention comes in, I should be storing more information though, right?
#
Zegnat You would need to able to query your webmentions for the domain they came from. Then when you are sending a webmention to a page, you query on the domain, and send the last webmention you received from it as vouch
[manton] joined the channel
#
Zegnat So you may need a separate column for domains to query on, although that might already be possible if you just have the URLs...
#
GWG Zegnat: I have the source URL for every webmention received.
#
GWG You can query that for text within them
#
GWG But, that establishes a 1:1 relationship.
#
GWG The... I linked to you in the past.
#
aaronpk Zegnat: that doesn't sound quite right. vouch is sending someone else's URL along with your webmention, not a URL on the same site
#
GWG What about the broader use case, where I'm trying to substantiate a third-party?
#
Zegnat Url on the same site works well though. Because you are likely to trust yourself as a voucher, right?
#
GWG I'd need to go through each received source for links to other sites.
#
aaronpk right but probably you don't need vouch in that case anyway
#
GWG That's expensive
#
sknebel aaronpk: "probably"? does anybody implement whitelisting based on that?
#
aaronpk vouch is saying "You should not treat this webmention as spam because this other person you linked to has also linked to me"
#
GWG The question is, given a source URL for a webmention, what should I store for future vouch generation?
#
Zegnat Yep. But it is the only data source you have ready. Automatically collecting third parties is the hard one
#
sknebel (more to the point, does wordpress?)
#
aaronpk what Zegnat is saying is "you should not treat this webmention as spam because you've linked to me in the past"
#
Zegnat Yeah, true, that's what I'm saying.
#
GWG aaronpk: That is in the protocol as a stopping point. That someone could send a vouch to substantiate an already established relationship
#
aaronpk vouch is specifically addressing the first which is what allows it to grow beyond a completely closed bubble of people
#
Zegnat But automatically generating a database of third parties to send to others is iffy.
#
Zegnat That's what most of the session at IWS was about
#
aaronpk "iffy"?
dougbeal|mb1 joined the channel
#
dgold gdpr issues, certainly, probably violates the new california law too
#
Zegnat Iffy as in, we couldn't come up with a clean way of generating it.
#
aaronpk i'm not saying Vouch is actually the best solution, it just sounds like there is some misunderstanding of the specific problem it was created to solve
#
Zegnat GDPR issues with storing link relationships, dgold?
#
GWG Well, the simple solution is to encourage sites to do the work for you
#
GWG For example, if I have a followers page on my site.
#
GWG Or a blogroll
#
GWG How would I tell a site where that page was though?
#
GWG We don't have something for that in the community, do we?
#
GWG rel-directory?
#
GWG rel-group?
#
GWG Looking through microformats brainstorming
#
Zegnat rel-directory seems to say "I am part of the directory this links to"
#
Zegnat So I could put that on my site and link it to your followers page
#
GWG Theoretically.
#
dgold Zegnat: I'm not saying that there _definitely_ are GDPR issues
#
GWG But how do I link to my followers page so other people can find it?
#
GWG That would solve the problem
#
dgold but keeping databases of individuals and interactions is gdpr-skirting
#
GWG It means that sites can help other site's find these links
#
GWG dgold: Even in my version, where the site keeps a list of people they follow?
#
GWG And other sites just read it for vouch purposes?
#
GWG I think that skirts less, and removes some of the burden
#
GWG Is there an issue in me posting a list of people I follow? Bringing back the blogrool
#
GWG I guess I need an experimental microformat for this?
#
dgold GWG: I don't think there's a risk in having a blogroll
#
GWG Yes. So that leaves the question of how to indicate to microformats consumers where the blogroll is
#
Zegnat Can you do a write up of how you envision discovery of vouch links working?
#
GWG Zegnat: On the wiki, you think? Or blog post?
#
GWG Maybe I'll do blog post
#
deeden.co.uk edited /Ruby (+126) (view diff)
#
aaronparecki.com edited /videos_about_the_indieweb (+125) "/* 2018 */" (view diff)
#
GWG I know chrisaldrich, snarfed, and a few others are posting blogroll/following pages
[schmarty] joined the channel
#
[schmarty] woohoo! 🕸.ws now uses indieauth for authentication only, using a questionable fork i made of grantcodes' micropub-helper that drops all the tokens and scopes and whatnot.
#
Loqi yay!
#
[schmarty] Zegnat: you might want to try it again?
