#jackyyeah! there's a chance that the user page might need a different type of authorization (so a different endpoint could be provided) or maybe they change it depending on who's asking (think: multiple identities/ACLs from one user/domain/URL)
#jackygranted, that sounds a bit complex in theory
#jackybut it's possible with a site that holds more than one user (like if Mastodon wanted to use specific URLs)
#SaphireI mean, if the specific user instance does not care about me parameter, it is very much free to ignore it. But a client app potentially not proving a "me" value to a multi-tenant auth host because it assumes single-tenant only use case, uh, sounds problematic?
#jackyI'm not very good with specific language stuff like this in specs, tbh, but I _think_ that client apps NOT providing a 'me' parameter wouldn't be a thing
#jackyin the sense that, without it, you can't do the resolving of their authentication _or_ token endpoints
#SaphireWell, it is apparently allowed by spec to fetch a provided "me" url, get auth endpoint, and not give the "me" to said endpoint?
#jackyalways glad to talk over this stuff - both parties get more understanding
#SaphireThe section about "treat me parameter as insecure/compromised data" (paraphrasing) kinda made me understand that ^^
[Tim_Nolte] and ShadowKyogre joined the channel
#SaphireSo.. never allow any potentially malicious/untrusted actor be able to put a ref link or control your headers to mess with what auth endpoint is used..
#aaronpkI mean, generally yeah I'm not gonna let random people change my website :-)
ccchapman and alex11 joined the channel
#@reinhart1010↩️ Kalau saya, karena sering nulis blog di lebih dari satu tempat, sering reupload konten blog di situs baru saya http://reinhart1010.github.io.
Situs ini masih belum ada fitur like dan komentar (meskipun rencananya mau ditambahkan webmentions), jadi saya juga naruh link artikel aslinya. (twitter.com/_/status/1357924947926999044)
dopplergange, gRegorLove_, dhanesh, silo, nickodd, [KevinMarks] and jamietanna joined the channel
#jamietannaThe removal of the `me` parameter also allows you to use a general-purpose OAuth2 client, instead of an IndieAuth specific client
#jamietannaIf no `me` is provided, it's up to the user who they want to authenticate as. And tbh, even if there was a `me`, the authorization server doesn't have to listen to it - users can choose what identity they want
#SaphireHm.. is it worth having both h-card and older vcard-y thing too on, well, page with that?
silo and KartikPrabhu joined the channel
#SaphireSo uh.. kinda trying to make own mock-up of a login screen for 3rd party indielogin, well, login. But having some difficulty and kinda want to see already existing examples and I'm not sure where to get them ^^'
alex11, [KevinMarks], silo and ccchapman joined the channel
#SaphireHeh.. one day I will get myself an image share/drop thing set up. For now just trying to figure out how to throw in the current mockup result for login consent?
#SaphireMaybe pillage Mozilla for some icons.. also not sure whether to put. PKCE on top of bottom. And in general unsure of layout but I think it works mostly >.>
alex11 joined the channel
#Saphire...also not even sure what's up with the font and it just slightly not getting properly aligned vertically x.x
silo joined the channel
#leo60228if i'm using Bridgy and i link someone else's Webmention-compatible site on a site that i have Bridgy linked to will they receive a Webmention?
#leo60228the specific thing i was curious about was whether if i linked a webmention-compatible site in a github commit message they would get a webmention
#leo60228i suppose i could just send the webmention manually from my cli
ShadowKyogre, [KevinMarks] and leg joined the channel; ShadowKyogre and nickodd left the channel
#lahackeri'd like to search my micropub endpoint for presence of a URL (eg. the like-of property of an entry) so i can light up my extension icon when i'm on a page i've interacted with before
#jackysomething like `?q=source&exists[]=like-of&property-like-of=$URL`
#jacky^ that's a hard check imo, you wouldn't need the `exists[]` if you know you're looking for a particular property
#lahackersince it seems "filter" is intended to be used in a letter-by-letter sort of fashion for autocomplete.. how about ?q=source&search=https://indieweb.org
#lahackeri'd prefer to keep it as general a search as possible
#jackylike if someone signed in with their site, it'd automatically highlight action buttons (like reposting, etc) and allow for removal of said changes