#dev 2020-12-20
2020-12-20 UTC
[schmarty] joined the channel
wagle, [tantek], geoffo, nickodd, oodani, [sebsel], schmudde and KartikPrabhu joined the channel
# jamietanna[m] Where do we store the code that defines the "this week in the IndieWeb" newsletter? Thinking about having a look over this week at how to get bookmarks to show the `p-name` rather than "a post"
dhanesh, jeremycherfas, nickodd and schmudde joined the channel
# @LukasRosenstock ↩️ Besides that, the #IndieWeb focuses on lightweight #APIs like #webmention to connect their websites and #syndication (#PESOS/#POSSE) to bridge the divide towards the walled gardens of the "Web 2.0" era. (54/100) (twitter.com/_/status/1340656268462178304)
# @TheIdOfAlan https://indieauth.com is amazing
once you set it up via your domain, you just use your domain to log into sites… https://twitter.com/i/web/status/1340276459949215746 (twitter.com/_/status/1340276459949215746)
jeremycherfas, [Alan_Smith], [jgmac1106], [sebsel] and [snarfed] joined the channel
geoffo joined the channel
# lahacker awesome snarfed++ is the code on GitHub?
# lahacker snarfed++ for keeping the bridge standing
# lahacker wonders if it'll work in a headless context
geoffo, leg, nickodd, KartikPrabhu and [tantek] joined the channel
schmudde joined the channel; nickodd left the channel
# lahacker here's the working code for controlling firefox using selenium in python: https://github.com/angelogladding/web/blob/main/web/agent.py#L444
# lahacker both the login and the backfeed use only the dom as exposed by selenium
# lahacker the syndicate however required me to use an operating system tool (xdotool) to simulate a click on the virtual screen in order to activate the Tweet textarea
# lahacker if all this logic could be moved into an extension that could work for users in their desktop browser AND on headless backends.. that's where i wanted to head with it
KartikPrabhu, geoffo, lahacker and [snarfed] joined the channel
# [snarfed] lahacker: most of bridgy backfeed will still happen server side. the browser extension right now is minimal, just forwards complete IG HTTP request contents: https://github.com/snarfed/bridgy/tree/browser-extension/browser-extension
# lahacker snarfed i want a twitter user to be able to plunk their username/password into my software and have it just work; for GitHub, DynaDot and DigitalOcean I'm currently using tokens; do you know if there's some kind of twitter equivalent? no third-party, no "app"..
# lahacker import web; browser = web.browser(); browser.twitter_login("exampleuser", "p@ssw0rd"); browser.twitter_syndicate_post("test", "example.com/test")
# lahacker so the idea is that you're running your own software
# lahacker in that case, you need to go through the entire Twitter App registration process?
# lahacker do you give your passphrase to your browser? your password keeper?
# lahacker if i just simply take the passphrase, pass it on to twitter.com in firefox, never hold on to it?
# lahacker and if this is software that's being run by the user on their own host/site?
# lahacker do you use a password manager?
# lahacker well here's the thing..
# lahacker so i'm writing a micropub editor right now
# lahacker so maybe i've got this wrong
# lahacker i'm instructing the micropub server on my own site angelogladding.com to store my credentials (un/pw)
# lahacker then i send over to my editor syndicate-to: ["twitter"...]
# lahacker i check the Twitter box in my editor and then my own site uses the browser it has open in the background to perform the syndication
# lahacker what about a site that doesn't have an api?
# lahacker could i meet some kind of security criteria?
# [snarfed] having said that, you are right that the OAuth app registration process is awkward for self hosted client software. app registration on big sites is often too heavyweight to impose on individual users, but embedding your own app is also awkward for its own reasons. i don’t know that the industry has a good answer there. aaronpk?
# lahacker i mean i've got the whole darn thing one-click ready to rock and roll and i swear i've been through the twitter docs a dozen times
# lahacker i just want to say, sorry, not sorry
# lahacker dang
# lahacker it's bad enough sending the user to a page on the site to gen a token and copy/paste it back
gxt joined the channel
# lahacker k so how about typing your twitter password into beakerbrowser?
# lahacker i'm aware of the implications..
# lahacker yeah i've been following along from a distance for a long time
# lahacker but this is like software that runs your dot.com
# lahacker in a sense your browser in the cloud
gRegorLove joined the channel
# lahacker the third party apps are the micropub editors and they certainly don't receive the passowrd