#dev 2019-10-13

2019-10-13 UTC
[KevinMarks] and [snarfed] joined the channel
#
ShokuninDiscord[
It’d be nice to be able to partner with w3c or such
#
ShokuninDiscord[
To push those
#
ShokuninDiscord[
It’s pretty easy to do this in the case of startups who want to push a standard. Do joint marketing and such.
#
ShokuninDiscord[
I wonder what would be possible in this case?
#
aaronpk
what do you mean?
gRegorLove, CharlieRaptoreum and [tantek] joined the channel
#
[tantek]
Shokunin, I believe we've had this discussion before. Search the archives for "partner"
[Rose], jjuran, [aaronpk], [pfefferle], jfoster, [jeremycherfas], [tonz] and KartikPrabhu joined the channel
#
@nhoizey
↩️ I see people suggesting Disqus… please don’t: https://nicolas-hoizey.com/2017/07/so-long-disqus-hello-webmentions.html I chose Webmentions, but I understand people can prefer old-fashioned comments. Here is a huge list of open source comment systems: https://lisakov.com/projects/open-source-comments/
(twitter.com/_/status/1183295390453567489)
jeremych_ joined the channel
#
jeremycherfas
I wish I understood why the name on my h-card, which is on my home page, which is the Author of every one of my posts, does not seem to show up when I send a webmention. I've looked at authorship discovery, but I can't figure it out.
#
[Rose]
I presume https://webmention.rocks/ doesn’t find it?
#
jeremycherfas
I've been using pin13 to look. Let me check again.
#
jeremycherfas
Ah. It isn't my implementation. I use https://webmention.herokuapp.com/
#
Loqi
A WebMention Endpoint
#
jeremycherfas
And that is not finding it.
#
jeremycherfas
And, in fact, I've noted the issue before, a couple of years ago. https://github.com/voxpelli/webpage-webmentions/issues/44
#
Loqi
[jeremycherfas] #44 Resolve external h-cards
#
voxpelli
jeremycherfas: sorry for the slow progress :/
#
Loqi
[EdwardHinkle] #75 Implied p-name issues
#
[Rose]
I was? Heh
#
jeremycherfas
Can I offer a bounty voxpelli ?
#
voxpelli
Money wouldn’t really help, it’s mainly right now that I’m swamped at work
#
jeremycherfas
Understood. I'm working on a new theme, so I should accept the limitations of your excellent srvice and ensure that each post has an h-card, probably hidden.
#
voxpelli
Feel free to bump the issue(s) and nite that it’s still manifests itself
#
voxpelli
Helps me prioritize and validate issues
#
jeremycherfas
I'm remembering now that I made an h-card that contained only <data> elements and so did not need to be hidden
[Lewis_Cowles] joined the channel; snapDiscord[m] left the channel
#
[Lewis_Cowles]
[Rose] does your programmable name badge use an e-ink display? I got a raspberry pi-w and inky p-hat which I made a programmable badge from. I've never worn it anywhere
[Rose] joined the channel
#
[Rose]
No, it’s LEDs
[jgmac1106] joined the channel
#
[jgmac1106]
today I think I may have learned that inline styling of images may not allow for Bridgy publishing: Error {"request":"\/1.1\/media\/upload.json","error":"media type unrecognized."} 400 Client Error: None for url: https://upload.twitter.com/1.1/media/upload.json
#
[jgmac1106]
yes removing the img rotation (meaning I had to change img ratios) and Bridgy worked: https://twitter.com/jgmac1106/status/1183378661703114752
[JHSheridan] joined the channel
#
[JHSheridan]
anyone have any luck self-hosting ownyourgram recently? I keep going back and forth on whether to just leave instagram completely or try to self-host ownyourgram.
