Re: Expanding collections on delivery
Technical Discussion
4
Posts
3
Posters
0
Views
-
@evan The groups (private groups, specifically) aspect is the reason why I brought up this topic at all — it was mostly for my understanding of the spec because to my knowledge, there weren't many collections being passed around in recipient fields; the only one being
/follower, which isn't always resolvable.The same issues would occur around private groups... a public group publishing something a
/memberscollection would be addressable, but not a private group or one whose membership list is hidden.All threadiverse softwares work around this by having the group itself be the distributor, and so you needn't address a members collection, you just need to ensure the group itself is addressed. The rest is implied (which HA! I bet @trwnh@mastodon.social has much to say about implied behaviour)
-
> group itself be the distributor
well, naturally, i would suggest addressing both the group and its members. just like you would address both a person and their followers. or a moderated conversation and its audience. the way inbox forwarding works is that someone has to do the forwarding from their inbox. :)
> list is hidden
you don't need to know the items. that's private info, and you just need the id to be understood by the forwarder (who will themselves know the secret items)
-
> group itself be the distributor
well, naturally, i would suggest addressing both the group and its members. just like you would address both a person and their followers. or a moderated conversation and its audience. the way inbox forwarding works is that someone has to do the forwarding from their inbox. :)
> list is hidden
you don't need to know the items. that's private info, and you just need the id to be understood by the forwarder (who will themselves know the secret items)
@trwnh@mastodon.social I thought inbox forwarding between instances was a non-starter per the AP spec because you cannot guarantee that the activity hasn't been tampered with.
I thought it must be paired with a signature of some sort.
-
@julian If forwarded activity doesn't have a signature (FEP-8b32 or LD signature), you can fetch it by its ID. Mitra does this. Not all activity IDs are dereferenceable (hello Mastodon), but some are :)
Gli ultimi otto messaggi ricevuti dalla Federazione
-
Mm I believe the community is already addressed. Mastodon doesn't prepopulate the mention in a reply unless it is explicitly in the AP object.
-
Have you tried putting things into the to or cc?
-
@julian perfect!
-
@js@podcastindex.social done and tested as working. Looking for the AP Accept headers now. Thanks for the suggestion :smile:
-
@evan @julian no it was just one that I found was allowed, after wasting too much time with trial and error
iirc they even had different rules for incoming from CF ips vs not, but it was a long time ago!
-
-
@js@podcastindex.social Although... now that you mention it, Anubis does have the ability to filter by header values, so I will update the bot policy file to allow the standard ActivityPub accept headers.
