Here is a demo of the other recovery screens and the login screen. I'm not finished the account registration redesign yet, but it won't take long - the APIs and UI already exist, it's just a matter of reorganizing them. Super pumped to ship this! Passionately pioneering pixels is the game, @pixelfed is the name 😎
Show previous comments
As I finish the new @pixelfed app onboarding screens, there are a few places where I want to make it easy for users to contact instance admins via email. This would require all @pixelfed instances to set this field in the admin dashboard so its available via the instance endpoint, but would only work if they all did this. Maybe I could make this a requirement (for our app), and verify it periodically by sending an email to the address and unlisting servers that don't comply. Thoughts?
Show previous comments
@dansup @pixelfed I think making an email address mandatory (and verifying it, maybe with a magic link now and then) to be listed in an onboarding dialog is okay. But if you (as server admin) care for a more private space you can simply skip this at the cost of not being listed during onboarding with your instance. Since every responsible service provider should share a way to be contacted (my personal opinion) there would be no harm in making this way visible. Nostr is nice, but total decentralization isn’t user friendly. Federation allows some centralization, and that’s crucial, not only for UX but also scalability and more. Big instances are not ideal, but are better than a near empty ecosystem. Why is Threads adopting ActivityPub and not Nostr? 😉
Show previous comments
@dansup IMO decentralization is the ultimate solution, but federation is a very good tradeoff while we wait and hope for decentralised tech to mature. Decentralisation does not mean that you can't subscribe to a federated moderator. It just means you can choose not to, and for other things like resiliency, it has many advantages. @dansup in terms of scalability I definitely cannot scale my mastodon instance because I can't afford to , at the very least p2p would be a great way to offload storage costs on federated servers. Alright, so I had an idea to improve onboarding further by creating a "Pixelfed Passport" service. Basically, users would be able to link Pixelfed accounts to a central passport.pixelfed.net account, and use that one account to easily log in to others. This is primarily geared towards new fediverse users who can't remember their server, allowing them to use a single email/password to access their accounts easily. Will be opt-in, open source, and auditable. Thoughts? #feedbackWanted
Show previous comments
@dansup @dansup This is almost what I was hoping for. I'd suggest though making the auth hub it's own identity/service so that it could more easily be stood up by site builders who are looking for SSO to multiple services on the same domain, ie: I'd like to sso pixelfed.domain.tld/firefish.domain.tld/friendica.domain.tld and have something like passport.domain.tld Ideally the account itself should be portable to another auth instance as well, say someone is going offline. Some spam reports make me laugh, like know your demographic 😂 Thankfully it was caught seconds after it was posted and hidden from timelines before any users seen it - gosh I can't stress enough how easy the Autospam detection makes my moderation duties 😎 I did build a LinkTree like service for the fediverse, mostly for @pixelfed, and was really close to shipping it until IG announced multiple bio links and it made me question why Pixelfed only allows 1 link. Now I'm working to add support for custom fields, like Mastodon. I may still launch this, not sure, I should do something with the fedi.bio domain 🤔
Show previous comments
@dansup do you plan on having this be self-hostable? i'd love to use this, it looks awesome! :blobfoxwhoaa: @dansup @pixelfed I am using this as a Linktree replacement and very happy: focus on Pixelfed would be lovely! :) https://linkstack.org/ 🙊 Btw, I started a lil side project that allows you to create "links" to fediverse profiles and posts that can be easily opened in the app of your choice. I plan to add more apps, launch this under fediverse.info and publish the source code so anyone else can run this! Jeroen: engels+technisch+’n onderwerp waar ik niet al te veel van weet is teveel , kun jij vertellen waarom dit ok is? Boom! ✨ The Recovery Service is now live and the source code is shipped! Ever since I added dark mode to the @pixelfed app, the light mode just doesn’t look right. I’d love to get basic statistics on stuff like this to get a better idea of how people are using the app and what I should focus on, but only if it’s privacy friendly and anonymous. Will think more about this and organize a community vote if I want to move forward. The final decision I’ll leave to the community, the stats aren’t worth losing your trust!
Show previous comments
Show previous comments
@dansup@mastodon.social @pixelfed@mastodon.social Is there a pixelfed development roadmap for the coming months/years? This is the happiest day of my life! New Burial + Kode9 AND I was able to get a limited edition copy 😁 😁 😁 I've been working on a new @pixelfed API for mobile app settings to store app preferences in the backend so they can be used across devices and sessions! I'm working with the @PixelDroid developer on this to support 3rd party apps too! I know it's not that flashy, but it's a pretty handy feature and yet again we're pioneering a new standard that we hope will be replicated in other #fediverse projects 😎 @dansup @pixelfed @PixelDroid oh man that's such a cool concept! Would the settings be tied to individual accounts that you make or to the device that you're using? Or is that still on the drawing board? Btw if I don't respond to your comments or DMs is not because I'm ignoring you, I try to respond to every one but I get a lot of notifications and it's hard to keep up sometimes 😅 @dansup Look at me there, now I was surprised that even the former Dev from Telegram is also here. I know centralization is the anti thesis to federation, but when it comes to abuse and spam detection/mitigation, I think the fediverse needs an optional centralized and trusted service to share abuse/spam intelligence across instances so admins can better moderate their services I hate spam, I’m totes up to the task to build this and make it available to other projects too FediDB could be the perfect home for this, any fedi devs that want to work with me on this, send me a DM
Show previous comments
@dansup what if the structure & data were singular (for a distribution), but distributed like torrents. Contributions via source-control. Any folks could PR / MR changes to an upstream and torrent out local copies. That way it's still not centralised as such. You know what's more concerning than Meta/Threads joining? Bots, like/follow rings, and spam. See, even though Threads doesn't federate yet, they painted a big red target on the fediverse by announcing future support. Those annoying twitter crypto bots and "I made $750 via cashapp" spam on IG are likely going to make there way here. We need to prepare. I'm building a @pixelfed service similar to Akismet to share intelligence in a privacy friendly way, will share more deets soon 😎
Show previous comments
@dansup @pixelfed they already are, already were before the announcement. but for now they are often blocked very fast on instance level. I know it may seem trivial "it's just a login page" But these small details are more impactful than you may think The subconscious and emotional context of interfaces like these are fascinating to me, and I sometimes obsess over them The backend refactor is pretty neat, moving 2FA to the new login logic means we can remove a middleware (on all routes) that will improve performance throughout! Spent tonight refactoring the @pixelfed login UI I wasted more time than I'd like to admit trying to work around chrome auto-fill to focus the input (and style it) only to discover that it's not possible because its a security risk 😑 Anyways, this is my 3rd login refactor and it will be shipping despite the slight UX "bug" of Chrome requiring user input or interaction for auto-fill And don't worry, this will also work with password managers 😅 #pixelfed Login v2 vs v3 design The v2 design was more bold and distracting, I decided to start from scratch using a similar layout to the existing design for v3 to keep the focus on the intent/action v3 uses animations and loading indicators when applicable and is overall a better UX IMO Password resets and 2FA is also much better in v3 |