#dev 2020-11-20

2020-11-20 UTC
# 00:00 
aaronpk sebbu++
# 00:00 
Loqi sebbu has 2 karma over the last year
# 00:00 
sebbu the reason should be a separate issue or not ?
# 00:00 
aaronpk i guess so yes
# 00:02 
sebbu <?php $ch=curl_init('https://sebbu.fr/'); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $data=curl_exec($ch); var_dump(curl_errno($ch),curl_error($ch),$data); ?>
# 00:02 
sebbu this should be easy to test
# 00:02 
sebbu curl_setopt($ch, CURLOPT_CAINFO, $cert); with $cert being the fullpath to https://curl.haxx.se/ca/cacert.pem (saved locally) fixes it
# 00:03 
sebbu (the php.ini option is curl.cainfo and openssl.cafile)
# 00:07 
sebbu https://github.com/aaronpk/indielogin.com/issues/68
# 00:07 
sebbu done too
# 00:07 
aaronpk sebbu++ again
# 00:07 
Loqi [sebbu2] #68 ca certificates
geoffo, [tw2113_Slack_] and [chrisaldrich] joined the channel
# 04:35 
@ChrisAldrich ↩️ There isn't any real configuration. You may need to install the IndieAuth plugin to log in to them, but you should be able to use any of the many Micropub clients to post to your website. I recommend starting with Quill.
more: https://boffosocko.com/2020/11/19/55781365/ (twitter.com/_/status/1329644318567460864)
CrowderSoup, [tw2113_Slack_], [tantek], jacky, [snarfed], [jeremycherfas], [pfefferle], geoffo, [chrisaldrich] and schmudde joined the channel
# 09:57 
Zegnat Ah, I see some more discussion about the redirect handling, [Simon_Willison], sknebel. I did also think we had cleared that up in IndieAuth.
# 09:57 
Zegnat But I think almost all of that could be removed with my pending PR, because at that point there is no need to remember a "canonical Profile URL", so we also do not need to establish one during discovery. That is the extra change I would like to roll into my PR to make the whole thing a lot simpler again.
# 09:57 
Zegnat The intent, if not clear, is that for discovery you resolve all 3xx redirects and then check the final resource for any authorisation endpoints. But for establishing the URL the user wanted to you, you only follow 301 and 308 (e.g. "permanent" ones). This allows me to have a temporary hosting while continueing to identify with my permanent domain.
# 09:57 
Zegnat Sadly I am currently busy reviewing a day-job-internal tech spec, rather than tinkering IndieAuth spec. Later today though ...
# 09:58 
Zegnat We should have probably tried to get rid of all that redirecting logic earlier, instead of adding a bunch of different 3xx codes to it, when we noticed it growing this complicated...
# 09:59 
Loqi +1
# 10:01 
Zegnat Thanks for the encouragements Loqi :D
# 10:01 
Loqi you're welcome, Zegnat
# 10:01 
Zegnat gives Loqi a plus-one
# 10:01 
Loqi eyes the plus-one
[Murray] joined the channel
# 10:39 
sknebel tradeoff... i.e. it saved us having to do another fetch + HTML parse at the end. at least that was the objection to earlier attempts of mine to push for getting the endpoint a second time
# 11:11 
Zegnat Yes, I am usually all for minimising external requests. But I feel like we are making the rest of the flow harder for ourselves that I am not sure it is actually worth the savings.
# 11:12 
Zegnat Outside some very narrow use-cases, I think HTTP requests are cheap. OAuth is a flow over HTTP anyway
# 11:13 
sknebel sure, fully for the change, just part of the answer to why we didn't get there earlier
schmudde, gxt, djmoch, jeremych_, [Aaron_Klemm], CrowderSoup, geoffo, acrowder, jeremyc__, [chrisaldrich], [schmarty], reed, nickodd, [KevinMarks], [Raphael_Luckom], [cleverdevil], KartikPrabhu, [tantek], [jeremycherfas] and TheRealCrowderSo joined the channel; nickodd left the channel
# 22:10 
@dev_nikema Adding webmentions to my site. Hope it's working. This is a test https://nikemaprophet.com/trying-to-implement-webmentions/ (twitter.com/_/status/1329909835815501824)
# 22:20 
Zegnat ping sknebel. I just did another push on https://github.com/indieweb/indieauth/pull/56 trying to clear up some of the things we discussed in the last few days. If you want to give it a look.
# 22:20 
Loqi [Zegnat] #56 Remove requirement for same domain
# 22:20 
sknebel will do tomorrow
CrowderSoup and jbove joined the channel
# 22:53 
jacky oh nikema's using wordpress here
CrowderSoup joined the channel
# 22:59 
jacky json all of the things https://github.com/panva/jose
# 22:59 
Loqi [panva] jose: Universal "JSON Web Almost Everything" - JWA, JWS, JWE, JWT, JWK with no dependencies
# 23:00 
@dev_nikema Trying to implement webmentions: https://nikemaprophet.com/?p=87 (twitter.com/_/status/1329922045623341064)
# 23:03 
Zegnat Pretty sure we use jose for JWE at work. Nice enough lib
schmudde joined the channel