KartikPrabhu, nertzy_, strugee, alex11, Seirdy, hendursa1, [jgmac1106]1, IWSlackGateway, IWSlackGateway4, [tantek]1, moose333, kogepan and [Paul_Walk] joined the channel
#[Paul_Walk]↩️ That has been precisely my experience too
schmudde, tetov-irc, capablecable[d], kimberlyhirsh[d], ralismark[d], sayanarijit[d], _hepphepp[d], System[d], indieweb-irc-bri, tracydurnell[d], Zegnat[d], marksuth[d], daiyi[d], akevinhuang, P1000[d] and shoesNsocks joined the channel
#@Cambridgeport90↩️ I'm also going to subscribe to your RSS feed, too. (You should make that interactive via the Webmention Wordpress plugin. That way you can get conversations started from across the web. being a writer and all...) (twitter.com/_/status/1456619674335125504)
kogepan_ and [jacky] joined the channel
#[jacky]schmarty: I ended up going with just tokens but I was thinking of storing the header value of 'Set-Cookie' and using that to send back as `Cookie`. After doing some reading, that proved to be a bit of a janky approach (even if I used SessionStorage)
#@justincox↩️ The shortcut does not require Toolbox Pro, or any of the other Shortcuts enhancement apps. And I’ll have to look into the Webmention plugin, I’m not aware of it. Thank you! (twitter.com/_/status/1456635210662035460)
[schmarty] joined the channel
#[schmarty]jacky: it sounds like a weird approach! Like isn't that what the built-in browser cookie handling does? 😅
#[jacky]indeed! but it seems like doing that with XHR requests isn't compatible (which makes sense with the advent of JWTs and the like)
#aaronpkthat definitely should be how it works normally with XHR too, you shouldn't have to do anything special
#[schmarty]CORS is definitely gonna interfere if it's two endpoints that appear different to the browser. you might also need the receiving endpoint to set a *`Access-Control-Allow-Credentials`* header
#[schmarty]sounds like the right thing on the client side!
#[schmarty]i'd check to see if the endpoint is sending Access-Control-Allow-Credentials and then see if the endpoint is getting receiving a Cookie header.
#[schmarty]also lol i got my terminology messed up. i should have said sometimes i miss the messy old days of jsonp
#Loqijacky has 17 karma in this channel over the last year (62 in all channels)
#[schmarty]with my recent forced updates of some sta(b)le nodejs-based indieweb projects on glitch I am once again back on my BS of "what if composable expressJS plugins for indieweb building blocks?"
#[jacky]tbh something I want is to do some "preflight" work to generate cached mf2-json forms of pages on my site (and only update it if it notices a change in its caching values)
#[jacky]I could see something like that helping with rel=alt and clients that might not have a parser handy
#jamietannaWould be good to have another person using Introspection :)
#ZegnatI am very interested in Introspection, true, that might be my focus!
#ZegnatThe more I have been thinking about the metadata the more I like it. It will be easier to build a thing completely separate from the website’s own engine if all people need to include is the one link in their head (or HTTP headers)
Seb[d] joined the channel
#jamietannaI'm glad we're doing it now, before we have too many endpoints, and we can have a while where both options are available, but hopefully we'll get clients supporting the new means to nudge people over
#LoqiIt looks like we don't have a page for "Introspection" yet. Would you like to create it? (Or just say "Introspection is ____", a sentence describing the term)
#ZegnatIf for someone to write an endpoint that lets them login to the wiki, they need to setup multiple endpoint URLs following multiple OAuth specs, I feel like we failed the promise of the easy decentralised identity provider
#jamietannaah gotcha, yeah that's fair - I guess with this it'd now be two endpoints instead of just one for that, but one "endpoint" can "just" be a static JSON file
#aaronpkHopefully this makes it easier to set up since it's only 1 html tag now
#[schmarty]in some ways it is only pushing the complexity around
#aaronpkcorrect, hopefully onto the part that it's expected fewer people will build
#aaronpkwe don't expect everyone to build their own indieauth server into their site, so it'd be great if adding an existing indieauth server to your site was as simple as possible
#[schmarty]possibly! this reminds me that i need to try and catch up on the last 2-ish years of iOS Shortcuts development and fix my IndieAuth- and Micropub- related shortcuts 😒
_wackycity[d], Saphire, astralbijection[, mackeveli_, benatkin, nsh, reed, LaBcasse[m] and diegov joined the channel
#GWGI need to write a PR for the revokation endpoint next
EvanBoehs[m] joined the channel
#Seb[d][schmarty]: same boat here. Even Quill stopped working because my IndieAuth endpoint is too old
#Seb[d]‘too old’ is probably ‘read the spec wrong years ago’ tbh
#aaronpkthere have been a couple updates that might break, and i will admit with quill and others i have been on the more aggressive side of keeping up with the spec vs compatibility
#[jacky]getting people to understand rel=me is like trying to convince them that HTML exists and hasn't broke
#[jacky](this is in relation to the bluesky group)
#[jacky]I want them to adopt rel=me mainly to make it easier to do Web sign-in\
jeremycherfas and daiyi[d] joined the channel
#GWGaaronpk: As a reference implementation, Quill should always be up to spec