Show Navigation
Notices by Mike Macgirvin (mike@macgirvin.com), page 7
-
On the post editor, click the paper clip to upload (attach) something from your device, or the chain link to provide a link to something elsewhere on the web. We'll examine the thing and decide if it's a picture or a video or a sound clip or webpage and insert all the right codes for you.
If you want to create and manage photo albums and select photos from there, do what they said.
-
Settings -> Connected apps
-
Zot VI involves a lot more. This is just a teaser - but it's a teaser that folks have been asking for since zot was first unleashed. "How can we integrate this network-scale permission system with other software?".
This is getting really interesting!
-
Zot VI is alive at Parlementum - we can follow OWT.
-
Zot VI involves a lot more. This is just a teaser - but it's a teaser that folks have been asking for since zot was first unleashed. "How can we integrate this network-scale permission system with other software?".
Could it be used to make it possible(not tomorrow, but whenever Zot VI has replaced the current Zot) to install hubzilla in a non-root folder of a website?
Any developer can fix this any time they want. I can't be bothered with it. There are negative side effects. You will no longer be 'bob@example.com' but 'bob@example.com/something' and cross-project communications will stop working. Diaspora have indicated they will not change this ever.
-
Taking a snapshot of the server now, then a software update, git pulls....and we should be at Zot VI in about 30 minutes.
-
Excellent, Mike.
-
Could it be used to make it possible(not tomorrow, but whenever Zot VI has replaced the current Zot) to install hubzilla in a non-root folder of a website?
-
What can we do to experience this?
Charles would need to git pull. Then magic-auth to my site. Welcome to Zot VI. If all goes well, you will be authenticated - but without the typical authentication greeting message. That is probably the only visible difference, though you might also see an 'owt=' token in the url.
Behind the scenes, the transaction is a lot faster, and it is portable and doesn't even need zot. You could add magic-auth to a wordpress blog if you wanted, or use your wordpress blog to magic-auth to hubzilla. And except for the token service which we need to connect the authentication state to your browser (so you can get a cookie), it's all standard technology.
-
What can we do to experience this?
-
OpenWebAuth is available in red right now.
What is OpenWebAuth? Some of you might be aware of Zot 'magic-auth' which invisibly authenticates people and services across domains using a decentralised network. This is the next generation of that work and paves the way for fully self-sovereign identity. It is not restricted to or dependent on Zot and has been stripped of all the complexities of dealing with zot nomadic identities and account mirroring. It can be used by any web service which desires portable cross-domain authentication and internet scale access control. It requires a web accessible webfinger service and the signing service needs access to the private key of the signer. These do not need to reside on the same machine.
Mike Macgirvin - mike@macgirvin.com
OpenWebAuth provides a light-weight form of cross-domain authentication between websites on the open web. The principals involved in the authentication may or may not have any pre-existing relationship. OpenWebAuth utilises webfinger (RFC7033) and HTTP Signatures (draft-cavage-http-signatures-07) with a simple token generation service to provide se...
-
In Zot we trust.
-
Before the Equinox passes, the Zot faithful (you know who you are) shall be rewarded. Thank you for all your support. I have a few things to give back.
Enjoy.
For the non-believers - I've got nothing. Move along.
-
By the way, why not call it Zot EMACS instead?
-
Blue Swede - Hooked On A Feeling (1974 - HQ - Live)
by 1hit1ders on YouTube
-
Great Work, Great Efforts. For a Great Vision. I am personally far behind of understanding all the implications of all this visionary work.
There seem to be so many use cases. I have to bring my brain on fire to find out what is already solved and may be done with it.
Thank you for all this @Mike Macgirvin !
-
Good questions. At a high level, it is being treated just like an external protocol connector, so internally we won't even see them as zot connections. They will be 'zotvi' connections - using a different protocol. The difference will be that this protocol connector can do literally everything zot can do - plus a bit more (I still have some surprises up my sleeve that I haven't shared). Once any quirks have been sorted out and assuming people are happy with it, we can talk about deprecating the original zot and converting existing connections. We might keep it for quite a while because there are still a fair number of older sites. It will remain as a plugin, though It might be included with the core repo.
-
This looks like a complicated endeavor. Is the idea for people to try using the new protocol by enabling the plugin when it is at least at a "beta testing" stage? How can it coexist with current zot ("Zot V"?) when you enable the plugin? By overriding the relevant core function? Also, will this remain as an addon afterward?
My favorite part of the Cards module is getting better insight into all the interesting things your are working on. The cards also explain the otherwise strange re-sharing of your own "post".
-
@cwebber So what's so special about httpsigs?
"Ooh, Mike's using something standard...."
We support every popular open messaging stack. We use ActivityStreams, ActivityPub, Atom, webfinger, salmon, webdav, caldav, carrddav, xrd, openid, oauth, portablecontacts, oembed, opensearch, and many other standard protocols. So many I can't even list them all. Many of these I've developed from scratch. We've got gateways to xmpp, irc, and git. We've got a Twitter API (as well as our own). We've got OIDC and Oauth2 and SAML in the fire trying to get some more time to integrate.
We only use our own protocols or extend standards when there is no existing protocol to do the specific things we need to do. Maybe (some day) you should take a look at what we're doing and how it all fits together - instead of feeling elated about what specific protocol we happen to use for some minor purpose.
-
@mike Happy to hear about the use of HTTP Signatures!
Mike Macgirvin
All Jonkman Microblog content and data are available under the