Aaron Parecki

83°F

at Hyatt Regency San Francisco

San Francisco, California • Thu, June 13, 2019 4:59pm

37.794151 -122.396056

San Francisco, CA, United States

26 Coins

Thu, Jun 13, 2019 4:59pm -07:00
Christina Warren https://twitter.com/film_girl

Yeahhhhhhh

San Francisco, California

Thu, Jun 13, 2019 11:06pm +00:00 (liked on Thu, Jun 13, 2019 4:07pm -07:00)
Christina Warren https://twitter.com/film_girl • Jun 13
I was just giving an OpenID/Oauth history lesson to some interns, which meant I reference LiveJournal. “What’s LiveJournal?”

“Tumblr before Tumblr...”

ohno am I old

San Francisco, California

1 like

Thu, Jun 13, 2019 4:06pm -07:00
at San Francisco International Airport (SFO)

San Francisco, California • Thu, June 13, 2019 3:47pm

37.616713 -122.387094

Hello San Francisco

San Francisco, CA, United States

29 Coins

Thu, Jun 13, 2019 3:47pm -07:00
Kitt Hodsden https://twitter.com/kitt

Excited to be going to the @indiewebcamp Summit in Portland, OR June 29-30, 2019 - https://2019.indieweb.org/summit - I have so many questions... #indiewebcamp

Portland, Oregon

Thu, Jun 13, 2019 8:37pm +00:00 (liked on Thu, Jun 13, 2019 1:58pm -07:00) #indiewebcamp
at Portland International Airport (PDX)

Portland, Oregon • Thu, June 13, 2019 1:11pm

45.589391 -122.593457

Feels like I haven't been here in a long time!

Portland, OR, United States

6 Coins

Thu, Jun 13, 2019 1:11pm -07:00
sentenza https://twitter.com/delphinauge • Jun 13
May I help by providing all the questions that I ask myself after being new to and diving into the OpenId Connect subject?

Yes that would be great! Feel free to send me a link to a blog post or write me an email!

Portland, Oregon

1 reply

Thu, Jun 13, 2019 10:31am -07:00
sentenza https://twitter.com/delphinauge • Jun 13
Thanks, what are the implications of storing the tokens in the browser? Is Auth Code Flow with a backend server much more secure?

yeah, having a backend is much more secure. I feel like this needs to be my next blog post.

Portland, Oregon

1 reply

Thu, Jun 13, 2019 10:21am -07:00
sentenza https://twitter.com/delphinauge • Jun 13
@oktadev @oauth_2 @aaronpk What is the current OpenId Connect recommendation for a SPA without a dedicated backend, is it Auth Code Flow + PKCE in Browser?
#oauth #openidconnect

Yep exactly, I wrote some sample code for doing that here: https://developer.okta.com/blog/2019/05/01/is-the-oauth-implicit-flow-dead

Portland, Oregon

3 replies

Thu, Jun 13, 2019 9:56am -07:00
Ryan Barrett https://snarfed.org/

guess i’m done for the day

Portland, Oregon

Thu, Jun 13, 2019 7:10am -07:00 (liked on Thu, Jun 13, 2019 9:23am -07:00)
axleyjc https://twitter.com/axleyjc

2. Another hotel franchise, even in another city, could issue a keycard to that same person. Possession of that keycard from another hotel franchise (IdP) does not allow the holder to access *any room* for that person at any hotel (relying party).

Portland, Oregon

Thu, Jun 13, 2019 3:27pm +00:00 (liked on Thu, Jun 13, 2019 9:21am -07:00)
axleyjc https://twitter.com/axleyjc

1. Possession of the hotel keycard does *NOT* in any way prove you are the person who checked into the room it grants access to. Nobody should use the keycard to try to figure out who the person is.

Portland, Oregon

Thu, Jun 13, 2019 3:25pm +00:00 (liked on Thu, Jun 13, 2019 9:21am -07:00)
axleyjc https://twitter.com/axleyjc

I like this analogy!

A couple things that could make it better, especially for those who misuse/abuse OAuth for authentication:

Portland, Oregon

Thu, Jun 13, 2019 3:24pm +00:00 (liked on Thu, Jun 13, 2019 9:21am -07:00)
Jonathan LaCour https://cleverdevil.io/profile/cleverdevil • Jun 13
@aaronpk years ago, I wrote a little script that automatically converted a Keynote deck into individual PDF files (one per slide, vector, scalable) and then created a PPTX file out of the result. Not editable, obviously, but a nice shortcut. Sadly, I can’t find the script anymore!

that's.... ridiculous and fantastic

Portland, Oregon, USA

Wed, Jun 12, 2019 5:46pm -07:00
Not Fake Adam Kalsey https://twitter.com/akalsey • Jun 12
I just refuse. You can have pdf if you (quite reasonably) don’t want keynote.

Keynote is just a better authoring environment than PowerPoint. And my choice of tool needs to be optimized for me, the author and not someone else’s desires.

unfortunately it's going into a deck with a bunch of other slides womp womp

Portland, Oregon

Wed, Jun 12, 2019 4:01pm -07:00
Microsoft Office https://twitter.com/Office • Jun 12
That's not what we want! What would make the experience better for you?

i mean the conversion worked reasonably well, it just still takes a lot of fiddling to get things looking just right, since there's always something that goes wrong with font sizes or alignment and such

Portland, Oregon

1 reply

Wed, Jun 12, 2019 2:22pm -07:00
Dale Maschette 🐟🧗‍♂️ https://twitter.com/Dale_Masch

Turning everything into a date

Portland, Oregon

Fri, Jun 7, 2019 12:18pm +00:00 (liked on Wed, Jun 12, 2019 2:19pm -07:00)
Sarah Weinman https://twitter.com/sarahw

Google Reader died almost exactly six years ago and if I had to pinpoint when the Internet nosedived, that would be the day

Portland, Oregon

Wed, Jun 12, 2019 2:44pm +00:00 (liked on Wed, Jun 12, 2019 1:53pm -07:00)
one of my least favorite activities is converting keynote slides to powerpoint

Portland, Oregon, USA

6 likes 7 replies

Wed, Jun 12, 2019 1:16pm -07:00
mrcs https://twitter.com/pVt_m4sTeR

Thank you! Nice summary ☺️

Portland, Oregon

Wed, Jun 5, 2019 5:42pm +00:00 (liked on Wed, Jun 12, 2019 8:36am -07:00)

older