#dev 2022-11-21

2022-11-21 UTC
geoffo joined the channel
#
aaronpk oops my deduping code isn't deduping bridgy fed
gRegor joined the channel
#
[schmarty] heh i was starting on a mechanism for my micropub endpoint to stop myself accidentally making multiple likes of the same URLs. turns out i had only made 11 dupes out of ~1250 likes over 6 years.
superkuh joined the channel
#
[schmarty] so, uh. imaginary itch i guess.
#
aaronpk lol
#
aaronpk also i don't even think that's a bad thing
#
aaronpk you can like something more than once!
#
aaronpk i like my cat every day!
#
barnaby u-pet-of=indiecat
#
[schmarty] aaronpk: more than half were clearly double-taps in my micropub client or times i thought my site had issues. only like 3 were actually liked more than a day apart, i think.
#
aaronpk ah yeah i have done that before, mostly when iOS shortcuts lags for a second and I tap it again thinking it didn't work. then I get two notifications of the result. then i have to go delete a post
#
aaronpk whoa snarfed++ for the new bridgy fed onboarding flow
#
aaronpk i thought it was just a home page update
#
[timothy_chambe] Do folks know what this is referring to?
#
[timothy_chambe] https://social.wake.st/@liaizon/109379270930355481
#
Loqi [˗ˏˋ wakest ˎˊ˗] @tbeseda @chrisaldrich @tchambers There are some recent developments in the area of Indieweb/Fediverse overlap you might be interested in: @dev just added #Webmention support to #MicroBlogPubThis is not to be confused with a totally different networ...
#
angelo aaronpk can i get your opinion on https://chat.indieweb.org/dev/2022-11-20#t1668977991893700
#
aaronpk [timothy_chambe]: https://microblog.pub/ ?
#
Loqi @dev@microblog.pub
#
Loqi [angelo] has anyone implemented a device flow on their indieauth server? https://www.oauth.com/oauth2-servers/device-flow/authorization-request/ starts with what looks like a POST to the auth server's token endpoint. would it be correct to kick off the flow w...
#
gRegor [timothy_chambe], https://dev.to maybe?
#
gRegor what is dev.to
#
Loqi DEV or dev.to is a silo-based community of software developers that uses their platform for discovery, publishing articles and networked learning about programming and development topics https://indieweb.org/dev.to
#
aaronpk speaking of micro.blog, does micro.blog have a way to syndicate to twitter?
#
barnaby the microblog.pub part? I don’t know tsileo but they seem to be doing very cool work wiht MBP, supporting both AP and a lot of indieweb protocols
#
aaronpk oh it does https://help.micro.blog/t/cross-posting-to-twitter-medium-mastodon-and-more/85
#
barnaby ash[m] has first-hand experience with it
#
gRegor thanks, barnaby. Merging that does seem to resolve https://github.com/indieweb/indiewebify-me/issues/109. I wonder if it was the rel-me update that fixed it. I think I had updated that rel-me dep on my test site but it hadn't made it into the last merge/deploy somehow.
#
gRegor !mf2 https://webrocker.de/
#
Kaja https://php.microformats.io/?url=https%3A%2F%2Fwebrocker.de%2F
#
Loqi [snarfed] #109 h-card validator should prefer representative h-card
#
Loqi Tom
#
aaronpk angelo: omg that should not say `/token` there 🙈
#
aaronpk that's just an example URL, so it *might* be `/token` but that is in fact the special device endpoint
#
angelo i had a feeling!
#
aaronpk here's another step by step https://www.oauth.com/playground/device-code.html
#
barnaby gRegor++ for the iwfy.me deploy, checking the URL from that original issue seems to find the correct h-card now
#
Loqi gRegor has 22 karma in this channel over the last year (77 in all channels)
#
[snarfed] thanks aaronpk!
#
aaronpk oops karma fail [snarfed]++
#
Loqi [snarfed] has 41 karma in this channel over the last year (75 in all channels)
#
gRegor Think I've found a way to check what my posts look like in Mastodon without setting up an actual account. Follow someone, then after posting and sending the Bridgy Fed webmention, visit their Mastodon profile. Find yourself on their Followers tab, click on it, then click on "Posts".
#
aaronpk Ohh that's new in 4 I think
#
gRegor This works for now, I think because the links on Mastodon are doing JS stuff and not following redirects. Vs just accessing my "profile" page there will redirect to my site, which makes sense: https://indieweb.social/@gregorlove.com@gregorlove.com
#
gRegor [snarfed] did follow me from indieweb.social too, that might be a pre-req
#
gRegor Otherwise I guess an instance wouldn't have a copy of my post just because I followed someone there
#
gRegor But my photo post came through great. Exciting!
#
aaronpk I just realized, I'm not sure I'm sending my ActivityPub replies to the right places. Am I supposed to deliver a reply to all my followers? Or only the person I'm replying to?
#
[snarfed] file:///Users/ryan/docs/activitypub_20180123.html#inbox-forwarding ?
#
[snarfed] hah um just a sec
#
[snarfed] https://www.w3.org/TR/activitypub/#inbox-forwarding
#
[snarfed] ?
