Peter Rukavina
https://ruk.ca/
•
Jun 10
WeChat ID
aaronpk_tv
-
This is an amazing idea, count me in! I just added my mailing address to my home page h-card! 🤣 -
yes, very ;-) -
Katherine Moss
https://twitter.com/Cambridgeport90
•
Jun 9
I don't think so ... let me check. And how do you parse the p-swarm-coins property manually? You have it in the docs, I just can't figure out how to do it.
I don't know how you'd do it in WordPress, but I built special handling of that property into my site to show them. -
Katherine Moss
https://twitter.com/Cambridgeport90
•
Jun 9
I noticed something weird with http://ownyourswarm.p3k.io and Wordpress. Coins aren't coming back to http://cambridgeport90.net for some reason. @aaronpk, any suggestions? I get mentions from people, though. Thanks!
hmm, they are sent just like regular webmentions, are they getting flagged by akismet or something?
-
Ton Zijlstra
•
Jun 9
Letterpress printed QSL cards for successfully sent and received Webmentions must be the most finely targeted joke. The audience very likely not larger than 3 people.
this is an amazing idea please let's make it happen -
Neil Mather
https://doubleloop.net/author/neil/
•
Jun 9
IndieWeb is more and more starting to feel like a genuine social network for me. It’s happening slowly, but I’m building up a list of people that I follow in my reader, and I get the odd interaction back here and there. And it’s not all just inside chat about IndieWeb plumbing. Good stuff!
(Not saying it wasn’t already a social network for other people – this is just my own experience. If I’d been blogging to my own site for 20 years, or joined micro.blog, I’m sure I’d be there already!)
#IndieWeb
That's awesome! I feel the same way! Over the last year or so it's actually been able to completely replace most of my use of Twitter and Facebook. -
Torsten Lodderstedt
https://twitter.com/tlodderstedt
•
Jun 8
lack of code replay protection and proprietary client authentication method?
In my testing, I wasn't able to use an authorization code twice. Did you see something different? -
Brock Allen
https://twitter.com/BrockLAllen
•
Jun 8
Or rather an explanation of the thinking as to why it’s so close and why certain things were or were not deemed important to implement
for real! I'm so curious. I can't tell if it was just like one Apple engineer who read OAuth/OIDC and then built this, or if it was actually thought through by a team. -
Darius Kazemi
https://friend.camp/@darius
•
Jun 8
@aaronpk I don't have a web host per se, just a linode, which doesn't offer that. but I see they offer https://mailinabox.email/ so maybe I'll just try that, though it is overkill
ah yeah. I use DreamHost for my forwarding. I decided to get out of the email deliverability business myself once it started getting too hard to keep up on avoiding getting caught in spam filters. It's just a game I don't want to play anymore, happy to have people with a full time staff deal with that now. -
Darius Kazemi
https://friend.camp/@darius
•
Jun 8
I'd like to self-host a single mailing list that is never going to have more than about 25 people on it. Is there a dead-simple thing (wayyy simpler than Mailman) that will just.... alias something like thelist@tinysubversions.com to CC 25 different email addresses?
It doesn't need a public or even private archive messages. It's just for a small group of friends who want to stay in touch.
I do this with simple mail forwarding rules at my web host. It doesn't have any "mailing list" features like showing archives, all it does it forward to a handful of addresses, but it's excellent at that and requires no maintenance. -
rabble
https://twitter.com/rabble
•
Jun 8
I hope I’m wrong. Looking at the ui it shows users being able to not provide it but I can’t find info in the code about that.
Their docs are wrong in a few places and are missing a lot of info. -
rabble
https://twitter.com/rabble
•
Jun 7
@aaronpk Am i correct in reading through the apple sign in that they're protecting the privacy of your email address with a proxy but then giving everybody who asks for it your full legal name?
They actually have a way you can edit the name that's sent back to the app!
-
Rory Macdonald
https://twitter.com/tworymacdonald
•
Jun 7
Nice write up 👍 Did you find the anti-fraud Real User Indicator capability surfaced using JS API? Available as credential.realUserStatus property in native.
Nope, haven't found that yet! It's missing from their docs too. I'm going to keep playing with it though. -
David Waite
https://twitter.com/dwaite
•
Jun 6
@aaronpk Most surprisingly interesting thing I got from https://developer.okta.com/blog/2019/06/04/what-the-heck-is-sign-in-with-apple - you managed to get http://example-app.com -
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
Just for the uniqueid. Verify that the uniqueid is not modified.
verify where? The unique ID comes back in the ID token not the access token. (also happy to take this to DM) -
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
So talked with the Apple engineers here at WWDC:
They don't have that endpoint, they also will not expose user_info or a revocation endpoint. The user_info will only be sent once and only once then you will only get a unique id again. Only scopes available now are name and email
Another question, if there is no `user_info` endpoint, what are the access token and refresh tokens for? -
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
Yep. That seems like a bug. If you forget it well you are left without it. You should be able to request new scopes...
Progress! I now get the screen which lets me edit my name and choose the email to share. I only see that the first time, all subsequent requests show a confirmation only.
Still no luck actually getting the email address back in the ID token though. -
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
That is not a bug that is feature. They told me they will only give you the info once. Probably why scope won’t matter after your first invoke.
I will go test this out with new app credentials though to confirm. Thanks for the lead!
-
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
That is not a bug that is feature. They told me they will only give you the info once. Probably why scope won’t matter after your first invoke.
interesting. well the bug is that I have *never* gotten it, because I didn't request it the first time, and now I can't request it ever again.
-
Wizages - Sam Patzer
https://twitter.com/Wizages
•
Jun 6
So talked with the Apple engineers here at WWDC:
They don't have that endpoint, they also will not expose user_info or a revocation endpoint. The user_info will only be sent once and only once then you will only get a unique id again. Only scopes available now are name and email
Just verified again, and I don't get back name or email address when I request "name email" scope.
I did find a bug where apparently Apple is ignoring the "scope" parameter after the very first time you authorize an app though, so could be related.
