#LoqiA push notification (AKA client notification) is a notification that shows up on one or more of your client devices without you having to explicitly request it — it's "pushed" to you, instead of you having to poll for it https://indieweb.org/push_notifications
#Loqi[kevinmarks] Rather than elaborate new id structures, what is stopping an instance doing a 301 redirect when a user that has migrated to another is requested?
Then the requesting instance can update the mapping from the local /user/[n] to the remote url to fetch...
#tantekpush notifications << 2015-08-18 {{iambismark}}: [https://iambismark.net/post/1439931152/ APNS Authentication] <blockquote>Apple’s push notification service got authentication all wrong (I’m assuming Google’s service is similarly broken but I’m less familiar with it).</blockquote>
#LoqiIt looks like we don't have a page for "notification fatigue" yet. Would you like to create it? (Or just say "notification fatigue is ____", a sentence describing the term)
[chrisaldrich], acegiak, mblaney, [manton], [tantek], renem and [eddie] joined the channel
#[eddie]Interesting, CW’s having a subject is similar to the idea I logged on the CW brainstorming section of giving it a “reason”
#eli_oatoh my goodness! never mind! I think I found the solution. this is 100% my fault. I've been using a firefox extension that allows me to sandbox certain sites from one another, and github, my main auth provider, is sandboxed away from indieauth, whoops!
#ZegnatCould be that you let a timer on the login form lapse, so it blocks you. This is done against replay attacks.
#ZegnatHaha, something like that can happen too :P
#ZegnatI used to have that problem with my cookie clearer. I would be on indielogin, getting recirected to my endpoint. After the redirect, the extension cleared the indielogin cookie, so when I came back after authenticating I got state errors
KevinMarks, snarfed and ms782129 joined the channel
#Zegnat[eddie], I am wondering what you use for deciding which icon to use. As Together has two listed
#[eddie]haha, so right now I just use the first one. But I’m thinking in the future I’d like to parse the sizes provided and go for the one closest to a specified size
#[eddie]But I don’t know my goal size yet so I just grab the first from the array
#ZegnatI wonder if someone hasn’t already figured out a nice algorithm for us to “borrow”
#[eddie]Also added WAM to the Indigenous for Android website, so WAM pulls ahead 9 to 8
snarfed joined the channel
#aaronpkjust discovered that you can use "org:username" in github search, so I can *finally* see a list of all open issues on my projects
#ZegnatSadly not all the WAMs contain correct info yet
#[eddie]They don’t. If it’s okay with you I’m gonna change the icon on the ones that don’t work correctly to ⚠
#[eddie]My requirement for a manifest to get the checkmark will be that they have the accurate app name under “name” and have at least one icon in the icons array. Sound good Zegnat?
#ZegnatThat might even be preferable over a link, as this way the user does not leak their actual IP / UA information when loading an external live image on their authentication page
#GWGSeems like a big thing to build just to show icons
#ZegnatI implemented a generic HTTP request cache the other day. Basically I just store the raw response in a file where the name is a hash of the request. Same could work for images, just fetch a URL and store it locally with the name being the URL. Any time you need an image from the same URL, check if it exists in the cache already
#ZegnatI would probably just stick a default time on there as a first step. Say 7 days. If the same URL is requested and my cached result for it is more than 7 days old, refresh it.
#ZegnatThen after that start looking into HTTP cache headers and stuff. Which by itself is complex enough. What I recall of them.
#@rakyll🙅♀️ There are two hard problems in computer science: - I have static website, serve it. - I have a stateless simple web server, take it, serve it, autoscale it. (twitter.com/_/status/1031785226517676032)
[grantcodes] joined the channel
#[grantcodes][eddie] I didn't realise your new backend did so much stuff 😄 Awesome!