#
aaronpk oh so it's the receiving server that forwards them?
#
[snarfed] maybe?
#
aaronpk i'm confused by this "When Activities are received in the inbox, the server needs to forward these to recipients that the origin was unable to deliver them to"
#
aaronpk i'm imagining writing a test suite for this an OH BOY does that sound like a massive project
#
[snarfed] sounds like everyone converges on some kind of salmon
#
[snarfed] aka salmentions aka inbox forwarding
#
aaronpk i can tell you for sure i am not forwarding messages i receive in my inbox anywhere
#
aaronpk it also seems weird that i would do that, because i'd be sending it with *my* httpsig, but the activity would be with a completely different author, so how is that verified?
#
aaronpk does the receiving server go fetch the post to verify? or does it just...not? in which case that would be a fun bug to exploit
#
aaronpk and if it does go fetch the post to verify it, then why bother sending the post contents at all? wouldn't it be better to just send the URL?
#
aaronpk i feel like we probably had these conversations 7 years ago in the w3c socialwg
#
[snarfed] yeah you are in an unenviable position to be implementing and questioning the spec at this point 😆
#
aaronpk well if this is going to work long term these things need to get sorted out and documented
#
aaronpk otherwise it's going to turn into a mastodon monoculture
jeremycherfas joined the channel
#
aaronpk out of curiosity, in mastodon i typed in the URL to one of my replies to something on twitter which hasn't been sent to the fediverse
#
aaronpk it imported the post, and now when i look at the copy of my profile on mastodon, i see that post in the replies section
#
aaronpk clicking on it shows only the post, but not the thing i'm replying to (of course, because it's a twitter url)
Zegnat joined the channel
#
[snarfed] ok, feeling a bit better about how activities are rendered in the Bridgy Fed UI. eg https://fed.brid.gy/recent , https://fed.brid.gy/user/tantek.com
#
[snarfed] (may need a shift-refresh)
#
[snarfed] still need to de-dupe, but that should be straightforward
oodani, [jeremycherfas] and gRegor joined the channel
#
[tantek] [snarfed]++ wow! The update to https://fed.brid.gy/user/tantek.com is an amazing "Notifications" equivalent from what Twitter was providing!
#
Loqi [snarfed] has 42 karma in this channel over the last year (76 in all channels)
#
[tantek] bridgyfed++
#
Loqi bridgyfed has 1 karma over the last year
#
[tantek] has anyone posted a photo and seen it propagated via BridgyFed? curious before I try it myself
mro joined the channel
#
@CodeMonument ↩️ Maybe there's an information gap there. I've never heared of webmentions before, even as long term webdev! I Also had the idea for a Twitter alternative with rss + a commenting system, but thought we must write that ourselves as proprietary extension to rss. (twitter.com/_/status/1594593147652292617)
#
[tantek] more thoughts on the BridgyFed "notification" feature, while it's quite handy/useful, I have a feeling that in pretty short order we may need to explore making it private-by-default to the domain owner, to reduce vulnerabilities to harassment
#
[tantek] for now I personally am fine with mine being "public" to help demonstrate the feature, but would suggest we consider changing that to "opt-in" to being public, or perhaps "public to anyone signed-in via IndieAuth"
mro joined the channel
#
[jamietanna] Anyone using Bridgy Fed able to find a way to view private content in the browser/social reader? I've had a ping from someone who's private, fortunately I have the full post content through the Bridgy Fed feed, but no other means to view it, and although I'm gonna try replying to it later, I've no idea if that would work 🤔
mro joined the channel
#
[KevinMarks] https://queer.af/@erincandescent/109381296067019009
#
Loqi [Erin] @mcc ActivityPub doesn't actually have a concept of at-mentions! They're entirely a Mastodon implementation detail!(A side effect of this is that the addressing of messages from Non-Mastodon servers can potentially be confusing because it hides the a...
barnaby, petermolnar, IWDiscordRelay and mouse[d] joined the channel
#
IWDiscordRelay <c​apjamesg#4492> https://xkcd.com/2700/
#
Loqi [XKCD] Account Problems https://imgs.xkcd.com/comics/account_problems_2x.png
#
[snarfed] ^ isn't that wrong? https://www.w3.org/TR/activitystreams-vocabulary/#dfn-mention
#
[snarfed] [jamietanna] ruh roh, I thought I discarded all non-public/unlisted activities in BF. what's the example you saw?
