@robin @volkris Now I'm even more confused. Like I said, the devil is in the details, and it might be impossible to justify the 'over' preposition in any direction without showing a little bit more about what you expect to be sent over the wire...

The proposal is an interesting idea, but I think if you write down what's sent over the wire, it'll be clear that either 1) it's not ActivityPub at all (so it's not AP over ATP) and/or 2) it is AP aka HTTP (over ?), but the ATP is superfluous

@robin @volkris

I hope I'm wrong and it all work out great. Implement it and send me a URL and we can test it against the AP conformance requirements, and that can be a way of judging whether it is an ActivityPub or something else.

@bengo @volkris It's AP over HTTP but with:
• Credible exit: you're not under some admin's thumb.
• A better handle/identity system.
• Shared infrastructure with any number of other open protocols.

@robin @volkris cool we both want that. ATP isn't needed for those (not saying it can't be shoehorned in).

Using DID URIs with ActivityPub, which is already allowed by the protocol, is what makes it possible. `did:plc` is one very opionated DID method, but imho there's no reason to constrain to it. End-users and implementation operators are in the best position to pick their supported did method, not protocol designers.

Protocol designers can design for the did-method-agnostic DID abstraction.

@bengo @volkris How do you get credible exit for AP?

I'm not saying that PLC is ideal (it's temporary) but being opinionated is important. Open-ended everything just leads to the same kind of adoption profile that semweb stuff has (and XML had): a super-committed core and no one else understands what it's for. It might be good to learn from experience there.

@robin It could be useful to formalize what you mean by 'credible exit', e.g. maybe we could add to https://www.w3.org/wiki/Socialig/Use_Case_TF

@robin

Let's say you mean something like what Gordon describes here. https://subconscious.substack.com/p/credible-exit

It says it in there: DNS is a pretty good start. Regardless of social protocol, you can get some kind of credible exit by letting end-users bring their own identifier to the social service provider. Mastodon doesn't do that.

But it should be considered best practice to have your ActivityPub Actor ID use a different domain from your inbox provider. https://bengo.is/actor.json

@robin I also found this which perhaps I should read :P https://en.wikipedia.org/wiki/Exit,_Voice,_and_Loyalty

@bengo @robin Seems an interesting analysis!

@bengo @robin say what you will about bluesky's BYOID approach, i LOVE that they partnered with namecheap to make a dead-simple, commodity DNS-based solution. i would love it if AP adopted something flexible enough to accomodate people BYO-ing the identifiers they bought through namecheap/BS (i haven't really thought through the details if whether that would work only for migration or only for duplicate/multiple accounts)

@by_caballero @bengo Much agreed. I don't want to focus on that because it's not specifically a protocol feature, but it's great product work enabled by the protocol. And there's nothing about that indirection that couldn't work for AP too.

@bengo @robin Every ActivityPub actor uses an URL for identity. It would be nice if more servers implemented Bring Your Own Domain for accounts; I only know of Takahē for now. As the social web grows, lwe're all going to have more identities, like with email: one from your university, one from each of your employers, one or two from your ISPs or other service providers, one you register and maintain carefully for yourself and your household.

@bengo @robin But, importantly: this is not an ActivityPub issue. This is a server issue. ActivityPub supports BYOD out of the box.

@evan @bengo @robin one of my strongly-held-beliefs is that the "protocols don't matter"; I think the realpolitik of RCS-SMS-iMessage(lol)-WhatsApp-Signal supports this. All use a common identity, and could/would be made "interoperable" with the stroke of a single law by a single large nation state/federation. aka Postel was right.

The one thing that makes me sad is that ATP (and Matrix) have chosen different identifiers, which makes interop a human problem vs. a tech one. 😢

@evan @bengo @robin that said, I think there's a reasonable chance that if people started putting ATP links in their webfinger profiles or AP urls in their ATP profiles, the two are effectively equivalent and interoperable. Doing so, and/or having multiple feeds-per-profile could have quite an impact in terms of opening up the space for playing with interop. I'm a little surprised it hasn't been done more (maybe I just haven't seen it?).

