Show Navigation
Conversation
Notices
-
OpenWebAuth is available in red right now.
What is OpenWebAuth? Some of you might be aware of Zot 'magic-auth' which invisibly authenticates people and services across domains using a decentralised network. This is the next generation of that work and paves the way for fully self-sovereign identity. It is not restricted to or dependent on Zot and has been stripped of all the complexities of dealing with zot nomadic identities and account mirroring. It can be used by any web service which desires portable cross-domain authentication and internet scale access control. It requires a web accessible webfinger service and the signing service needs access to the private key of the signer. These do not need to reside on the same machine.
Mike Macgirvin - mike@macgirvin.com
OpenWebAuth provides a light-weight form of cross-domain authentication between websites on the open web. The principals involved in the authentication may or may not have any pre-existing relationship. OpenWebAuth utilises webfinger (RFC7033) and HTTP Signatures (draft-cavage-http-signatures-07) with a simple token generation service to provide se...
-
What can we do to experience this?
-
What can we do to experience this?
Charles would need to git pull. Then magic-auth to my site. Welcome to Zot VI. If all goes well, you will be authenticated - but without the typical authentication greeting message. That is probably the only visible difference, though you might also see an 'owt=' token in the url.
Behind the scenes, the transaction is a lot faster, and it is portable and doesn't even need zot. You could add magic-auth to a wordpress blog if you wanted, or use your wordpress blog to magic-auth to hubzilla. And except for the token service which we need to connect the authentication state to your browser (so you can get a cookie), it's all standard technology.
-
Could it be used to make it possible(not tomorrow, but whenever Zot VI has replaced the current Zot) to install hubzilla in a non-root folder of a website?
-
Excellent, Mike.
-
Taking a snapshot of the server now, then a software update, git pulls....and we should be at Zot VI in about 30 minutes.
-
Zot VI involves a lot more. This is just a teaser - but it's a teaser that folks have been asking for since zot was first unleashed. "How can we integrate this network-scale permission system with other software?".
Could it be used to make it possible(not tomorrow, but whenever Zot VI has replaced the current Zot) to install hubzilla in a non-root folder of a website?
Any developer can fix this any time they want. I can't be bothered with it. There are negative side effects. You will no longer be 'bob@example.com' but 'bob@example.com/something' and cross-project communications will stop working. Diaspora have indicated they will not change this ever.
-
Zot VI is alive at Parlementum - we can follow OWT.
-
Zot VI involves a lot more. This is just a teaser - but it's a teaser that folks have been asking for since zot was first unleashed. "How can we integrate this network-scale permission system with other software?".
This is getting really interesting!
Mike Macgirvin
All Jonkman Microblog content and data are available under the