#
[jamietanna] https://fed.brid.gy/log?start_time=1669001165&key=https://phpc.social/@lewiscowles1986/109379660247729947%20https://www.jvt.me/&module= it's an unlisted mention
#
[jamietanna] I'm glad to have got it cause its handy to know, just harder to reply / read it 😂
#
[snarfed] oh yeah unlisted are kept, that's expected
#
[snarfed] I hopefully block everywhere they show up in the BF UI in robots.txt
#
[jamietanna] Gotcha
#
[snarfed] [tantek] re BF's recent activities (aka notifications) and harrassment...hmm. maybe? is it different from normal Bridgy's recent activities UI, eg https://brid.gy/twitter/t ?
geoffo, ben_thatmustbeme and [fluffy] joined the channel
#
[fluffy] @capjamesg There’s a turnkey conference social network thing that a lot of the conferences use, including GDC. One fun thing is that they sort the public name list in ASCII order, and it’s quite possible to inject a NUL at the beginning of your public name. I had to engage in Shenanigans to actually enter it in because it’s only accessible by a native iOS/Android app but they don’t actually validate their input, and copy-past
#
[fluffy] is totally possible :D
#
[fluffy] also NUL appeared as a Unicode <?> character, but \001 didn’t, so for much of the conference I was “\001fluffy”
#
[fluffy] (which still nobody else figured out how to do)
#
[fluffy] Anyway that’s a fun little bit of input sanitization that’s worth remembering.
#
@danhannigan Got webmentions pulling into my personal site, have yet to build that out on the front end, but they're in there. Neat! If you're unfamiliar with webmentions check out: https://indieweb.org/Webmention (twitter.com/_/status/1594730227061690368)
[aciccarello] and mro joined the channel
#
[tantek] snarfed, I think you’re right, they’re similar in that regard, except BF also adds follows which feels a bit more exposed. content interactions are one thing, expression of connections between people is another. of course Twitter itself makes people’s followers/followings "public" so someone could be directly polling those too.
#
[snarfed] right. I'm a bit reluctant to add eg IndieAuth because I expect only a subset of existing and new users actually have it
#
[snarfed] but if we see concrete harms that come out of the new BF user pages, I'm definitely open to doing something!
#
[snarfed] I could also just hide follow activities
#
[tantek] I'd expect nearly every BF user has IndieAuth
#
[tantek] I personally like seeing all the activities on the BF page (well done with the update), and I'm ok having them be shared.
#
[tantek] Having had conversations with people who have been stalked, it's public streams of stuff like this that tends to be somewhere between concerning to a barrier to usage (because it feels "unsafe").
#
[snarfed] yup, understood. and yeah they are all public, and I don't know whether this exposes them meaningfully more, but I'm open to discussing
#
Seirdy (continuing discussion from #indieweb) and then there's non-technical aspects of the fediverse
#
barnaby would definitely be interesting to get some numbers on how many BF users have some sort of indieauth link on their homepage (indieauth-metadata or individual endpoint links)
#
Seirdy the whole concept of instance-blocking and blocklist-sharing to ensure that only well-moderated instances make it to your federated timeline
#
Seirdy that's something that really has no IW equivalent. the closes we have is "vouching" which again is a very individual-centric way to do this
#
Seirdy as opposed to an "interlinked community" way.
#
Seirdy basically most of what makes the fediverse special isn't exactly developery/technical stuff, it's the social aspect
#
Seirdy so i feel like a "fediverse + indieweb guide" should probably lead with that
#
Seirdy the protocol is just an implementation detail
#
Seirdy the real defining traits of IW and Fedi from a user's perspective are the very different community dynamics. IW builds a network from personal websites; Fedi builds a network from communities.
#
[snarfed] from a user point of view, yes
#
Seirdy ok moving the convo back to #indieweb bc it's non-technical from here
#
[snarfed] the plumbing differences are interesting and worth discussing too, but probably different posts
#
[snarfed] also IW can and does have lots of features like blocking that are implemented inside individual personal sites. not everything has to be in one of the cross-site protocols
#
[tantek] Seirdy, one key aspect that is very much developer related is the difference in standardization approach of building blocks vs a monolithic spec
#
[tantek] that led to a lot of other decisions
#
barnaby arguably AP is non-monolithic in that you also have to read the mastodon source code if you want to figure out how some stuff works
#
Seirdy yes but the whole model of blocking is very different. fedi instances curate blocklists to create a specific type of community. anti-capitalist instances define themselves by blocking corporate-friendly instances or instances with cops. queer instances block instances that fail to moderate queermisia. it sends a strong signal that "this is what the instance is about, and these are the people
#
Seirdy who can feel safe here."
#
[snarfed] sure! and to your point, more of an emergent cultural feature than a new technology
#
Seirdy exactly
#
[tantek] "have to read the mastodon source code if you want to figure out how some stuff works" <-- nah, that's OSS monoculture
#
[tantek] still mono-* of a sort
#
[snarfed] (we have prior art of blocking/accepting wms by domain, but since indieweb sites are generally individual, that culture didn't emerge here)
#
[snarfed] [tantek] kind of yes, but also because the AP standard is significantly incomplete
#
[tantek] snarfed, indeed, which is always the problem when you try to have a monolithic spec. there's no way it's ever complete
#
Seirdy tbf IW sites need to consider a lot of unspecified things once they grow past a certain size.
