ccchapman, ShadowKyogre, [tantek], jeremycherfas, nertzy, wagle, jeremy, Seirdy, samwilson, [fluffy], gRegorLove, btrem, [chrisaldrich], alex11, mblaney and jamietanna joined the channel; ShadowKyogre and mblaney left the channel
#jamietannaIs anyone able to give me a hand trying to get micropub.rocks running locally? There's no setup guide and as a non-PHP dev I'm not 100% sure where to start D:
#jamietannaI'm looking to get one of my PRs ready to go, so as part of that I'll raise a PR for a local setup guide, too
ShadowKyogre, samwilson1, [pfefferle], [Murray] and [Ana_Rodrigues] joined the channel; ShadowKyogre left the channel
#GWGMy new consent screen got reviewed this morning. I opted for the notice about using PKCE over the warning about not using it.
#jamietannaThat's fair. I guess as long as users are confident that _not_ seeing the lock is bad, that's good. For my use case, I'm more likely to remember / be happy with the absense == all's good
#GWGjamietanna: I'm going with seeing the lock is better. But once most implementations are on PKCE.. I may reverse that..the same way that browsers have gradually changed their padlock symbols
#GWGThis is the first time I have revealed PKCE is being used or not, and it's been in my implementation for a long time
#jamietannaOnly clients I've written for my own personal use, I'd love to see more using it!
#GWGjamietanna: I did a check... I can add refresh tokens rather easily, but nothing to test them with.
#jamietannaInteresting - have you looked at using a plain OAuth2 library just to look at what they're like? I.e. what is needed to do the `refresh_token` grant, whether a refresh token is issued fresh and the old one revoked, etc?
#jackyI know Mastodon does it sometimes when it's presenting a code you can enter into a device
#jackyit's like in situations where polling can't be done or there's no web browser
#jamietannaAhh yes - we've had some chats about that before. I'm tempted to make a Linux PAM handler so I can use IndieAuth over SSH connections, but otherwise not really sure where else we'd use it
#jackyhaa that'd be interesting for shared hosting via IndieAuth
[snarfed] joined the channel
#[snarfed]dangerous though. you’d need a fallback, otherwise when your site breaks, you couldn’t log in to fix it 😆
#jamietannaGWG would you be able to add different expiry to the refresh_token compared to others? / allow a refresh_token to create an access_token? (is this kinda built into WP?)
[KevinMarks] and [chrisaldrich] joined the channel
#GWGjamietanna: Yes, not yet. Expiry I built into the implementation, but only use it to expire auth codes. Modifying it now to expire all codes
#GWGAdding a default expiry config setting is trivial
#aaronpkif it weren't for "play" then "consume" covers all of them too
#[chrisaldrich]media consumption is the closest I can get, but it sounds/feels clunky... the opposite being media creation for the other types as a group.
#[chrisaldrich]entertainment is sometimes a catch-all for watch, listen, read, but isn't always applicable for large swaths of things that would otherwise be lumped in (at least in my case).
#aaronpkand eating isn't always entertainment either
#[chrisaldrich]you could always make up a new word like Last.fm did for music listens as scrobbles... rewablies?!?
#Loqiresponses, or interactions, in the context of the indieweb, refer to all the different ways and things people explicitly do to and with others’s posts, from written replies to quick likes, in other words responses = replies + reactions https://indieweb.org/responses,
#[chrisaldrich]I do like tantek's framing of the three broad things as consume, react/response, and produce.
#jackyI was wondering this too re: what to call them
#jackythey're not 'reactions' but they're not necessarily like some outward content that's easily shared
#jackyI settled on Activity myself (I haven't built out my feed for it since I don't think giving each action a dedicated page makes explicit sense right now for me)