#
[jgmac1106]
would a self hosted version get around the rate limits? I wonder?? I am actually removing OWG from a few client sites this weekend but that is also Known issues as much as OWG
#
[jgmac1106]
my vote is leave any facebook company, especially after their last "ohh we know the ads are misleading and fake but we will take Trump's money anyways"
tom85Discord[m], aphelionzDiscord, brewskiDiscord[m, ClmentDiscord[m], silent_ActivistD, panDiscord[m], bitspillDiscord[, sachaDiscord[m], iiogama[m], Senshi[m], mikeal[m], weed9950[m], AXEL-BrianDiscor, pusherDiscord[m], drbh[m], Valium[m]2, aaronpk[m], jenncloud[m], DaekiDiscord[m], FranklinDiscord[, rittme[m], jenncloudDiscord, freethinkingaway, watDiscord[m], aeddi[m], gorhgorhDiscord[, drbhDiscord[m], DiscordBridge[m4, lyon[m], Giyomu[m], pierreboc[m], william_shakesDi, jamietanna[m], romaric[m], Mairkur[m], aeddiDiscord[m], sacha[m], kanejDiscord[m], M[AXEL]Darr[m], paulmahoneDiscor, HarryTmeticDisco, TianyiDiscord[m4, rittmeDiscord[m], achingbrainDisco, chinsuDiscord[m], megadogberthehim, felixschlDiscor4, allgoDiscord[m], DamirDiscord[m], prtfw[m], MatthDiscord[m], JeanDiscord[m], grvhiDiscord[m], jwheelerDiscord[, vexlDiscord[m], QwertyWhoreDisco, leoalvarezhDisco, nocentDiscord[m], RDeckardDiscord4, hvergaraDiscord[, fozzieDiscord[m], SuikaDiscord[m], modigDiscord[m], manfredDiscord[m, KisulkenDiscord[, cardDiscord[m], vasaDiscord[m]1, tangoDiscord[m], nyarlathotepDisc and Lilz|BetaMe[m] joined the channel
#
[JHSheridan]
yeah if you couldn't lie in advertising, a lot of ppl would be out of a job... haha
#
[JHSheridan]
but yeah... I agree with you. I think the answer is to leave facebook. I know the political lying thing is in the news recently and that's definitely worth being upset about, but even just root issue of a company collecting all of this info about you to let ANYONE manipulate you... even if they aren't lying should be reason enough.
#
[JHSheridan]
the fact that I know better, and still consider using the services is kinda sad...
#
aaronpk
okay this morning's goal is to update OwnYourGram to be able to import a single instagram image by URL
#
aaronpk
the problem ownyourgram is having is being unable to fetch profile pages, but it's been fetching image URLs fine
[snarfed] joined the channel
#
[snarfed]
:hugops:
#
[snarfed]
[jgmac1106] oh wow interesting, so you found a jpg that twitter's media upload choked on?!
#
[snarfed]
feel free to file a bug if it's reproducible and you think it's bridgy's fault
#
[jgmac1106]
Will try. I was using inline styling to rotate img. Pretty edge case
#
[snarfed]
inline styling meaning <img style="...">? nah that wasn't it. twitter's media upload API choked on the jpg file itself
#
[jgmac1106]
maybe I went over the 5mb limit, will try to recreate to test
#
[jgmac1106]
aaronpk++
#
Loqi
aaronpk has 48 karma in this channel over the last year (184 in all channels)
#
[snarfed]
nah bridgy checks file size first
#
[snarfed]
error from twitter API was "media type unrecognized."
#
[snarfed]
aha, [jgmac1106] was that jpg URL maybe 404ing before when you tried to bridgy publish it?