#
[tantek] Seirdy, I suspect we're going to see some non-trivial fallout from the growth of Mastodon usage across more people and the "instances blocking instances" model
#
Seirdy s/going to see/are seeing/
#
[tantek] instances are going to get overblocked because of a few bad actors
#
[tantek] hah
#
Seirdy [tantek]: imo this is a feature, not a bug
#
[tantek] which is going to spiral out of control into a lot of isolation / blocking
#
Seirdy this incentivizes instances to moderate properly
#
Seirdy blocks get lifted all the time
#
[tantek] it's a bug when someone you follow / mutually even "disappears" for no reason
#
[tantek] instance blocks? huh that's good to know
#
[tantek] I rarely see individual blocks get lifted
#
Seirdy [tantek]: thing is, others on your instance might not be okay with sharing an instance with a mutual of that person
#
Seirdy again, it's individual/community
#
barnaby [tantek]: to clarify, “having to read the source code” was intended as a criticism, not suggesting that AP is building-block based!
#
[tantek] it's not really though, it's a lowest common denominator of offensiveness
#
Seirdy this is also why instances should avoid getting "too big to moderate".
#
[tantek] or rather, ironically, a social conservative approach: if anyone on an instance is offended by anyone on another instance, it gets blocked
#
[tantek] this is also a problem of shared blocklists that are in particular blindly shared
#
Seirdy that's why the first step is to observe the admins' behavior; if the admins seem chill, contact them about it
#
Seirdy if the admins refuse to moderate that person, then block the instance
#
[tantek] yes at least there is some sort of appeal/escalation path like that
#
Seirdy this is also why blocklist-curators include "receipts"
#
sknebel and a strong culture against automatic shared blocklists
#
Seirdy and when receipts aren't applicable, an explanation
#
[tantek] I mean they should. the shared block lists I've seen don't have receipts.
#
[tantek] AKA citations
#
Seirdy [tantek]: they typically don't share them publicly bc of harassment/retaliation
#
Seirdy you have to ask
#
[tantek] this really should be part of basic "block" functionality, that you can choose a link / post at the time of blocking to log as a "receipt" for yourself so if you ever want to re-evaluate a block, you can see why you did it
#
Seirdy esp. since kiwifarms made that blocklist-scraper and that other instance made a user-block detector/notifier
#
[tantek] I'd heard about the scraper. Didn't know about the user-block notifier wtf. also kiwifarms--
#
Loqi kiwifarms has -1 karma over the last year
#
Seirdy basically, moderation requires a lot of very thick skin given how determined the trolls can be.
#
[tantek] which sucks to burden people with
#
Seirdy like the admin of l****.*ro has a bunch of shared IPs that are used for legitimate purposes by other instances, and runs scrapers on them
#
Seirdy and publicizes the blocking without doing more "direct" forms of harassment
#
Seirdy but federates with communities that do harass
#
Seirdy so they see his notifs
#
Seirdy and then jump on
#
Seirdy some communities also try to "frame" others
#
[schmarty] this discussion is reminding me of this post from today: https://webdevlaw.uk/2022/11/21/a-quick-hypothetical-situation-or-your-crash-introduction-to-the-real-world/
#
Seirdy basically offloading all this absolute soul-eating toxicity onto the few people ready to deal with it seems like the right move, esp. when the people on your instance are used to that being their day-to-day and need a fucking *break* from it
#
[tantek] good post [schmarty]++
#
Loqi [schmarty] has 17 karma in this channel over the last year (37 in all channels)
#
[schmarty] offloading all the soul-eating toxicity onto a few people is a great way to burn out (or, as laid out in that article, legally entangle) those few people.
#
Seirdy (this is why people often get angry when people complain about fedi moderation creating "snowflakes who can't be offended"; the people making those complaints often haven't experienced getting doxxed, dogpiled, email-flooding, mass-gaslighting, and copypastas designed to trigger specific individuals)
#
Seirdy [schmarty]: yes, but i really don't see an alternative way to create a space where people get a break from having to do it all themselves
#
Seirdy networks are socially hostile by default
#
[schmarty] i just want to push back on the phrasing "the right move". i don't think it's actually sustainable at all. and a lack of alternatives doesn't excuse that.
#
Seirdy once they grow enough
#
Seirdy fair
#
Seirdy so yeah it takes a robust system of manual and aggressive blocking in order to protect the most at-risk people, because the amount of effort people spend on making their lives a living hell is absolutely mind-boggling.
gRegor joined the channel
#
Seirdy and that's why full transparency isn't always the default; often, it takes a certain level of trust for admins to share their receipts or even their blocklists with you.