#
aaronpk yay
#
aaronpk I was wondering why it needed to post to my site
#
Zegnat questionable fork, hehe
#
Zegnat I’ll put it on the todo list, it is going on the bottom though, have some other stuff to finish this evening when I get to my machine again
#
[schmarty] aaronpk: yep, i reached for the nearest available thing that would probably work.
#
aaronpk just logged in successfully!
#
[schmarty] zegnat: no worries
#
[schmarty] 🎉
#
[schmarty] i can probably write this up now
#
aaronpk are you going to make sure that people actually add the link on their sites?
#
aaronpk i've already reached a few dead ends clicking around
#
[schmarty] aaronpk: i can't decide if that is a pre-publish requirement or a nice-to-have-coming-soon.
[grantcodes] joined the channel
#
[grantcodes] My bad on the dead ends 😅
#
aaronpk yeah tough call
#
aaronpk the problem that will happen tho is if all people have to do is log in, then you might end up with a bunch of people logging in to try but then never actually adding the link
#
[grantcodes] [schmarty] actually might make sense to separate out the auth part of micropub helper into another module for this use case. But also include it in micropub helper by default
#
[schmarty] is really having trouble balancing 🕸 launch with getting TWITIWAE done
#
aaronpk hahaha
#
Loqi hehe
#
[schmarty] [grantcodes] that is exactly what i am thinking, longer-term.
#
[schmarty] i'd actually like to port indieauth-client-php
#
aaronpk i'd better go review that to make sure it's a good example
#
[grantcodes] A simple option may be just get the user to check a box to say they have added the links
#
aaronpk that's a pretty good low-effort version
#
[schmarty] [grantcodes]: my fork is here https://git.schmarty.net/schmarty/indieauth-authentication
#
[schmarty] it includes some new features like a first-effort at URL canonicalization and updating "me" after following redirects
#
aaronpk then long term add a cron job that goes through and checks ppls sites later to remove sites that either never added or later removed the link
#
Zegnat aaronpk, did you end up setting up https://github.com/joohoi/acme-dns for LetsEncrypt wildcard?
#
Loqi [joohoi] acme-dns: Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
#
aaronpk Zegnat: that was the one I was trying with. I'm still apparently missing a step somewhere. I did get that server running successfully tho
#
[grantcodes] schmarty++
#
Loqi schmarty has 15 karma in this channel (91 overall)
#
[schmarty] oh, i also set up mocha for tests but they only test against my live site right now, haha
#
[schmarty] that's why it's on my private git host and not github
#
[grantcodes] I did start writing tests for micropub helper but never got around to finishing them...
#
[grantcodes] Would be good to work with you on other indieweb express middleware, as I think my micropub endpoint is going to end up including token and auth endpoints too in the future
#
[schmarty] grantcodes: that'd be great! i am pretty far behind on best practices for this stuff, so i'd love some extra eyes and hands as i'm stumbling through.
#
[schmarty] brb
#
Zegnat aaronpk, I do like that it should enable the use of wildcard with any domain no matter where the dns is from. But it still looks like a lot of overhead. I think I’ll stick to non-wildcard certs for now
#
aaronpk oh definitely if you don't need wildcard certs don't do this
#
aaronpk but at this point I would benefit a lot from using wildcard certs on a couple domains so I'm trying to sort it out
#
Zegnat I start different subdomains on zegnat.net for all experiments. But sometimes I don’t feel like doing all the steps again and end up dumping it on an already existing domain. Having a wildcard cert on that domain would get rid of one step, and would just make that easier for me.
#
Zegnat But current setup admin-tax is too high. I’ll stick to the extra certbot call
#
sknebel Oh right, wildcards are thing now
#
sknebel Guess I have a next small project
#
dgold aaronpk: the wildcard certs - what if you have subdomains on different servers?
#
aaronpk I don't think it solves that use case
#
aaronpk you can still issue individual subdomain certs afaik tho
#
dgold ack
#
dgold I think I'll do like zegnat
#
aaronpk yeah wildcard certs are really only for a specific use case. it's easier to do individual ones for the most part
#
sknebel You also can have multiple wildcard certs
#
dgold I have certbot automatically renewing, with full pre- and post- hooks
#
dgold admin-tax thus far in 2018 has been zero
#
Zegnat for subdomains on different servers you should have separate certs. For security reasons you don’t want the same cert (the private key part, really) on multiple servers.
