#dev 2023-06-02
2023-06-02 UTC
gRegorLove_ joined the channel
# [tantek] Direct server-local link: https://mozilla.social/@jamesid/110470858327528256 — and I strongly encourage anyone that this appeals to apply! (feel free to DM me if you have any questions)
# superkuh All that wasted tech and attack surface just to replicate a fraction of what .html+cached images can do.
# epoch dunno if anyone here saw yet, but Web Share API became w3c recommendation. https://www.w3.org/blog/news/archives/9931
eitilt1 joined the channel
gerben, IWSlackGateway, [tantek], bterry, Xe, gRegor, srushe, vikanezrimaya, ancarda, eb, capjamesg, alecjonathon, wagle, holiday_medley and [KevinMarks] joined the channel
[Murray] joined the channel
# vladimyr Not an expert but I can try :)
# [KevinMarks] there's a lot of caeful sandboxing and execution contexts involved
# vladimyr What are you trying to achieve? Pre-execute scripts from other pages?
# vladimyr May I ask why?
# vladimyr I mean what's the motivation behind it
# [KevinMarks] there's a whole gamut of things you need to think about sandboxing https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/sandbox
# vladimyr capjamesg: security-wise there is no issue in executing scripts from other pages you host cause attack surface is exactly the same as you navigated to that page
# vladimyr Also you just reinvented pjax
# vladimyr ^ don't eval scripts, find all script tags and clone/recreate them inside host document
[jacky] joined the channel
gnoo and Seirdy joined the channel
# IWDiscordRelay <capjamesg#4492> Why [tantek]?
# vladimyr Doesn't work with disabled js, transfers way more bytes over the wire than it is usually necessarily, often breaks back button and at the end of day not everything needs to be an app
# vladimyr Nothing wrong with plain old sites
# Loqi A single-page application (SPA) is a web application or web site that fits on a single web page with the goal of providing a user experience similar to that of a desktop application https://indieweb.org/SPA
[schmarty] joined the channel
# [schmarty] capjamesg: why do you want to make your site function as an SPA?
# [schmarty] several features of SPAs are available to regular websites!
gRegor joined the channel
# [tantek] proof by example: here's a "SPA" that needs zero SPA-tech: https://asin.cc/
# [schmarty] yeah service workers covers many big features like offline and caching. adactio has done some good posts on this, including one apparent pro-SPA argument about "i need smooth transitions between pages" is getting browser support that should also work across pages. https://adactio.com/tags/spas
# vladimyr [tantek]: this thing still has code on the backend too? I don't see where do you process asin query param clientside 🤔
# [tantek] vladimyr, yes it has literally the same computational code on the backend as the frontend. On the clientside (with JS) there is no need to generate a query param so there is no need to "process" it. The frontend short circuits that and just handles the form interaction directly and produces a result.
moose333 joined the channel
# vladimyr Same way that you've shortcircuited form submission you could read query param clientside and always do computation locally? 💡
# vladimyr Makes it truly offline first 🙃
# [schmarty] we have an RFC for websites that are teapots now let's figure out which websites are "rain"
# [tantek] vladimyr, read query param clientside could be interesting for "completeness" just to show it could be done, however it's not something you'd likely run into as the only UI path to generate a query param URL is to use the site w/o JS, and then load that query param URL sometime later *with* JS enabled
# [schmarty] i wonder how many ai training sets blatantly contain material that is marked as denied by robots.txt or noindex. a "new" spec without some kind of enforcement weight doesn't feel particularly useful given we already have tools.
# vladimyr [tantek]: what about bookmarklet?
# vladimyr That sounds like DNT happening all over again
# Loqi Do Not Track (also known as DNT) is a technology and policy proposal that enables users to opt out of tracking by websites they do not visit, including analytics services, advertising networks, and social platforms https://indieweb.org/DNT
# [schmarty] what is Global Privacy Control?
# Loqi It looks like we don't have a page for "Global Privacy Control" yet. Would you like to create it? (Or just say "Global Privacy Control is ____", a sentence describing the term)
# [tantek] vladimyr, the suggestion is still interesting to me (to handle the query param client side explicitly as a "just in case"). I created a stub repo feel free to file an issue requesting that! https://github.com/tantek/asin.cc/issues
# [schmarty] DNT << [https://globalprivacycontrol.org/ Global Privacy Control] (GPC) is a remarkably similar more recent spec.
# Loqi ok, I added "[https://globalprivacycontrol.org/ Global Privacy Control] (GPC) is a remarkably similar more recent spec." to the "See Also" section of /Do_Not_Track https://indieweb.org/wiki/index.php?diff=88131&oldid=68148
# IWDiscordRelay <capjamesg#4492> [schmarty] I want to allow someone to take a video call while navigating between pages.
