#dev 2020-08-05

2020-08-05 UTC
# 00:34 
jacky I'm trying to understand how it's determining if it's (Gobo) something posted by a man
# 00:35 
jacky I mean it admits when it doesn't know the gender of the poster but then it just hides the content altogether
[fluffy], geoffo, sp1ff`, nickodd, [tantek], sp1ff, [tb], KartikPrabhu, swentel, dckc, moppy, gxt and [KevinMarks] joined the channel; nickodd left the channel
# 11:59 
[KevinMarks] Internet Archive << Post about the save page changes https://blog.archive.org/2019/10/23/the-wayback-machines-save-page-now-is-new-and-improved/
# 11:59 
Loqi ok, I added "Post about the save page changes https://blog.archive.org/2019/10/23/the-wayback-machines-save-page-now-is-new-and-improved/" to the "See Also" section of /Internet_Archive https://indieweb.org/wiki/index.php?diff=71853&oldid=71844 
Kappa, HbHighland2, dckc, geoffo, vilhalmer, [chrisaldrich] and sp1ff joined the channel
# 15:51 
beko did something change on the brid.gy about recieving webmentions? Mastodon publish doesn't seem to make it through. Problem may be on my end.
[Chaitanya] joined the channel
# 16:04 
[Chaitanya] beko: Ryan reported this issue with Mastodon a few months back: https://github.com/tootsuite/mastodon/issues/12915
# 16:04 
[Chaitanya] Probably, cause of that publishing hasn't been working with brid.gy for Mastodon
# 16:04 
Loqi [snarfed] #12915 reproducible HTTP 502 error in OAuth /oauth/authorize
sp1ff joined the channel
# 16:17 
beko [Chaitanya]: thanks but that's only the interactive "send for publishing" function on the page itself. Publishing via webmention worked fine last time 6 days ago.
# 16:18 
beko an RSVP also didn't show up so I send the Webmention manually. Afraid something broke on my end again *sigh
[tb] joined the channel
# 16:26 
[tb] Heh didn't take long for the bots to start descending on my IndieAuth token endpoint
# 16:35 
@m_ott ↩️ Try Webmentions! (twitter.com/_/status/1291049055695572992)
[schmarty], [Rose] and [KevinMarks] joined the channel
# 17:33 
beko [tb]: as in actually trying to login or do they just throw random requests at it?
# 17:37 
[tb] I see a few requests to hit my `/login` endpoint and then after one request to `/indieauth/authorize` that redirected to `/login`  it just threw something random at `/indieauth/token` 😄
# 17:37 
beko oh. so nothing serious :)
# 17:38 
[tb] Yeah, at least it exposed a bad constant reference I had in my error handler on the token endpoint that wasn't in the path of any of tests haha
# 17:39 
beko chrchr, sounds like Chaos Engineering :D
# 17:40 
[tb] Speaking of which, that's on my todo list for this but haven't really given much thought on how to chaos test an app running on Heroku
# 17:41 
beko it probably involves docker xD
# 17:43 
[tb] Looks like Heroku doesn't even allow low-medium load tests against hobby dynos
# 17:43 
[tb] Heroku is really more of a stopgap for me anyway though, wanted to focus on writing my backend hub first
# 17:44 
[tb] Ultimately I think my push into IndieWeb will converge with my desire to Homelab someday 🙂
# 17:45 
beko same 😁
# 17:51 
[tb] Heroku still seems to be about the cheapest option at the moment though — all in it looks like it's going to cost me $14/mo or so with 1x hobby dyno for the app, 1x hobby dyno for the worker, and then free Postgres, Redis, and Elasticsearch
# 17:52 
[tb] Beyond that though the economy of it starts shifting back towards DIY on less managed providers, Google Cloud Run seems pretty promising for running the containerized parts
# 17:53 
[tb] Or for 2x Heroku standard dynos I could just rent an an entire server from OVH!
[Ana_Rodrigues] and KartikPrabhu joined the channel
# 18:53 
[tb] [aaronpk] I just ran across something that uses `response_type=id`  — the receiver tests on webmention.rocks!
# 18:53 
aaronpk hah
swentel, [chrisaldrich], [pfefferle], lahacker, Kappa and [tw2113] joined the channel
# 20:30 
@dannysteenman ↩️ The creator of this already made a very nice blogpost about it.

https://mxb.dev/blog/using-webmentions-on-static-sites/ (twitter.com/_/status/1291108720987054081)
gRegorLove joined the channel
# 20:31 
[chrisaldrich] Kappa, from development perspective you can go either route: reply back and forth with new posts each time (and include the URLs, manually if necessary, of all the prior conversation to send those webmentions--this gets messy after a few times though and will add a lot of cruft to your feeds potentially) OR you can do all the replies in a threaded manner under the original post and rely on parsers to do their job to show the correct bits.
# 20:32 
[chrisaldrich] As an example, here's a parsed version of one of my sub-comments which only shows the comment and not the original content in the top level h-entry: https://pin13.net/mf2/?url=https%3A%2F%2Fboffosocko.com%2F2018%2F07%2F01%2Frefbacks-support-for-my-website%2F%3Freplytocom%3D57527%23respond
# 20:32 
Loqi [Chris Aldrich] I suspect that spammers are spending more time focusing on other surfaces now, besides anti-spam measures have come a bit further in almost 15 years. We’ll see what happens. I know some who are working on the vouch spec, which I suspect will cut wa...
ben_thatmustbeme joined the channel
# 20:33 
[chrisaldrich] You notice that even Loqi can parse the proper piece of the fragment on a given URL from the example above: https://boffosocko.com/2018/07/01/refbacks-support-for-my-website/?replytocom=57527#respond
# 20:33 
Loqi [Chris Aldrich] I suspect that spammers are spending more time focusing on other surfaces now, besides anti-spam measures have come a bit further in almost 15 years. We’ll see what happens. I know some who are working on the vouch spec, which I suspect will cut wa...
# 20:34 
[chrisaldrich] though it appears for those in Slack that slack can't parse it properly. 🙂
KartikPrabhu joined the channel
# 21:00 
Kappa Thanks for the tips. I think I may prefer to use a comment section/leave a reply section to reply incoming webmentions
# 21:01 
Kappa whatever is simpler and works, and may not go through the salmentions route.
# 21:01 
Kappa It's late at night in my timezone, gotta work on it later/in day time.
# 21:02 
Kappa Thanks for the help, Chris. [chrisaldrich]++
# 21:02 
Loqi [chrisaldrich] has 9 karma in this channel over the last year (64 in all channels)
# 21:03 
[chrisaldrich] good luck Kappa, we're around if you have other questions....
KartikPrabhu and [KevinMarks] joined the channel
# 22:25 
[KevinMarks] Well, I spent a fair bit of time tonight working out how to do a table with a header and some toggle above it so that the table body scrolled but the top furniture didn't.
# 22:26 
[KevinMarks] Because you can't just do tbody {overflow:scroll ;} for some reason.
gbmor, [Chaitanya] and [tantek] joined the channel
# 23:55 
[tantek] For anyone who may be using Twilio's JS SDK, I'm sure you have have nothing to worry about, but might want to double-check: https://www.theregister.com/2020/07/21/twilio_sdk_code_injection/
# 23:56 
[tantek] It's not like any of Twilio's code is used for anything security like SMS MFA (which you shouldn't be using anyway) or authentication like Authy