Conversation

Embed this notice

Alex Gleason (alex@gleasonator.com)'s status on Sunday, 12-Feb-2023 01:54:51 JST

Alex Gleason

in reply to

silverpill

Embed this notice

silverpill (silverpill@mitra.social)'s status on Sunday, 12-Feb-2023 03:04:58 JST

silverpill

in reply to

Shari Vegas :windmill_of_friendship: :1488:

@ShariVegas @alex Yeah, I know about this project. It is not compatible with Fediverse, but the way it handles identities is similar to what I do in Mitra (DIDs + JSON signatures)

Alex Gleason likes this.

Alex Gleason repeated this.

Embed this notice

Shari Vegas :windmill_of_friendship: :1488: (sharivegas@pleroma.nobodyhasthe.biz)'s status on Sunday, 12-Feb-2023 03:04:59 JST

Shari Vegas :windmill_of_friendship: :1488:

in reply to

silverpill

@alex @silverpill And it's in Rust! https://github.com/chatternet/chatternet-server-http

Embed this notice

silverpill (silverpill@mitra.social)'s status on Sunday, 12-Feb-2023 03:20:08 JST

silverpill

in reply to

Shari Vegas :windmill_of_friendship: :1488:

@ShariVegas @alex I think chatternet is the future of AcitivityPub but we need an upgrade path.

Alex Gleason likes this.

Embed this notice

Alex Gleason (alex@gleasonator.com)'s status on Sunday, 12-Feb-2023 04:34:31 JST

Alex Gleason

in reply to

@silverpill @ShariVegas I think we create a UI where users can import/export their keys. Then make our software support DIDs as actor IDs.

Embed this notice

Alex Gleason (alex@gleasonator.com)'s status on Sunday, 12-Feb-2023 04:46:50 JST

Alex Gleason

in reply to

@dadalo_admin @silverpill @ShariVegas This is almost coherent.

Embed this notice

dadalo_admin (dadalo_admin@dadalo.pl)'s status on Sunday, 12-Feb-2023 04:46:52 JST

dadalo_admin

in reply to

@silverpill @ShariVegas @alex

https://cohost.org/DecayWTF/post/447994-activity-pub-sucks

Embed this notice

silverpill (silverpill@mitra.social)'s status on Sunday, 12-Feb-2023 05:30:18 JST

silverpill

in reply to

Shari Vegas :windmill_of_friendship: :1488:

@alex @ShariVegas First we need to decouple user identity from the server. This means each user has at least two keys, one of which is stored on the server and used for HTTP signatures, and another one is stored on the client. For example, Mitra supports Ethereum keys managed by MetaMask browser extension, and Minisign keys (it's a command-line signing tool). But client-side key can be also stored on the server in a password-encrypted backup. The exact implementation doesn't matter.

Next we implement identity proofs (FEP-c390). With identity proof you can link user-controlled identity (client-side key, represented by DID) to server-controlled identity (actor ID). Recipients who understand identity proofs see actor ID and DID as different identities of the same person.

Now users can start to sign activities with their own keys (FEP-8b32). Signed activity is transport-agnostic. It can be delivered by relays or by any other means. Recipients who understand identity proofs may ignore actor property (it could be a relayer actor) and treat signer's identity as primary.

This is still backwards-compatible with existing Fediverse servers.

Once a sufficient number of servers/platforms support FEP-c390 and FEP-8b32, we can abandon DNS-based actors and do something similar to what chatternet is doing.

Alex Gleason likes this.

Embed this notice

Alex Gleason (alex@gleasonator.com)'s status on Sunday, 12-Feb-2023 09:11:17 JST

Alex Gleason

in reply to

@silverpill @ShariVegas Bookmarked