@fwc@sneeden Private posts work differently in Mitra and Pleroma:
- Mitra doesn't show partial threads. Pleroma displays partial threads and converts replies with invisible parent into top-level posts. - Mitra enforces conversation scope. Pleroma and Mastodon don't seem to respect conversation scope at all, so it's possible to reply with a public post to a followers-only post, or add more people to an existing DM conversation. They also generate replies with wrong audience in followers-only conversations.
So the interoperability is limited, but I think Pleroma and Mastodon are broken and I don't want to copy their flaws
@sendpaws@jeff I like the idea of Urbit, but the implementation is horrible. I think a similar system could be built by combining existing technology, e.g. ActivityPub, I2P and WASM, but for some reason they are trying to re-build everything from scratch.
According to the RFC, you must return JSON document if no Accept header is provided:
A WebFinger resource MUST return a JRD as the representation for the resource if the client requests no other supported format explicitly via the HTTP "Accept" header.
Mitra doesn't support inline images. This feature is on the roadmap, but has low priority because inline images are not widely supported in the Fediverse.
@scott I can only think of FEP-ef61 (nomadic identity for ActivityPub), but it is only supported by Streams/Forte and not by Hubzilla.
Also, a comment regarding FEP-171b. It is based on the implementation of Conversation Containers in Streams. The original document describing Conversation Containers appeared in the streams repository on 2024-02-03:
FEP-61cf: The OpenWebAuth Protocol, which provides federated single sign on, was submitted as a Fediverse Enhancement Proposal (FEP), special thanks to FenTiger and silverpill.
@mariusor The local copy should be enough if you check the signature (Mitra signs POST requests and adds integrity proofs to activities).
Yes, I am very interested in learning about your approach to ACLs. I tried to implement proper access control in a little side project, and that turned out to be more complicated than I expected.