#
[snarfed]
ooh 7MB maybe bridgy's size check wasn't working
#
[jgmac1106]
yeah and i forgot to optimize before posting
#
[jgmac1106]
good to know it wasn't styling and that has no effect
#
[snarfed]
thanks for reproducing!
jfoster and fauno joined the channel
#
aaronpk
wow I broke instagram trying to scroll back through my own feed
#
aaronpk
just getting a 500 server error now
#
[snarfed]
unrelated, gotta love that instagram profile pages have a footer _and_ infinite scroll
#
sknebel
ugh, way to many websites do that
[fluffy] joined the channel
#
[fluffy]
IIRC the EU is trying to make that illegal as part of an anti-social-media-addiction thing
#
[fluffy]
I am all in favor of banning infinite scrolls.
#
[fluffy]
They’re bad for usability and they’re bad for giving people a natural stopping point.
gxt, [Michael_Beckwit, dougbeal|imac and [Lewis_Cowles] joined the channel
#
[Lewis_Cowles]
[fluffy] I'm not sure it's just infinite scrolls or just EU. The verge did an issue about a US proposal https://www.theverge.com/2019/7/30/20746878/josh-hawley-dark-patterns-platform-design-autoplay-youtube-videos-scrolling-snapstreaks-illegal
#
[fluffy]
Oh neat! Or maybe that’s what I was thinking of and got my wires crossed. :)
porshDiscord[m] left the channel
#
[Lewis_Cowles]
I think all things like this are over-steps. We do need better regulation, but also to have smart liberal people making laws. Without freedom truth and liberty are hard to come by
[Rose] joined the channel
#
[Rose]
I have light and dark mode code highlighting in the theme I’m building!
#
[Lewis_Cowles]
rose++
#
Loqi
rose has 15 karma in this channel over the last year (50 in all channels)
#
[Lewis_Cowles]
Is it for a website?
#
[Rose]
It’s for my site, I’m coding offline at the moment with a test.html just as a proof of concept to see if this actually works, it does.
#
[Rose]
And I managed to get to light and dark mode for the whole site now, which makes me happy.
#
[Rose]
This is my big project for next weekend, I don’t expect to finish it and publish it on my site necessarily, but I do want to make progress and I’ve found the right terms to Google and actually built the SASS files which compile to the right css files
#
[Rose]
Which is all to say, now there’s nothing stopping me but me and the other projects that come my way 😛
[dmitshur] joined the channel
#
[dmitshur]
More thoughts on IndieAuth (the protocol and spec) and using URLs for identity on the web.
#
[dmitshur]
Are there considerations for identity name changes?
#
[dmitshur]
For example, on github.com, it's possible to "rename" an account. Its profile URL changes from "github.com/oldname" to "github.com/newname", and things generally keep working. github.com uses unique numeric IDs for each account, and those can never change.
#
[dmitshur]
If a person logs in via "oldname.com" and wants to change their name to "newname.com", is it viable (and/or desirable) for actions they've previously taken while authenticated as "oldname.com" to now be shown as if they were done by "newname.com"?
[jgmac1106] joined the channel
#
aaronpk
there's a lot of implications of that, and I suspect it will be handled on a case by case basis by the consumer of the identity
#
[dmitshur]
I imagine it may be possible to come up with some sort of mechanism to accomplish this, if it's deemed to be a good thing.
#
[dmitshur]
For example, it can be done with redirects. If the person who controls oldname.com sets up a redirect to newname.com, that can be a way of signaling that "oldname.com" has been renamed to "newname.com".
#
[Rose]
That raises the question of “how long should that be required for if it is required?”
#
aaronpk
the common failure case to handle is when a domain expires or changes hands unintentionally
#
[dmitshur]
Yeah, these are all good questions... that I'm looking for answers now, because I'd like to stop relying on github.com for providing me with user identities, and github had solved them for me. 😛
#
[dmitshur]
I think this question falls onto my website: should I be identifying users by URLs, or should I be creating unique user IDs and associating them with URLs for authentication purposes.
#
[dmitshur]
I'd prefer the simpler solution of just relying on URLs to identify users, if it were viable. But my concern with doing that is the inability for users to rename their identity in the future.
