A humble request for all the : please, we need a for all the various services. Imagine having your mastodon account and logging with that to or ... that would be a killer feature. Any work already been done in that direction that I don't know of?

@arteteco OAUTH already makes that possible. Just need the activity pub services to start supporting it (some do, not many)

Oauth can work even between different servers? I used it once but the programs were on the same machine

@arteteco depends what you mean. It means that you can sign on with one click on any server which uses the OAuth provider you are registered with.

Usually when you see things like "sign on with your facebook account" that is OAuth

Ohh... marvellous. And how is the integration with the fediverse going?

@arteteco The only OAuth capable software in the fediverse that I know of is nextcloud with a plugin. But it isnt an OAuth provider, just a consumer. So in practice it just lets you sign on with your google or facebook account.

@freemo @arteteco Another way to sign in is the hubzilla protocol ! It's decentralized AND with a nomadic identity !!! Awesome 😎

@lascapi @arteteco I'd be curious to see the details (first I'm hearing of it). I'm particularly curious as to what advantages it has over OAuth.

@lascapi @freemo

Thinking the wiki on the devs hubzilla channel probably has info of interest.

Mikes channel, where some news is posted and discussion takes place will probably also be of interest


@roipoussiere @arteteco Basically, what you are requesting is called decentralized or nomadic identity (use your identity as a way to access/manage multiple accounts).

This is a complex problem to tackle for various reasons, but people are discussing about it :)

@roipoussiere @arteteco it's quite difficult because in a centralized system (for instance with Facebook Single-Sign-On) apps all agree to delegate/trust to Facebook while in a federated world there is not a single actor/service you can trust.

@roipoussiere @arteteco this does not mean there won't be a solution to this specific issue, but I wanted to give some background :)


Isn't what OpenID tried to do? (you set your Auth server at registering, and he's the trustful authority)

I also like how cryptocommodities (like Ethereum) handle this issue: you're identified via your couple of public/private keys. It's very impressive to see it in action on DApps.

(is there a working group on this somewhere?)

@roipoussiere @arteteco

@NicolasConstant @roipoussiere @arteteco yeah, OpenID is really amazing, I used it for a few website and I never understood why it was not more common :/

Thanks for your reply, I understund (more or less) the problem. Do you know where is the discussion taking place?


@arteteco @roipoussiere AFAIK, there is no single place (federated world, here again :D) where the discussion is happening, and no task force dedicated to the subject :/

I may be wrong though, any input about that would be hugely appreciated!


OpenID Connect

both #mastodon and #pleroma use OAuth2, so a big chunk of the work for supporting #fedi SSO is already done

Thanks, do you know if and where the issue is being worked on?

@arteteco working on pubstomp, a generic AP server that is intended for services like masto/pixelfed/peertube to work as frontends to it and would indeed support single account (that being your pubstomp account), but it wouldn't work for existing services out of the box.

That said, one of my goals down the road is to build "api adaptors" that would basically plug into pubstomp and adapt to, say, the mastoAPI, pleromaAPI, etc, which would make it somewhat similar i guess? Progress is slow because it's just a free time project more or less, and it's not up in a repository yet, but it will be up at down the road
Sign in to participate in the conversation
Qoto Mastodon

QOTO: Question Others to Teach Ourselves. A STEM-oriented instance.

No hate, No censorship. Be kind, be respectful

We federate with all servers: we don't block any servers.