# [schmarty] i did some reading on this when we implemented GPC at work for CCPA compliance. it seems like most sites just ignore DNT now for several reasons but mostly that it doesn't have teeth and the surveillance ad industry was like "what are you gonna do about it?"
# [schmarty] technically speaking GPC is nearly identical to DNT
# [schmarty] capjamesg: good luck; have fun! :zany_face:
# IWDiscordRelay <capjamesg#4492> angelo has this working!
# IWDiscordRelay <capjamesg#4492> Video conferencing across pages via SPA.
# Loqi ok, I added "Use-case: continuous uninterrupted seamless video conferencing even when navigating across "pages" on the same site" to the "See Also" section of /single-page_application https://indieweb.org/wiki/index.php?diff=88133&oldid=88127
# vladimyr To broaden [schmarty]'s point here is what ublock origin's author says about GPC and possibility of ublock sending GPC signal by default https://reddit.com/comments/qlj2kl/comment/hj5j1zn?context=3
# [tantek] well-known << ai.txt: https://site.spawning.ai/spawning-ai-txt
# Loqi ok, I added "ai.txt: https://site.spawning.ai/spawning-ai-txt" to the "See Also" section of /well-known https://indieweb.org/wiki/index.php?diff=88134&oldid=87997
[snarfed] joined the channel
# [schmarty] ahahaha
# [schmarty] sorry, i worked on a P3P parsing project in academia years ago back when search engine API terms of service didn't forbid you from reranking search results.
# [schmarty] i don't recall even once encountering "RDF". at best sites just published a single `P3P` HTTP header with short tokens that we used as flags to indicate things they collected/shared.
# [schmarty] (mostly sites just published an invalid P3P header so that IE would choke on it and allow third-party cookies)
# [tantek] well-known << ai.txt proposer ^ fails to implement it themselves, https://site.spawning.ai/ai.txt returns a 404
# Loqi ok, I added "ai.txt proposer ^ fails to implement it themselves, https://site.spawning.ai/ai.txt returns a 404" to the "See Also" section of /well-known https://indieweb.org/wiki/index.php?diff=88135&oldid=88134
# [tantek] well-known << another citation for launch of ai.txt: https://twitter.com/spawning_/status/1663635132761219073
# Loqi ok, I added "another citation for launch of ai.txt: https://twitter.com/spawning_/status/1663635132761219073" to the "See Also" section of /well-known https://indieweb.org/wiki/index.php?diff=88136&oldid=88135
# [schmarty] the arguments around copyright and licensing to restrict use in AI training feels very muddy to me right now. i am not aware of anything like what petermolnar asked for, but i'd love a copyleft "if you train an AI on my data then you also have to release your training set and trained models freely" or other "poison pill" licenses. 😈
# petermolnar I just want to lock out generative ais
# petermolnar Poisoning does sound fun, but locking out is better.
holiday_medley joined the channel
# superkuh I had "anthropic ai" useragent spend 3-4 days last week mirror my entire site. I threw in some documents specially for them.
# superkuh Came from amazon ec2 ip space.
# superkuh Like http://superkuh.com/library/MiscText/chicken.pdf
# Loqi 🐔 chicken is a type of post supported by idno https://indieweb.org/chicken
# [tantek] feel free to add yourself https://indieweb.org/chicken#Indieweb_Examples 😂
holiday_medley joined the channel
mouse[d], IWDiscordRelay, petermolnar, holiday_medley and rubenwardy joined the channel
geoffo, mouse[d], capjamesg[d], Dr_DinoMight[d], rattroupe[d], kongaloosh[d], Silicon[d], shaunix[d], tracydurnell[d], darylsun[d], Favicon[d], IWDiscord, aaronpk[d], ms_boba[d], eddev[d], Grayson[d], IndieWebCamp_IRC, jacky[d], Ramon[d], Murray[d], Nezteb[d], angelo_, xyzzy[d], DJ_[dj_je][d], steinaech[d] and isellsoap[d] joined the channel
# capjamesg I tried calculating surprisal (https://github.com/capjamesg/linguist.link/blob/main/readability.py#L50) on only my blog.
geoffo joined the channel
# vladimyr Few days ago there was some chat about enwp.org Not sure how well known is it, but there is similar service for MDN docs mdn.io (source code: https://github.com/lazd/mdn.io)
# vladimyr Lifesaver for quick api doc refreshers
# [Murray] [capjamesg] on the off change they're useful, RE: SPA-like abilities without a full SPA framework, I remember being intrigued by Turbo and Hotwire: https://turbo.hotwired.dev/ Not sure they work for your use-case, but may have some interesting ideas
# [KevinMarks] There's also https://mavo.io/
ahappydeath, [benatwork] and gxt__ joined the channel
# Loqi It looks like we don't have a page for "Mavo" yet. Would you like to create it? (Or just say "Mavo is ____", a sentence describing the term)
IWSlackGateway joined the channel