There's one thing I think the #Fediverse is missing: Federated identities.
Let's suppose I have a #Mastodon identity. (I do. I even operate my own Mastodon server so that identity is fully under my control.) But now I want to participate in a different Fediverse activity, say on a Lemmy server – now I have to create a new identity there, one entirely disconnected from my 'main' identity here on Rusted Neuron.
This seems both wasteful and overly complicated from a UI perspective.
DIDs are interesting! Especially because they could also support another thing I think we need: Anonymous Identities.
For whistleblowers and those who live in places without the right of free speech, Anonymous Identities only they can use, and which may be part of a cryptographic signature on a post, are very important.
But, as you said, 'another task'. There are too many incentives towards user lock-in, even in the #SocialCloud and #Fediverse.
Hmm… There's a did:twit method allowing you to use Twitter as the third party to establish identity. https://github.com/did-twit/did-twit/blob/master/spec/index.md
But I can find nothing similar for mastodon. Mind you, the did:twit method spec could be used without change with Mastodon! I wish they had named it did:social or something… 😕
There's also a did:peer method for P2P. https://identity.foundation/peer-did-method-spec/#verification-using-a-trusted-third-party-channel
Yes, but these are “private” repositories.
Here are all:
https://www.w3.org/TR/did-spec-registries/#did-methods
There is no ActivityPub in the “Network” column yet.
@rhiaro : WANT! ;)
You are right with mastodon, could be the same cause posting as toot does not even require UI changes!
It would be the task of mastodon to quickly communicate with us so that we, the AP implementors could to a did:social or did:AP or whatever …
PS
Loving “Rick Astley (thank you for your inspiration)” ;)
There's no reason you couldn't have both OWA and DID, but some of us see centralised/"trusted" identity providers and blockchain and all the inherent flaws of LD-signatures as huge red flags and want no part of it.
And we've always got OAuth if you want to link to a Facebook, Google, Github, Twitter, or whatever identity. Don't know about you, but AFAIC they can all rot in hell.
Which Fediverse server apps currently support OWA? Any idea? Some quick searches for OpenWebAuth and Fediverse related topics turned up a lot of commentary and unrelated links, but nothing helpful.
Thanks.
If you have personal experience or (informed) opinions about any of them I'd be interested as well.
I took a look at using the Mastodon auth code as a single sign-on for a project I'm considering and determined it would be too much work. Ended up looking more closely at SocialHome because it used Django's built-in auth system. (And because I like Python more than anything except C. I'm kinda old-school. Emphasis on 'old'.)
Goal for the project was marrying a social VR system to some sort of text stream. Ability to Federate was actually a secondary goal.
@jackwilliambell
See https://www.w3.org/TR/did-core
Convincing the mastodon people about Federated Identities (or also the C2S portion = generic servers / diverse clients) is “another task”.
But I'd be happy if you try …
@tchambers