#aaronpksince the wiki and chat logs are totally separate "apps", but it would be nice if you could log in to both, I was thinking about consolidating the login into its own separate app
#aaronpkit would support indieauth, and use indielogin.com for relmeauth support, and then set a cookie
#aaronpkthen the wiki and any other app on the domain can just read the cookie
#aaronpkso the mediawiki authentication plugin becomes just parsing that cookie and returning yes/no
#ZegnatThat’s interesting. So you would have an IndieAuth web sign-in field on – say – login.indieweb.org, that sets a cookie, and then all *.indieweb.org sites can check that cookie?
#aaronpki think it would have minimal UI, because all it'd really need is the sign-in form, and everything else is done via redirects or handled by indielogin.com (indieauth.com0
#ZegnatBut how would you “decode” the cookie? You’d either need some shared back-end storage, or go stateless. For stateless there either needs to be a public/private key thing set-up or login.indieweb.org needs another API you can call to check the cookie.
#aaronpkyeah, probably JWT with a shared secret is the best optioin
#sebselI was just wondering what I missed, since I don't see a login there now :)
#sebselalso nice for a possible future events.indieweb.org, if we ever get there
#aaronpkactually that sounds a lot like OpenID connect
#ZegnatI don’t really like shared secret, but that would be the easiest to do, yes
#aaronpki don't mind shared secret because they are all part of the same domain
#Zegnatshared secret means the other services can also create the sign-in cookie
#Zegnatpriv/pub key means they can only validate it, but not create one themselves
#aaronpktrue, i thiink OpenID connect uses priv/pub keys
#ZegnatMakes sense for them to do that. It would be my preferred method. But I find most priv/pub key libraries for PHP confusing. Thankfully libsodium is about to change that <3
#aaronpkthere is probably a JWS library that works
#ZegnatNice table, some of those seem pub/priv key. I’ll have a look into that later today.
#ZegnatJWS with pub/priv key would be nice. Might even roll that into selfauth if it turns out there is a neat library for it.
#aaronpkanyway, a small app that handles that would be amazing, and i'd love to replace the wiki login with it
#ZegnatThis project is basically: 1) include a JWS library, 2) include indieauth/client, 3) make IndieAuth fallback to indieauth.com, and 4) after successful authentication generate cookie
#aaronpki might even use that on my site to let people sign in so they can eventually read private posts!
j12t, tantek and jjuran joined the channel
#tantek!tell aaronpk I'm seeing an error (on the upload page) when uploading a cropped screenshot from my iPod to the wiki: "File extension does not match MIME type." Can you try uploading a screenshot from your iPhone and see if that works?