#
aaronpk
that doesn't prevent it
#
aaronpk
it just means your code will be different
[jjdelc] joined the channel
#
[dmitshur]
Do you mean that it's still possible to let people change their URL even if I use URL as the primary user key? That it'd just'd be a matter updating rows in many tables instead of a single row in users table?
[snarfed] joined the channel
#
aaronpk
it's an internal implementation detail
#
[dmitshur]
That's a good point, thanks.
#
aaronpk
in either case, you're going to have to deal with the implications of changing URLs and deciding the security considerations for how you're using URLs
#
[dmitshur]
An option may be to let people have multiple linked identities, and give them control over which one they prefer or consider canonical. Perhaps somewhat analogously to how rel=me links allow connecting different websites, and how "authn" can be used to pick a preferred authentication identity (https://indielogin.com/setup#choosing-auth-providers).
#
[dmitshur]
btw, is that "authn" feature specific to indielogin.com only, or is it a part of any spec?
#
Loqi
[snarfed] #38 allow connecting accounts
#
aaronpk
[dmitshur]: it's a possible addition to RelMeAuth but right now just indielogin.com
#
[dmitshur]
another comment (related to earlier discussion on renaming accounts) re the "User Accounts" section at https://aaronparecki.com/2018/07/07/7/oauth-for-the-open-web:
#
[dmitshur]
> This means we need a way to uniquely identify users across the entire web. We can again use URLs as the solution! Every user is identified by a URL. This can be a short URL like someone's domain name, e.g. https://aaronparecki.com/, or for a site with multiple users, can be a URL that contains a path specifying a particular user on the site, e.g. https://github.com/aaronpk.
#
[dmitshur]
But with github.com profile pages specifically, I can't help but think that a URL like https://github.com/aaronpk isn't permanent, it changes when the GitHub user renames their github account. On the other hand, a URL like https://api.github.com/user/113001 doesn't change when the GitHub user renames their account. But that page may change if GitHub changes their API endpoints. It's also subject to rate limits, and can't host rel=me links,
#
[dmitshur]
I think the point there was that the url can have a non-empty path, like `example.com/user1`.
#
[dmitshur]
Even if it were viable to use the api URL, it's pretty ugly and no one would want that to be their canonical URL I imagine.
#
sknebel
sure, the URL as id concept only works with sites that adhere to it
#
sknebel
(e.g. if I remember right facebook doesn't even give out global identifiers through the API, but app-specific ones)
#
[dmitshur]
ok. maybe I should stop thinking about this problem in terms of "I need to be at feature-parity with my previous solution" and instead "suppose I'm solving this problem from scratch, what would be a good user experience". my website has few users, none of them care, I'm free to experiment.
#
Loqi
dmitshur has 2 karma in this channel over the last year (3 in all channels)
#
jgmac1106[m]
dmitshur++
#
[snarfed]
dmitshur++
#
Loqi
dmitshur has 3 karma in this channel over the last year (4 in all channels)
#
[snarfed]
manual until it hurts
#
jgmac1106[m]
Realizing nobody cares frees up so many possibilities and never stops progress
#
[dmitshur]
I agree and I've achieved that a while ago
#
[dmitshur]
the problem here is that even if I'm starting from scratch, it's still a hard problem to solve well
#
[snarfed]
the standard approach is to use an opaque (eg numeric) id internally, let users choose user-readable externally visible identifiers (eg usernames or domains), and then maybe choose a way to support renaming, or not
#
[snarfed]
so maybe just do that, and punt on renaming until one of your users asks for it. there may be a decent chance none of them ever do
#
[snarfed]
unrelated, i have to admit, working with mastodon's proprietary REST API over the last few days has been refreshingly easy. it may not "federated" like AP, but oh man is it simple and consistently Just Works exactly like you expect
#
@dshanske
WordPress Webmentions Plugin Version 4.0.0 Released: https://di5.us/b/q3
(twitter.com/_/status/1183486701479628800)
#
[dmitshur]
just to clarify, the main reason I was thinking about the problem of user renames and such is not because I need it for my site, but because I'm trying to convince myself that using URLs as user identities (and then IndieAuth to authenticate with said URLs) is a good approach, and then I'll be able to do a better job of convincing others.
