This is a rather interesting read: https://bengo.is/blogging/2024-10-03-the-challenge-of-activitypub-data-portability/
-
This is a rather interesting read: https://bengo.is/blogging/2024-10-03-the-challenge-of-activitypub-data-portability/
-
Emelia πΈπ»replied to Emelia πΈπ» last edited by
> There's no reason an ActivityPub server should demand to control the end-user's private keys.
Whilst I agree in principle, in practice, management of security keys is a right pain in the ass for end-users. Sure, you could do authentication via a PAKE (OPAQUE / SRP6a), and then derive a key-encryption-key from the users' password, but that introduces a lot of complexity.
If a user looses their security keys, then they can never continue, there is no password reset option there.
-
Emelia πΈπ»replied to Emelia πΈπ» last edited by
> I think a lot of people want 'Account Portability' because what they really want is Single Sign On.
This may be true, and hopefully all the work I've been doing around pushing Mastodon towards a more standardised OAuth system that borrows elements from OIDC helps here. For instance, I've just done the pull request for a userinfo endpoint, which would more easily enable this "single sign onβ approach.
Add userinfo oauth endpoint by ThisIsMissEm Β· Pull Request #32548 Β· mastodon/mastodon
This implements #31257, and gives a response using standard claims from OpenID Connect. Example Response { "sub": "http://localhost:3000/users/thisismissem", "name": "Emelia πΈπ»", "preferred_u...
GitHub (github.com)
-
Emelia πΈπ»replied to Emelia πΈπ» last edited by
I think something @bengo does kind of miss in this article is how these decisions would impact end users, would it simplify things or add more complexity? βWait, now you mean I need to choose an authentication server AND a mastodon server???β
For non-technical people, a lot of these proposals would absolutely loose them. Only technical minded folks even know that public/private keys are used in Mastodon.
-
jonny (good kind)replied to Emelia πΈπ» last edited by
@thisismissem
I literally love this and have wanted it so much -
@thisismissem Be that as it may, there will be no E2EE DMs without key pairs. And true data portability also requires them for integrity proofs, no matter how creative you can get.
-
jonny (good kind)replied to Emelia πΈπ» last edited by
@thisismissem
Have you ever chatted with bengo? Love him -
Emelia πΈπ»replied to jonny (good kind) last edited by
@jonny yeah, was on my list for a while, but finally got to it today because it was nice and small and isolated in scope.
-
@raucao yeah, and that's the fundamental problem. To do E2EE, the hard part isn't encrypting the messages, the hard part is key management.
-
Emelia πΈπ»replied to jonny (good kind) last edited by
@jonny we're in a group chat & know each other from other W3C communities
-
jonny (good kind)replied to Emelia πΈπ» last edited by
@thisismissem
Jealous, I wanna come play in standards world. Also I love it when people i like like other people I like -
Emelia πΈπ»replied to jonny (good kind) last edited by
-
>There's no reason an ActivityPub server should demand to control the end-user's private keys.
But it sure can offer to if that's what you want
> I think a lot of people want 'Account Portability' because what they really want is Single Sign On.
Yes please.
-
chihuamaranianreplied to Emelia πΈπ» last edited by
I really like these ideas and ive thought about them a lot in the past year or two ive been on fedi.
I want an SSO provider for an account, then I want to seamlessly subscribe to communities sharing a certain type of content.
I'm not too worried about the user complexity; in theory its not much harder than, say, discord.
I create an account with identity provider A, then subscribe to peertube, pixelfed, mastadon, and Lemmy communities.
Behind the scenes, its all using the same identity keys.
I know activity pub is complex and forgive me if I'm oversimplifying the hard stuff, but I dont see why we can't have this.
-
Emelia πΈπ»replied to chihuamaranian last edited by
@chihuamaranian @bengo so you can already follow & interact with users of different software, generally, but something like "posting a new link on Lemmy from your Mastodon actor" isn't possible in today's implementations of ActivityPub.
So content consumption is more-or-less fine, but content creation across software from a single identity is not possible today
-
@thisismissem hey I didn't miss that. FWIW I actually don't think new users should have an 'identity server' at all (until they want one). but we do agree new users shouldn't have to make the choice as you present it. longer discussion I'll write up later.
-
@thisismissem this is what I was getting at with:
> Something that shakes out of unbundling Authentication from Social Servers and even Actor Servers (e.g. using cryptographic authentication and not a actor-server-dependent authentication scheme) is the ability to fully author signed social content without an internet connection -
@bengo aah, okay. The article was pretty technical, and for a lot of users they just want to get setup and start posting.. and then stuff happens later and their like "ughβ
-
@thisismissem my goal is to get it so users can get setup and start creating posts without talking to a server (identity or social) *at all* and only replicate to one or more servers when they are ready/able/connected to share those posts with others. i.e. https://www.inkandswitch.com/local-first/
-
@bengo that could be cool.