#
[tantek] yeah I'm agreeing with a lot of that
#
[tantek] Mastodon << Warning: if you’re considering running an instance, beware of the concerns/hazards documented in: 2022-11-21 [https://webdevlaw.uk/2022/11/21/a-quick-hypothetical-situation-or-your-crash-introduction-to-the-real-world/ A quick hypothetical situation, or, your crash introduction to the real world] / <blockquote>When you are running a Mastodon server, you are the public policy team, and you are the legal team. Whether you
#
[tantek] realise it or not, whether you want to be it or not.</blockquote>
#
Loqi ok, I added "Warning: if you’re considering running an instance, beware of the concerns/hazards documented in: 2022-11-21 [https://webdevlaw.uk/2022/11/21/a-quick-hypothetical-situation-or-your-crash-introduction-to-the-real-world/ A quick hypothetical situation, or, your crash introduction to the real world] / <blockquote>When you are running a Mastodon server, you are the public policy team, and you are the legal team. Whether you" to the "See Also" section of /Mastodon https://indieweb.org/wiki/index.php?diff=84531&oldid=84526
#
Seirdy i've seen a similar phenomenon on Matrix
#
Seirdy with homeserver ACLs
lagash joined the channel
#
Seirdy but those are done by-room
#
Seirdy or by-space
mro joined the channel
#
[schmarty] ehehe this quote from that 11/18 akkoma dev log: "the curse of activitypub can be spread to more people instead of remaining esoteric knowledge"
#
@PuercoPop ↩️ indieweb's webmention https://indieweb.org/Webmention (twitter.com/_/status/1594752945773580288)
#
[tantek] [snarfed], open to h-feed / h-entry markup for https://fed.brid.gy/user/tantek.com pages?
#
[tantek] looks at https://github.com/snarfed/bridgy-fed/blob/main/templates/activities.html to see if there's enough elements / info to put the right class names
#
[snarfed] sure! not a high priority right now, I don't know of any automated tools consuming those pages, but I'm definitely open to PRs
#
[tantek] cool. I was figuring it might be an interesting publishing use of 'u-follow-of'
#
[snarfed] sure!
#
[snarfed] are you hoping to read it in a reader as a source of notifications? separate from the "HTML" link which has posts from your following?
#
[tantek] yes, social reader consumption was the thinking!
#
[snarfed] start with that "HTML" link and see how you like it
#
[snarfed] oh but you'd have to follow someone first 😁
#
[snarfed] do you post follows on your site yet?
#
[tantek] I both would be useful, but notifications seemed like a good place to start
#
[tantek] I don't post follows yet because I feel a "follow" would imply some degree of consistently reading posts from that person which I don't have setup yet
#
[tantek] or rather, I've setup readers and fallen out of reading habits so I'd need to figure that out separately from a user-flow perspective
#
[tantek] watching notifications is interesting in its own right though
#
[tantek] ah just seeing https://fed.brid.gy/user/tantek.com/feed which I see already has h-feed got it
#
[snarfed] yup. that's obviously a separate set of content though, posts from your following, but still yes
#
[tantek] oh but those are "only" mentions though
#
[tantek] no follows, likes, reposts
#
[snarfed] right, it's effectively your timeline
#
[snarfed] I'm open to mf2 on the user page!
#
[tantek] really? seems like a subset of notifications, perhaps that's my particular view though since I haven't added "followings" yet
#
[tantek] got it
#
[snarfed] yeah I guess timeline plus mentions
mro joined the channel
#
gRegor [snarfed], how much delay is there on posts showing up on https://fed.brid.gy/user/gregorlove.com/feed? I've followed a handful and one person posted 2 hours ago
#
gRegor Loving the iterations on the user pages btw
#
sknebel delay probably mostly depends on the sending instance
#
[snarfed] right, no delay after BF receives a post at an inbox. happy to look for a specific one if you want
#
gRegor Would those inbox posts show up on /recent too?
#
gRegor Tim is an example: https://indieweb.social/@tchambers/109383220637101265
#
gRegor which I do see that on /recent
#
Loqi [Tim Chambers] #Admin #Indieweb.socialThis instance now has 9,347 people with this as their home base...With being so busy on admin work, I missed us crossing that line.From instnaces.social: this makes us 0.15% of total 6,150,381users they scan on the whole #Fediv...
#
[snarfed] maybe I need to normalize AP actor URLs/ids more, I can look
#
AramZ-S[m] Ok, this is really cool - https://fediverse.zachleat.com/@zachleat/109383363399071337
jonnybarnes joined the channel
#
[snarfed] to confirm my understanding of AP, it doesn't specify response bodies for eg inbox delivery requests, right?
