Thoughts: The requirement of apps to have a publicly accessible website conforming to the IndieAuth API might be a limiting factor
On the other hand, globally unique identifiable apps is a huge benefit in terms of admins being able to restrict app access. I.e., currently every user can revoke app access to their account, but server admins cannot say "I don't want the cross-poster to work with my server" because there is no such thing as *the* cross-poster
IndieAuth sounds interesting as a more generic way for federated applications to allow app registrations https://indieauth.spec.indieweb.org/
The question is how do we adapt this after our current, extremely similar but somewhat different system has been in production use for around 2 years #mastodev
@gargron isn't it great though
i mean the whole thing of registering apps has mostly been justified by commercial restrictions and a pain in the ass for developers and users
Sven Knebel
https://www.svenknebel.de/
•
Jul 7
donpdonp
https://mastodon.xyz/@donpdonp
•
Jul 6
we've got the seeds of federated twitter, instagram, and youtube. it seems there's a gap in the federated reddit space. group/tag/topic organized links/text.
Another nice post on the Mastodon blog about implementing ActivityPub: https://blog.joinmastodon.org/2018/07/how-to-make-friends-and-verify-requests/
