#dev 2020-11-20

2020-11-20 UTC
#
aaronpk
sebbu++
#
Loqi
sebbu has 2 karma over the last year
#
sebbu
the reason should be a separate issue or not ?
#
aaronpk
i guess so yes
#
sebbu
<?php $ch=curl_init('https://sebbu.fr/'); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $data=curl_exec($ch); var_dump(curl_errno($ch),curl_error($ch),$data); ?>
#
sebbu
this should be easy to test
#
sebbu
curl_setopt($ch, CURLOPT_CAINFO, $cert); with $cert being the fullpath to https://curl.haxx.se/ca/cacert.pem (saved locally) fixes it
#
sebbu
(the php.ini option is curl.cainfo and openssl.cafile)
#
sebbu
done too
#
aaronpk
sebbu++ again
#
Loqi
[sebbu2] #68 ca certificates
geoffo, [tw2113_Slack_] and [chrisaldrich] joined the channel
#
@ChrisAldrich
↩️ There isn't any real configuration. You may need to install the IndieAuth plugin to log in to them, but you should be able to use any of the many Micropub clients to post to your website. I recommend starting with Quill. more: https://boffosocko.com/2020/11/19/55781365/
(twitter.com/_/status/1329644318567460864)
CrowderSoup, [tw2113_Slack_], [tantek], jacky, [snarfed], [jeremycherfas], [pfefferle], geoffo, [chrisaldrich] and schmudde joined the channel
#
Zegnat
Ah, I see some more discussion about the redirect handling, [Simon_Willison], sknebel. I did also think we had cleared that up in IndieAuth.
#
Zegnat
But I think almost all of that could be removed with my pending PR, because at that point there is no need to remember a "canonical Profile URL", so we also do not need to establish one during discovery. That is the extra change I would like to roll into my PR to make the whole thing a lot simpler again.
#
Zegnat
The intent, if not clear, is that for discovery you resolve all 3xx redirects and then check the final resource for any authorisation endpoints. But for establishing the URL the user wanted to you, you only follow 301 and 308 (e.g. "permanent" ones). This allows me to have a temporary hosting while continueing to identify with my permanent domain.
#
Zegnat
Sadly I am currently busy reviewing a day-job-internal tech spec, rather than tinkering IndieAuth spec. Later today though ...
#
Zegnat
We should have probably tried to get rid of all that redirecting logic earlier, instead of adding a bunch of different 3xx codes to it, when we noticed it growing this complicated...
#
Zegnat
Thanks for the encouragements Loqi :D
#
Loqi
you're welcome, Zegnat
#
Zegnat
gives Loqi a plus-one
#
Loqi
eyes the plus-one
[Murray] joined the channel
#
sknebel
tradeoff... i.e. it saved us having to do another fetch + HTML parse at the end. at least that was the objection to earlier attempts of mine to push for getting the endpoint a second time
#
Zegnat
Yes, I am usually all for minimising external requests. But I feel like we are making the rest of the flow harder for ourselves that I am not sure it is actually worth the savings.
#
Zegnat
Outside some very narrow use-cases, I think HTTP requests are cheap. OAuth is a flow over HTTP anyway
#
sknebel
sure, fully for the change, just part of the answer to why we didn't get there earlier
schmudde, gxt, djmoch, jeremych_, [Aaron_Klemm], CrowderSoup, geoffo, acrowder, jeremyc__, [chrisaldrich], [schmarty], reed, nickodd, [KevinMarks], [Raphael_Luckom], [cleverdevil], KartikPrabhu, [tantek], [jeremycherfas] and TheRealCrowderSo joined the channel; nickodd left the channel
#
Zegnat
ping sknebel. I just did another push on https://github.com/indieweb/indieauth/pull/56 trying to clear up some of the things we discussed in the last few days. If you want to give it a look.
#
Loqi
[Zegnat] #56 Remove requirement for same domain
#
sknebel
will do tomorrow
CrowderSoup and jbove joined the channel
#
jacky
oh nikema's using wordpress here
CrowderSoup joined the channel
#
Loqi
[panva] jose: Universal "JSON Web Almost Everything" - JWA, JWS, JWE, JWT, JWK with no dependencies
#
Zegnat
Pretty sure we use jose for JWE at work. Nice enough lib
schmudde joined the channel