tbbrown and mro joined the channel
#
[snarfed] https://www.w3.org/TR/activitypub/#delivery specifies the request body, and mentions one specific case of 405 response, but that's it
jonnybarnes, mro, geoffo and [jacky] joined the channel
#
[jacky] so I saw this mentioned and wanted to highlight it https://jacky.wtf/2022/11/awG0
#
[jacky] I think I'm going to down the route of tags (like `u-category p-name` realm) to point to a fixed URL describing what kind of content would be mentioned or seen (which I'll prob define on my site and point to a Wikipedia page since that feels more 'stable') so that'd be something one could filter automatically in a /reader
#
[tantek] what purpose does the 'p-name' server there? maybe I'm missing the context
#
[tantek] serve* there
#
[tantek] I think it was a mistake to overload 'summary' as 'content warning'
#
[jacky] plain text representation of the content warning (for presentation and translation), the URL would point to something that'd be either known or recognizable by the consumer (be it one's site or a reader) to help with disambiguation (and can serve as a fallback)
#
[tantek] 'content warning' has sufficiently different/sensitive semantics that I'm starting to feel it's worth its own property
#
[jacky] yeah from what I'm seeing it, it 100% was (even upstream)
#
[tantek] what is cw
#
Loqi content warning is a feature of a post create UI where an author can hide by default some or all of the primary content of a post due to some concern about the nature of the content https://indieweb.org/cw
#
AramZ-S[m] I think that giving content warning its own property is a pretty good idea and might give some semblance of uniformity to a lot of different sites that use different mechanisms to accomplish the same ends
#
[jacky] bingo
#
[jacky] it reminds me a bit of /audience
#
[jacky] in terms of splitting it out but being context-/content-specific
#
AramZ-S[m] It also could be used to cover "spoiler warnings" as well, which while perhaps less serious is arguably a content warning and users use content warning tooling to handle spoiler warnings
#
[jacky] Indeed, the need of "affordability" can be put to the reader which is something tools _kinda_ give but not in a cross-platform way
#
[jacky] tbh I think I need to also speak to people who do abuse work and ask for their thoughts on this (and aggressively mention that this is not something that'll be implemented - just explored)
#
AramZ-S[m] Yeah, and a uniform format could empower browser plugin makers to do useful / interesting things with it as well. Like right now CW is basically enabled on Tumblr via browser plugins commonly used across the community. One could imagine a uniform setup would allow a site owner to prefer hiding CW-encased content while a browser plugin user would get a uniform experiance regardless of site owner preference, allowing both users and site
#
AramZ-S[m] owners to make the most of a cw feature.
#
[tantek] what is a content warning
#
Loqi content warning is a feature of a post create UI where an author can hide some or all of the primary content of a post due to concerns about negative impacts of the content upon viewers, and typically provide a text warning (eponymously named) with the nature of the concerns, which is initially displayed instead of the post content https://indieweb.org/content_warning
#
[tantek] ^ how's that for an improved definition, to start with?
#
[jacky] AramZ-S[m]: that's precisely my "secret" agenda
#
[snarfed] there's new interest in this in Bridgy/Bridgy Fed too, https://github.com/snarfed/bridgy/issues/952#issuecomment-1321209446
#
[jacky] that works for me [tantek]
#
Loqi [pdcawley] This seems to have sat for a couple of years with no serious objections. Is there anything that can be done to move it forward (or backward – out of limbo, anyway)? In the mean time, I'm going to start marking my blog up with `p-content-warning...
#
[jacky] Ah good point in that thread
#
[jacky] if anything does come up on my end in terms of it, I'll be sure to leave a link for p. art
#
[tantek] jacky, would a "simple" text property suffice? and if folks want more structure they can nest (hash)tags in the text?
#
[snarfed] I haven't followed deeply. afaik there's no mf2 consensus yet, and little to no published examples in the wild
#
AramZ-S[m] Tumblr uses content tags, A lot of bloggers use tags as well while youtube descriptions often have it in text. Mastodon has it's own format that wraps the text I believe? I haven't looked at how it does it.
#
[jacky] I think text _can_ but I'm also trying to consider language barriers (like saying "cw: notes of violent r*pe, etc), I can see the lever of having linked content help with disambiguation there (in our attempts of doing better than what's out there)
#
sknebel https://github.com/mastodon/mastodon/issues/20117 <- the mastodon CW renameing proposal I mentioned earlier
#
Loqi [leahoswald] #20117 Rename content warning (CW) to content notice (CN)
#
[jacky] hmmm https://codeberg.org/fediverse/fep
#
[tantek] [snarfed] there is this: https://github.com/microformats/h-entry/issues/19
#
Loqi [jk-na] #19 p-content-warning proposal
#
AramZ-S[m] I'd assume that any incoming tag or hashtag with `#cw` includes a content warning.
#
AramZ-S[m] Looking at Mastodon, their format in their account feeds is:
#
AramZ-S[m] `<p><strong>Content warning:</strong> Content Warning Description</p><hr />`
#
[tantek] what markup is that inside?
#
AramZ-S[m] Sucks that it isn't encompasing the warned content in a tag, that would have made more sense to me
#
AramZ-S[m] Just inside the RSS feed `description` tag sadly.
#
AramZ-S[m] on the site itself Mastodon handles it like this:
#
[tantek] AramZ-S[m], that's not surprising though, since RSS so coarse grained that it is to be expected that RSS feeds of modern social content are lossy
#
[KevinMarks] the natural HTML for it is <details><summary> CW: description</summary> Content to be hidden</details>
#
AramZ-S[m] sent a code block: https://libera.ems.host/_matrix/media/v3/download/libera.chat/d501e8bc435aee605418e3bd34aaa9cbef10f652
#
[tantek] it's kinda like hey this thermal-printed fax of this text book is not the most readable
#
AramZ-S[m] Yeah, though it is weird b/c the social site post above does encase it in a tag.
