“Omg dude I can’t believe you actually left the house to come camping”
*parties till 7am and gets woke up by police who evict us*
Ngl it worked out 💅
“Omg dude I can’t believe you actually left the house to come camping” *parties till 7am and gets woke up by police who evict us* Ngl it worked out 💅 I mean, I know that such an open oAuth impl can lead to problems. I could imagine an example scenario where @pixelfed moved towards a per-app approval process with a centralized curated list that app devs would only need to register once by default, obviously we'd keep the current open impl as an option, but this could prevent crawlers/3rd party services and other abuses That was just an example, not saying we're going that way, but it's something to think about To those who are not that familiar with oAuth, it's an authentication standard that defines the process of logging into a 3rd party client or app (like a Mastodon app). So basically, most platforms like Facebook and Twitter require developers to sign up, wait for approval and rate limit their access The magic of Mastodon is they use blind registration so you don't need approval and are subject to the same limits as all other clients, so you can allow users to login instantly. ✨ OAuth and the MastoApi is really under appreciated in the fediverse, and its super cool that we have this. Thanks to Mastodon, 3rd party clients that were pushed away from Twitter (and later Reddit) have made the fediverse their new home, and we have so many options it's unprecedented. nobody: me: do you realize oauth was never a part of the ActivityPub spec, but thanks to Mastodon, we have a rich ecosystem of apps that work across many implementations because Mastodon defined a really good API and OAuth process with blind registration that allowed it to be used by any app/client without waiting for approval by admins Imagine being able to define a `pubkit.yaml` file in your project root directory and using the https://pubkit.net test suite to test ActivityPub compatibility across all implementations on every commit, wouldn't that be amazing? Imagine being able to find federation regressions before they affect users! The Library will be open source, but the flagship instance (pubkit.net) will act as the source for self hosted PubKits Project maintainers will have write access to their projects activities, using their webfinger handles, and also the ability to moderate their comment sections (or disable them entirely) This will provide the ideal curated collection of Activities where project maintainers have full access to define them and add notes/schema defs. Super pumped for this 😉 #PubKit When you install PubKit, it will download a full copy of the Library from pubkit.net, and periodically sync with it. You will be able to submit Library articles from your own instance or PubKit.net and they will be moderated by our mods (just me for now, hopefully I can get more devs or trusted people to help) https://pubkit.net uses OAuth for logins, meaning you can login with Mastodon, Pixelfed, Pleroma, GotoSocial, Bonfire, Firefish, etc! The Library articles will be federated as Article types, meaning you will be able to comment/reblog/like them (and we'll show comments on PubKit) PubKit will use itself to test itself, such meta Edit: Fixed! Oops, just noticed https://pubkit.net is loading google fonts, will download them and load them locally so no 3rd party requests! if looks could kill - destroy lonely https://www.youtube.com/watch?v=h3bE8-qGQ_E #np #fediplay #destroyLonely #djTurnThatShitUp One of the ways @pixelfed prevents spam is by checking email address domains against a list of banned domains. I'm not aware of any other fediverse project that is doing this, or other more advanced methods of spam mitigation. Maybe we can inspire them, spam is becoming a problem across the fediverse! https://github.com/pixelfed/pixelfed/blob/dev/app/Services/EmailService.php#L20 Ngl, these spammers I've been dealing with on pixelfed.social try to get past mitigations and I've devised a few ways just to fuck with them and it's kinda fun I've eliminated every incentive by restricting their visibility and reach, yet they continue What they don't realize is I've been preparing for "the event", paying close attention to their behaviors and vote rings, and classifying it all in the next gen Autospam Dear Abby: Hi, I'm 34 and I'm addicted to a specific sound Abby: Hello Daniel, you are not alone, ... Yes, I know I should be spending more time on @pixelfed dev but it's rare for #fediverse projects to have time/resources to dedicate to helping other devs or building tools/services Like no other project is doing this, except that one, you know, the one that made https://fedidb.org, https://fediverse.info, https://activitypub.network Pixelfed users are sacrificing for the greater good, I'm okay with that, we're doing good 😎 My vision for #PubKit is to first build a suite of developer tools then I'll focus on a starter framework in js and php to abstract the complexities of federation, and make it easier to develop a federated platform Just imagine running `npm install pubkit` and adding a few lines of code that abstract the complexities of ActivityPub to a community framework that will power @pixelfed and others More #PubKit screenshots! It's not lost on me that this type of #activityPub tool is only possible by providing a centralized service of curated resources. That being said, I'm going to publish the source code and data, and am eager to work with other #fediverse developers on this! What a fucking ICONIC lineup i ! w0ULD s3LL my s0ul f0R ! tHIS sHIt iF . i . haD . a pASSP0rt ! |