#
[dmitshur]
I think being able to rename one's identity is an important ability that improves user experience, especially if you want to be able to rely on it long term (for many years or longer).
#
[dmitshur]
as a contrived example, I wouldn't want to convince someone to rely on URLs as their web identity and then they can't marry and change their last name without it going out of sync with their URL 😛
[jeremycherfas] joined the channel
#
[jeremycherfas]
Dark mode will have to wait.
#
myfreeweb
[dmitshur]: there's a great tool on the web for renaming anything… called redirects :) maybe our stuff just needs to respect permanent redirects better. fun example - let's say i move to a new domain, set the old one to redirect, and resend all webmentions from the new one. the result would be all replies being duplicated :D
#
myfreeweb
though for anyone who refetches webmentions and handles redirects, the old ones would disappear after a refetch
#
myfreeweb
other fun tools are rel=canonical and rel=alternate links.. would be a nice convention, you link to the old domain with something like rel="alternate old" and anyone who fetches your page could verify that the old link actually redirects to the current one and consider this an update of the (e.g.) reply that was on the previous domain
#
[dmitshur]
Hmm... a combination of rel=me and rel=canonical may be very interesting to consider.
#
[dmitshur]
Is there a name for an existing IndieWeb building block for linking multiple domains together with rel=me, and using specifying which one should be considered canonical with rel=canonical? As a way of implementing identity renaming.
#
myfreeweb
probably not, i can't think of anyone moving yet
#
myfreeweb
tangentially related: i'd love to eventually explore ways of linking mirrors and alternate-ways-to-access (i.e. a Tor onion service for the same site is that - and not a mirror, it's served by the same server)
#
myfreeweb
mirrors probably aren't that interesting (?) but for tor it would be cool to, like, accept a webmention from a .onion address, but link to its rel=canonical clearnet version on my clearnet version
#
[dmitshur]
here's how I may want to use it (on my site) eagerly... I have a bunch of user identities that are all github accounts. I can convert those identities to URLs like "github.com/<username>". then, I can let people change their identity to their personal site or something else by setting their GitHub profile's website URL to something (a part of RelMeAuth) and checking if their website has a rel=canonical link.
#
[dmitshur]
it's also a way for someone to change their github username without breaking their user on my site (no that I expect anyone to care about this, but I want it to be possible in theory).
#
[dmitshur]
ok, I was excited and hadn't been reading your comments myfreeweb yet. reading over them now I see you thought of rel=canonical too, nice 😄
#
[dmitshur]
although rel=canonical's current meaning may be subtly different, so overloading it for this new meaning may not be ideal. maybe a new similar thing would need to be created. anyway, I think this is a nice line of thinking that has potentially good solutions at the end.
[KevinMarks] joined the channel
#
[KevinMarks]
Github.com allows one outbound rel=me link, so you can point them all at your home domain.
#
[KevinMarks]
And link back from that too
#
[KevinMarks]
Mastodon allows 4
#
@MeritzPress
Where a flower blooms tonight, Devout and purple, With a rift for a hollow power, That shivers it springs from a root - from Pluck At The Offering, Barbarity. Free excerpts. Order at http://amzn.to/2CF8fts or kindle http://amzn.to/2CV3tw4 #literature #kindle #indieauth
(twitter.com/_/status/1183502688966893568)
KartikPrabhu, bhh and [tantek] joined the channel
KartikPrabhu and [Lewis_Cowles] joined the channel
#
[Lewis_Cowles]
jjdelc++
#
Loqi
jjdelc has 1 karma in this channel over the last year (2 in all channels)
KartikPrabhu joined the channel