#
AramZ-S[m] Interesting that instead of an `hr` on the Mastodon UI there's an empty `div`
#
[KevinMarks] https://gist.github.com/kevinmarks/fe90eb54129a1014b9ccdc395181357a
#
[jacky] that expander looks like a fake `<details>` , interesting
mro joined the channel
#
mro how would one add microformats to an atom feed entry to get webmentions to work when there is no html
#
[KevinMarks] you can make Atom have xhtml in, like tantek does
#
[tantek] mro, in theory there can be non-HTML webmention consumers. in practice no one has bothered because on the web you have to always at least publish HTML
#
[KevinMarks] we did have one example with an archiving site iirc
#
mro [tantek] have a look at https://l.mro.name
#
[KevinMarks] not sure that is valid atom - the relative links look wrong
mro joined the channel
#
mro https://validator.w3.org/feed/check.cgi?url=https://l.mro.name/o/p/
#
aaronpk the microformats parsers should pick up class attributes on the XML elements without any problem
#
aaronpk i don't know if adding class attributes makes it not a valid atom feed
#
[tantek] mro, yup, and there were lots of attempts to make XML it's own" thing" in the early to mid 2000s, XHTML2 etc. It didn't really get much uptake on the web so there's not a lot of incentive to work on it, when it doesn't seem to provide much (if any) marginal benefits
#
[tantek] yes, there are neat tricks one can do with XSLT, but that's kinda where it ended
#
mro aaronpk indeed it feels a bit odd to add semantics that's already there.
#
aaronpk http://php.microformats.io/?id=20221121221324434
#
mro posting atom has the benefit of being the raw data as TimBl once advocated for. The content can be immutable while the look (incl the rendered markup) may see redesigns.
#
aaronpk it's a neat idea in theory but i think it's a dead end in practice
#
mro alas, it seems so in terms of webmentions.
#
barnaby posting HTML with h-feed and h-entry is also posting the (far richer than ATOM) raw data, and you can reduce DRY by using a mf2 to ATOM conversion service as your ATOM feed URL
#
barnaby that’s what I’ve been doing for years
#
[jacky] increasing DRY 😉
mro joined the channel
#
barnaby lol true
#
barnaby DRYer
#
mro and I find the idea neat in practice :-)
#
mro how would I subscribe with a feedreader?
#
[jacky] ah forgot to link this
#
[jacky] https://sele.jalcine.dev/dashboard a sample of the dashboard (pinging [schmarty] for feedback b/c I added some of your thoughts)
#
[KevinMarks] either find one that supports h-feed or use granary.io to mung it to Atom
#
barnaby you’d put the link to the HTML page in your feed reader and it should discover the link to the ATOM feed by itself
#
[jacky] and yours gRegorLove
#
mro so there is a separate feed? Not my idea of dry.
#
[jacky] (is slightly obsessed with the button styling, lol)
#
mro lol
#
barnaby there is a separate URL for the feed, but no second feed that I have to maintain
#
[jacky] oh interesting, owncast doesn't expose a token endpoint
#
mro what about the toolchain – static files or server code on read?
#
barnaby I only have to post to and maintain the HTML which I make anyway for people who want to look at my site in a browser, which is the vast majority of them
#
barnaby and as ATOM is lossy compared to h-feed, it makes sense for me to convert in that direction
#
barnaby I have my own h-feed to ATOM endpoint which I use, but afaik you could use granary.io too
#
mro fair enough – the browser is what renders the atom+xslt as well.
#
mro it's already there.
#
barnaby which would work better for a static site if you don’t want to host the conversion endpoint yourself
#
mro the conversioon is in the browser.
#
barnaby what do you use for individual post URLs in an ATOM-only site? do they act as a “feed” with only one item?
#
mro but we're wandering. I was courious about webmentions on the first place.
#
gRegor I use granary for h-feed to Atom of notes
#
mro no, just <entry> (also valid atom documents)
#
mro https://validator.w3.org/feed/check.cgi?url=https://l.mro.name/o/p/argkt5x/
#
[tantek] It's a neat proof of concept, but as aaronpk indicated, a deadend. Atom isn't being iteratively improved and is a frozen state of features from the mid-2000s.
#
[tantek] In contrast to both HTML and mf2 are living specifications with active communities evolving both
#
barnaby well https://l.mro.name/o/p/ is definitely the prettiest ATOM feed I’ve ever seen
#
mro well living standards and active communities make me think of activitypub and I get the shudders.
#
aaronpk there's more than one way to have a living standard :)
#
mro barnaby thanks a lot!
#
gRegor Some more context on Atom feed mf2 parsing: https://github.com/indieweb/indiewebify-me/issues/78 php-mf2 can handle it, but won't pass non-HTML documents to the parser
#
mro btw, there is a https://demo.mro.name/shaarligo to play with and break.
#
Loqi [mro] #78 false negative testing https://try.gogs.io/issue-5008
#
gRegor (based on content-type, iirc)
#
barnaby if people want to publish purely in ATOM then consumers either need to parse it as-is, or potentially fetch and run associated xslt which might produce HTML with mf2 classes?
#
mro indeed.
#
mro machines may digest directly, people rather would read rendered html.
#
barnaby without thinking too hard I’d be more in favour of the former, as the latter would likely only be able to replicate the existing semantics with mf2 classes, and wouldn’t be able to benefit much from the additional properties mf2 gives you
#
barnaby unless they want to use custom additions to ATOM, in which case casting those to mf2 classes could be useful for easy interop with existing webmention implementations
#
mro frankly I didn't bother about vcards or events in the feed.
