Notices where this attachment appears
-
Embed this notice
zunda (zundan@mastodon.zunda.ninja)'s status on Wednesday, 30-Nov-2022 15:54:47 JST 
zunda
joinmastodonのドキュメントをざっと読むと基本的には現在の公開鍵を投稿元のサーバからもらってきて署名の検証に利用し、投稿元のアカウントが既に存在しないDeleteアクティビティを受け取った時だけローカルにキャッシュしている公開鍵を検証に利用するようにも見える。ふむふむ。
https://docs.joinmastodon.org/spec/security/ -
Embed this notice
Hélène (helene@p.helene.moe)'s status on Wednesday, 14-Sep-2022 18:44:26 JST 
Hélène
@ukko https://docs.joinmastodon.org/spec/security/ seriously look at this i'm so upset -
Embed this notice
Hélène (helene@p.helene.moe)'s status on Wednesday, 17-Aug-2022 02:00:41 JST
Hélène
@trwnh hmm, that is odd then, and I believe Gargron@mastodon.social was the one to have introduced HTTP signatures into ActivityPub with Mastodon, but I may be wrong here? (I’d mention him, but I don’t wanna disturb, but he probably would be the one with answers regarding this)
There’s no mention on how to build the keyId on https://docs.joinmastodon.org/spec/security/, which seems to be mostly regarded as “the spec” on that subject
but considering what you’re highlighting, it would seem it should be done this way instead, yes
GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.
All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.