#
aaronpk for example *.micro.blog is way easier done as a wildcard cert instead of making a new one for each user that joins
#
dgold Zegnat: yeah, that's what I thought
#
dgold i should probably wikify my subs
#
Loqi I agree
#
@miklb ↩️ @allafarce Keep an eye on microsub https://indieweb.org/Microsub (twitter.com/_/status/1013500277507395584)
#
ascraeus.org edited /Morris (+70) (view diff)
#
gRegorLove I should write up a post with some Vouch thoughts and what I've implemented. I think I've only written on the wiki very briefly, then IWS discussion.
#
Loqi yea!
raucao joined the channel
#
www.svenknebel.de edited /Main_Page (+228) "/* Upcoming IndieWebCamps */ BERLIN!" (view diff)
[cleverdevil] joined the channel
#
cleverdevil.io edited /Indiepaper (+215) (view diff)
[schmarty] and [kim_landwehr] joined the channel
#
Zegnat Anyone happen to know of a good MediaWiki extension to make parts of the wiki only accessible to users of a specific group?
davidmead joined the channel
#
aaronpk !tell cleverdevil it looks like there's an extra h-entry class on your watch post permalinks, and it confused my reply context
#
Loqi Ok, I'll tell them that when I see them next
snarfed joined the channel
#
@kevinmarks ↩️ We're building a new way of doing this kind of reading and sharing from the ground up at #Indieweb https://indieweb.org/Microsub (twitter.com/_/status/1013545957215096832)
[kim_landwehr] joined the channel
#
GWG I just mapped out how my thoughts on Vouch took me to following and blogrolls.
#
aaronparecki.com edited /Microsub (+42) "/* Monocle */ add screenshot of monocle" (view diff)
#
GWG Now I want Follow Posts
oodani and snarfed joined the channel
#
snarfed GWG: yup. https://github.com/snarfed/bridgy/issues/550
#
Loqi [rhiaro] #550 POSSE following/friending someone new
#
GWG snarfed: I outlined it in an article I just wrote. I want it to generate a local feed to use for the Vouch stuff I was contemplating
#
GWG I just noticed this article in the wiki. https://gkbrk.com/2016/08/why-refback-still-matters/
[eddie] joined the channel
#
aaronpk Minor nit with that post, it incorrectly lumps Trackback and webmention together wrt spam
#
GWG aaronpk: I know. But, I was asking earlier if anyone did refbacks. Apparently someone did
#
GWG I'm just wondering if I'd get anything useful from them
#
aaronpk How did refbacks get it's own name anyway
#
aaronpk that used to be known as looking at the referers in your webserver logs
#
GWG No idea
#
aaronpk google analytics shows that info too
#
GWG aaronpk: I'd like to get rid of Analytics
#
GWG But, the wikipedia page dates from 2006.
#
aaronpk Whether you do analytics in JS or sever side you get the same info
#
GWG Correct
#
aaronpk Maybe I'll try analyzing the referers again and just filter out all google URLs. The last time I looked the vast majority of my data was ugly google URLs
#
GWG I meant Google Analytics, which is why I capitalized.
#
GWG I was thinking of trying this just as an experiment. I could write a plugin that does this in an hour as I have all the relevant code.
#
GWG Basically, just run it and see what happens.
[miklb] joined the channel
#
[miklb] keep in mind there is a move towards more anonymized referrer behavior
#
GWG [miklb]: That is why I think it might not be that bad.
#
aaronpk You can also just look at your server logs and see the info right now
#
[miklb] what is goaccess
#
Loqi It looks like we don't have a page for "goaccess" yet. Would you like to create it? (Or just say "goaccess is ____", a sentence describing the term)
#
[miklb] what is GoAccess
#
Loqi It looks like we don't have a page for "GoAccess" yet. Would you like to create it? (Or just say "GoAccess is ____", a sentence describing the term)
#
[miklb] GoAccess is a self-hosted tool to view server logs https://goaccess.io
#
GWG I've done goaccess in the past.
#
Loqi ok
#
loqi.me created /GoAccess (+98) "prompted by [miklb] and dfn added by [miklb]" (view diff)
#
GWG I'm trying to do more inside my website
KartikPrabhu joined the channel
#
[miklb] cool
#
GWG When I do things outside of my website, I forget about them
tantek__ and [kim_landwehr] joined the channel