#
barnaby I was thinking more about things like like-of, repost-of, in-reply-to which afaik ATOM doesn’t support? I vaguely remember a reply to extension, but I don’t know if it saw much support?
mro joined the channel
#
mro uh, right, sounds like link relations.
#
mro no support so far. It's like the proverbial first fax machine.
#
[KevinMarks] You can do AS1 stuff with Atom, which granary does but it is less rich than h-feed
#
[tantek] [KevinMarks] and some of us do publish AS1 with our Atom 🙂
#
[tantek] what is AS1
#
Loqi It looks like we don't have a page for "AS1" yet. Would you like to create it? (Or just say "AS1 is ____", a sentence describing the term)
#
aaronpk speaking of completely dead protocols 😂
#
@tplooker ↩️ It pays to note, while the framing of this proposal may be unique, the concept is not. OpenID federation has automatic registration and IndieAuth has documented a similar mechanism. Also if you look hard enough similar thinking can be traced back to OpenID 2 and SAML. (twitter.com/_/status/1594824657727000577)
#
barnaby are link relations not document-scoped in ATOM, as they are in HTML? that would mean you can’t use them in a feed, only on permalink pages
#
barnaby it’s one of the reasons we slowly moved away from link relations for entry-specific properties in mf2
#
mro as1 is interesting, unearthed it shortly ago: https://l.mro.name/o/p/ahtgcef/
#
Loqi ok
#
[KevinMarks] They're entry scoped and feed scoped, depending
#
[tantek] lol no it should be a redirect
#
barnaby [KevinMarks]: oh really? so you can have an ATOM entry in a feed with a link rel and it only applies to that entry?
#
[KevinMarks] The reason we went with the json form of AS1 was because parsing atom in client js was bad, and the gdata json wrapper for atom was worse
#
[tantek] barnaby I believe that is the case, I think you can have a <link> tag in an <entry>
#
[tantek] some day someone needs to dig into how AS1/JSON got hijacked into JSON-LD
#
[KevinMarks] mro's atom above has examples
#
barnaby interesting, TIL
#
[tantek] thus fulfilling all the feed devs fears back in the early 2000s that W3C would insist on RDFizing Echo/Pie (prior names of Atom) which is why feed devs took their effort to IETF instead
#
[tantek] which of course is predated by the RSS RDFizing battles between W3C & DW
#
mro who's DW?
#
mro oh, git ot, DAve.
#
mro hngrr, got it.
#
[KevinMarks] The gdata json vs useful json battle inside Google was how I ended up in dev rel, as I had upset too many people in eng by pointing out the nonsense
#
[tantek] what was gdata
#
Loqi It looks like we don't have a page for "gdata" yet. Would you like to create it? (Or just say "gdata is ____", a sentence describing the term)
#
mro lol
#
mro lots of pages of historic events.
#
[KevinMarks] Have a look at the json example on this page and weep https://developers.google.com/gdata/docs/json#json
#
mro mention json and I weep.
geoffo joined the channel
#
[tantek] GData is short for Google Data in the context of Google Data Protocol, a largely defunct "REST-inspired technology for reading, writing, and modifying information on the web" invented by Google. See Also: https://microformats.org/wiki/Google_Data https://en.wikipedia.org/wiki/Google_Data_Protocol and https://developers.google.com/gdata/
#
Loqi ok
#
barnaby whut
#
mro ok, midnight here, and I try to follow tanteks rule not to text after midnight :-)
#
barnaby that passed me by completely but I get the impression I did not miss much
#
mro cu!
#
[tantek] lol mro, g'night, now I have to recheck my rules 😂
#
[tantek] barnaby, the mid 2000s were kinda wild
#
barnaby $t shows up a lot in those examples, is that an evil gdata-promoting version of @t?
#
[KevinMarks] It meant "the text inside the xml element" (as opposed to the attributes on the element)
#
[KevinMarks] On the follow web action thinking
#
[KevinMarks] https://paul.kinlan.me/detecting-if-a-url-scheme-can-be-handled/
#
[KevinMarks] “I've got an itch that I want to scratch when it comes how to follow people across Mastodon instance.
#
[KevinMarks] I think we can solve it with custom URL schemes via registerProtocolHandler - but it won't be viable unless we know a user can handle the custom scheme. This post explores some options and a solution that could work.”
#
Loqi Paul Kinlan - Modern Web Development with Chrome
#
aaronpk i feel like we've been down this road before
#
aaronpk what is SubToMe
#
Loqi SubToMe is a button that content publishers can put on their sites which enables users to subscribe to their feed in whatever reader they choose — sort of a universal follow button https://indieweb.org/SubToMe
#
barnaby yeah that’s how /indie-config work(ed) iirc
#
barnaby their solution of using a page with a meta refresh redirect is new though, that’s interesting
sp1ff` joined the channel
#
[schmarty] jacky++ i like the explanation of ticketing!
#
Loqi jacky has 33 karma in this channel over the last year (83 in all channels)