#[grantcodes]I discussed with schmarty at some point, it would be great to have the various "indieweb endpoints" as express routers so other people can just drop them in their projects maybe your auth endpoint could be a start for that 🙂
#[grantcodes]I have a token endpoint built into my site, that I think is just an express router too
#Loqieddie has 37 karma in this channel over the last year (56 in all channels)
koddsson joined the channel
#[eddie]Yeah, definitely something I could try to spin off. I try to keep everything modularized, so all the IndieAuth stuff is part of an IndieAuth module with it’s own subrouter
#[eddie]I’m sure there is some stuff I need to tweak but essentially the only part of the IndieAuth module that interacts with the rest of my routing system is router.use(‘/auth’, authRouter);
#[eddie]the only issue would probably adding some config stuff
#aaronpki keep thinking about doing this for Laravel
#[grantcodes]For config stuff you usually just export a function that accepts a config object and returns the router
#[grantcodes]Hopefully I'll finally get my site moved to my new micropub endpoint and then I will look at making other endpoints into router packages
#[eddie]I have a Token Endpoint in my site too. Might be interesting to compare them as well. We might be able to combine ours into a package we could both share
#[grantcodes]Not sure how great mine is to be honest 😛 It's just json web tokens really
#[grantcodes]But I'd like one with a ui to revoke tokens
#[eddie]That’s definitely what I want to do with mine as well
#[grantcodes]Which means then it needs a database. Kind of a pain compared to the self encrypted ones
#[eddie]haha I… probably didn’t make the best choice but what I did was
#[eddie]I do a bunch of poor choice when duct-taping my site together but the one thing I’m happy with is all my sensitive data is in a JSON config file
#Loqi[EdwardHinkle] indieauth-express: An IndieAuth module written in TypeScript as a Node.js Express Router module
#[grantcodes]The only other difference I noticed is that mine includes checking the auth endpoint (although it is hard coded) I guess yours is done elsewhere? Or even internally if you have your own now
#[eddie]But it would probably be useful to have it check the authorization endpoint dynamically to be more rounded out (in case someone decided to use just the token or just the auth, although that would probably be rare)
#[grantcodes]Sure the content storage mechanism is way better than wp
#[grantcodes]I was looking at it for building it into my micropub extension but not sure it's worth it.
#[grantcodes]I don't know how you'd get stuff like the large or small images to work across sites, unless it adds classes and you either style it or you dont
#miklb_yes in Mojave it's all in on native apps as extensions
#[grantcodes]Fun times. Wonder if that'll work out well for them or not
#miklb_I mused last night that I would just like to be able to add Automator actions to the share sheet, and wonder if something like Shortcuts would come to macOS
#miklb_the closest I've come is using Alfred to trigger an action and use shpub on the url of the current Safari window, but haven't fleshed it out
#[cleverdevil]Indiepaper has a native share sheet I built in Swift.
#[cleverdevil]It was pretty straightforward to create, even as a person who doesn't really know Swift very well.
#miklb_oh, that's right. Micropub wasn't working for me at the time and I forgot all about that.
#[cleverdevil]Still, the mindshare for the web itself is with JavaScript and Chrome, so its baffling why they don't support Web Extensions.
#[cleverdevil]I think its likely because of security concerns.
#[grantcodes]Probably, but seems weird that everyone else can agree on it. As long as there is a store that checks the source of the extension
[pfefferle] and barpthewire joined the channel
#ZegnatI find “everyone else can agree on it” a bit strong. I still bump into plenty differences between just Chrome and Firefox
#ZegnatBut the intention is there for sure. And it is too bad Safari doesn’t seem to be tagging along
#[grantcodes]Well more or less. The web extension api is mostly based off the chrome api
#[grantcodes]Also if you are building extensions there is a polyfill that works really well!
#ZegnatFor the last two quality of life extensions I did I just documented how they were different from the spec. So hopefully future me can get them fixed up when the spec and browsers align
#[cleverdevil]I wonder if someone could build a native Safari extension that loaded Web Extensions?