@blaine @evan @bengo Like this? https://berjon.com/.well-known/webfinger?resource=acct:robin@berjon.com

@robin @evan @bengo yes! I'd personally love to see what having multiple feeds would look like in today's specworld. The original intent of webfinger profiles (which became xrd? I stopped following aeons ago) was to have multiple type/rel values, so you'd have e.g. rel="photos", rel="blog", rel="newsletter", rel="tweets", rel="snark"/type="atproto" (sub appropriate content type/url/whathaveyou), etc.

@robin @evan @bengo cross-product all this with the "identity per role" / Goffman presentation of self style, and I think we'd have what I'd consider mvp for federated online identity 😅

@blaine @robin @evan What i like about ActivityPub Actor IDs and did:web, but not as easy in webfinger and what I understand of atproto, is that in the former the 'role identifiers' are just URL subpaths, and in the latter the domain name operator can gatekeep them.

Yes domain names for identifiers are cool. But URLs are even cooler.

e.g.
did:web:bengo.is -> https://bengo.is/.well-known/did.json

did:web:bengo.is:work -> https://bengo.is/work/did.json

did:web:bengo.is:work:jokes -> https://bengo.is/work/jokes/did.json

@blaine @robin @evan `did:plc` explicitly opts out of this for some reason

@bengo @blaine @robin @evan IIRC Bluesky users demonstrated a PoC of using path-based DID to impersonate s3.amazonaws.com.

@cdata @blaine @robin @evan my understanding is that was a bug in the verification code...

(misinfo flying around everywhere! :P This is a benefit of seeking wide review in a standards forum....)

@bengo @blaine @robin @evan That matches my understanding. I just assumed this was part of their remediation (acknowledging that the alternative would be a more nuanced representation of what the DID means in the UI).

@bengo @robin @evan I should have made a long bet with a certain t or k that I won't summon here: I don't think anyone who's not a technologist-by-trade will *ever* use a URL with path separators as a meaningful human-level identifier for another human. I haven't seen evidence of it yet, to be sure, but would have happily made that bet 15 years ago.

As a bonus side-bet, *even if* someone matching that description did do that, they won't have done it securely*.

@bengo @robin @evan (i.e. with knowledge of the security properties of the url).

All this matters because the human level identifiers in our systems need to be understandable and usable by end-users. Underlying identifiers can be anything, paths seem sensible there (but in practice could probably be opaque hashes or whatever).

@robin @blaine @evan

https://bengo.is/.well-known/webfinger
🚀
https://bengo.is/.well-known/did.json

@blaine @evan @robin Generally like the idea, and I'd like to point out you don't need webfinger for this. You can and should add these links directly to your ActivityPub Actor and then you don't have to learn yet another abstract data model and media type, XRD/JRD/etc.

@blaine @evan @robin I really hope @fedidevs makes a Webfinger test suite...

@bengo @evan @robin yeah, agreed. I think ideally you basically have one "profile" format and just link to that.

We won't get into the extensive discussions that were had historically about all of this being access controlled, so that providing a proof-of-identity along with the profile request would enable dynamic profile responses ("{x@y.com} is asking for access to your photos [ap endpoint]")

@blaine @bengo @evan @robin

So, just so I am following along: a single profile.json file in .well-known with entries for each identity-key (eg Masto, BS, any other DIDs, etc)?

[Edit: with the implied question of how is this different from WebFinger??]

@chadkoh @bengo @evan @robin not especially different; there are *many* ways to slice this problem, I was just pointing at the possibility of name-based-interop. Right now we seem to have this weird-to-me situation where one name = one feed. Given that we (or, at least, I) have dozens of social and data profiles, that part seems unsustainable, especially in light of @evan's original point re: BYOD (since domain costs are *increasing* it seems unlikely that lay-individuals are going to BTO)

@evan @bengo If the spec can do it but the servers don't support it, it's kind of a spec problem anyway!

@robin @evan

can't have spec problems without a spec, right atproto?

@robin @evan I should add I'm very sympathetic to why a for profit business would want to develop their product without committing to a final specification. It makes sense. But that's not the same game as ActivityPub, and it's not a fair comparison.

@robin @evan I'd argue it's a test case problem not a specification problem. The specification is clear in this regard.