With respect to #ActivityPub
-
Oh sure, there are uses for them and I don't object to using the modern standard for it in the slightest, it's just that a lot of those uses can be done on a per-server rather than a per-user basis.
Basically they are good for a handful of things, but my argument is that none of those things can be called access control and few if any of them are great solutions in that space. Especially at the individual level.
-
Jenniferplusplusreplied to Ben Pate π€π» last edited by
@benpate
I only have 460 characters, so, briefly:1. requires breaking interoperability. full stop. Sending in strict mode means peers that don't know what strict mode is won't understand the message
2. this is what AP already specifies. But most people don't want SN apps to be mail clients, so real world implementations drop that req.
3. I still don't know what a peer could or should do with that information1/
-
Jenniferplusplusreplied to Jenniferplusplus last edited by
@benpate
4. Sure, I've wanted a spec-defined federated authentication mechanism since forever. It needs to preserve the privacy of private messages.
5. Yes, I've wanted reply controls since forever. This is a socio-mastodon problem, more than a technical/protocol one.
6. see next post
7. This is also the way that AP is already specified. You can already build an AP mailbox server and punt all of the intelligence to the client. -
Jenniferplusplusreplied to Jenniferplusplus last edited by
@benpate
We keep going in circles on these things because no one knows what activitypub *is*, and there's no common understanding of what we want it to be.If it's a public micropublishing framework, then ATProto is a better implementation of that. If it's a distributed graph sync, then zot, and leaf, and ATProto are a better implementation of that.
3/
-
Jenniferplusplusreplied to Jenniferplusplus last edited by
@benpate
The only thing that AP is (or could be) that others aren't is a directed, scoped, messaging system. Optionally, but not necessarily public. Usually, but not necessarily consistent.Personally, I think that's great.
But that means things like moving accounts along with their content will necessarily be imperfect, because that content was created in an entirely different trust context that cannot be made fungible.
-
I created a topic: Wiki: Vision for a Fedi Specification at discuss.coding.social to start developing a vision.
-
Jenniferplusplusreplied to Jenniferplusplus last edited by
@benpate
Anyway, I'm strongly in favor of messages with a defined schema. Just be aware it's not doable in a backward compatible way.And I'm strongly in favor of a defined method for *3rd parties* to resolve inconsistencies. Some other server can ignore my reply restrictions, and there's no way to stop them. I want 3rd parties to know that was out-of-spec and should be discarded.
-
This is a great suggestion, and discussion around it. We're far from working through the specifics, but I've made a note in my original document that we should (suggest?) the use of standard HTTP caching and rate limiting headers. We can work out the details when we get there, and put together a protocol that makes sense.
@lily @puppygirlhornypost2 @jenniferplusplus @hrefna @sebinthestars
-
Ben Pate π€π»replied to kopper [according to whom?] :colon_three: last edited by
This is a good point, and I don't have everything worked out, here. HTTP signatures are consistently the #1 pain point, so I'm looking for some kind of solution.
In theory, I'd like DMs to be E2E encrypted, so posting them anywhere in plaintext already seems like an anti-pattern. But, that would be an even bigger hurdle to jump in a project that's probably too ambitious, already.
@kopper @hrefna @jenniferplusplus @sebinthestars @puppygirlhornypost2 @lily
-
The primary question, now, is: "Do we think we should have a discussion about HTTP signatures, and various ways to replace them?"
I'm not committed to simply throwing them away with no replacement, but, by including this in the discussion it seems like the answer to the primary question is "yes". We may not have good solutions, and we may not even have a consensus, but it sounds like we should have a discussion.
@hrefna @jenniferplusplus @kopper @sebinthestars @puppygirlhornypost2 @lily
-
smallcircles (Humanity Now π)replied to Helge last edited by
Wonderful!
I made you moderator on the forum so turn posts into wiki, etc. I both fedi DM'ed and forum Whispered to you about that yesterday, but not sure if that arrived in good order?
-
smallcircles (Humanity Now π)replied to smallcircles (Humanity Now π) last edited by
@benpate @lily @jenniferplusplus @puppygirlhornypost2 @hrefna @helge
FYI Helge has followed-up with a topic to collect our ideas for vNext social web and define a vision.
https://discuss.coding.social/t/wiki-vision-for-a-fedi-specification/563
-
Helgereplied to smallcircles (Humanity Now π) last edited by
Thanks for the push again. Currently, I'm in a state of self doubt if I actually wrote what needs to be written. This means I prefer taking it slow.
However, I'm bad at organizing and getting people involved. So it's probably better to use wider announcements? Not sure.
-
@benpate @puppygirlhornypost2 @hrefna @jenniferplusplus @lily
Looking at the key issues discussed, I am not sure I'm thinking in the same direction. These suggestions feel like they're more focused on the UX of implementations, and not addressing shortcomings of AP as a protocol. I am generally aligned with what @jenniferplusplus is saying, particularly the lack of stated goals being the main driver of divergence in implementation. Adding more client capabilities just hides the fact there's no accepted answer here.
-
@benpate @puppygirlhornypost2 @hrefna @jenniferplusplus @lily That's not to say this isn't a useful and valid discussion, I just don't think these points will solve AP's deeper issues.
-
smallcircles (Humanity Now π)replied to Helge last edited by
Taking it slow is good. I think there's no hurry as long as we keep making some concrete steps.
We've all had very long period of fleety discussions, some of us taken concrete notes, or even doing serious legwork. There should be enough input to be collected and distilled into some comprehensive format.
-
@sebinthestars @puppygirlhornypost2 @hrefna @jenniferplusplus @lily
Thanks for this! What would you say are APβs biggest shortcomings? What would be the goals/principles that we SHOULD follow?
This list is primarily from my own experience. Iβm posting it as a way to start this conversation.
Thereβs already tons of great feedback that I need to incorporate, so please help me with this, too.
-
smallcircles (Humanity Now π)replied to smallcircles (Humanity Now π) last edited by
