!NPRUEisLjcaMtHIzDr:kamax.io

mxisd

259 Members
Federated Matrix Identity Server | https://github.com/kamax-io/mxisd | Version: 0.8.2 | Dev discussions: #mxisd-dev:kamax.io | Related: #matrix-identity:matrix.org104 Servers

Load older messages

SenderMessageTime
12 Jun 2019
@park:mgp.ax.lt@park:mgp.ax.ltScreenshot_20190612-085428.png
Download Screenshot_20190612-085428.png		13:57:06
@max:kamax.ioMaximuscan you show the request and response headers please?13:57:25
@park:mgp.ax.lt@park:mgp.ax.ltWhere can i find them?13:58:01
@max:kamax.ioMaximusI guess in the three dots menu, but it's specific to whatever browser that is13:58:28
@park:mgp.ax.lt@park:mgp.ax.ltandroids chrome13:58:42
@park:mgp.ax.lt@park:mgp.ax.ltPossibly its better to wait until the weekend, when i have a laptop with internet at hand. Lol13:59:07
@max:kamax.ioMaximusI don't use it, so can't help with the specific item menu13:59:08
@max:kamax.ioMaximusI'll double check later that mxisd sends the right content-type tho13:59:56
@park:mgp.ax.lt@park:mgp.ax.lt
Als Antwort auf @max:kamax.io
I don't use it, so can't help with the specific item menu
I dont blame you, i dont believe there is an option for that on the mobile version. 		14:00:09
@max:kamax.ioMaximusthats a bummer14:00:27
@park:mgp.ax.lt@park:mgp.ax.ltthanks so far!14:01:24
@max:kamax.ioMaximusanytime!14:01:32
@park:mgp.ax.lt@park:mgp.ax.ltI could also just send you the link. Lol14:10:35
@max:kamax.ioMaximussure, go for it14:17:03
@max:kamax.ioMaximusI could test it directly14:17:05
@max:kamax.ioMaximus π“œπ“ͺ𝔁𝓲𝓢𝓲𝓡𝓲𝓲𝓡𝓲π“ͺ𝓷: Good catch, the Content-Type header is indeed not set by mxisd. Thank you for the report! 16:29:14
13 Jun 2019
@tx:junta.pl@tx:junta.pl joined the room.08:59:36
@mextor:matrix.orgmextorHello, any update on 3PID removal ? with the new version ?10:10:18
@julian:foad.me.ukJulianFmextor: Well, yes, the release notes https://github.com/kamax-matrix/mxisd/releases/tag/v1.4.5 mention the changes.10:18:20
@park:mgp.ax.lt@park:mgp.ax.ltno more warnings triggered.10:23:02
@park:mgp.ax.lt@park:mgp.ax.ltDoesnt change any of the removal behavuoir i suspect?10:26:28
@park:mgp.ax.lt@park:mgp.ax.ltso returning 404 is still the only way to allow unbinds?10:28:13
@max:kamax.ioMaximus

mextor: π“œπ“ͺ𝔁𝓲𝓢𝓲𝓡𝓲𝓲𝓡𝓲π“ͺ𝓷 I'll take this opportunity to explain a bit more what is going on, which I'll re-use for the wiki page...

Up until two days ago, there was no mechanism in the stable identity spec to remove emails and phone numbers. This was never a problem since synapse had a client API endpoint and just removed it from its database. All well and good. Then NV decided to go for a way to remove it which we disagreed with.

At this, instead of behaving like good imlementation neighbour, they used an arbitrary and unspeced enpoint in live environement as if it was totally legal and already in the spec. That removal because synapse expected the identity server to implement the endpoint. So while it was working fine for matrix.org that had the full custom stack, it broke for everyone else.

People kept on reporting the issue which I always redirected to synapse. Tried to talk with the NV peeps that the spec matter was one thing, but breaking people experience over an unstable endpoint wasn't right. Be a good neighbour. Just show a warning or smth, have a config option, whatever. But don't break implementation that follow the latest stable spec. Tired of having the blame constantly shifted to mxisd, we added the warning

Now, the new stable spec offers two ways to authenticate while removing emails, but Riot and synapse only still implement/offer one of them. Given that mxisd is allowed per spec to decline the use of one but allow the other, we did that in v1.4.5 and removed the warning.

Two issues were spotted in synapse and the spec regarding this, so I hope that maybe finally synapse and Riot will behave in a user friendly manner and not just account for matrix.org and/or vector.im userd and be the neutral custodian of the spec they claim to be, without favoritism for their own people.

mxisd v1.4.5 allows removal of 3PID via regular "send email validation, click link" method. It would be best to not be a bystander if you want it supported in Riot/synapse and go open/+1 issues about it.

10:57:45
@park:mgp.ax.lt@park:mgp.ax.ltThanks for the explanation, do you have an issue you could link for all us here to press f1 (+1) on?12:18:20
@max:kamax.ioMaximus I don't believe there is any. I wouldn't want to re-use another issue given they were all regarging unspecced behaviour. This ought a fresh issue I believe 12:19:37
@park:mgp.ax.lt@park:mgp.ax.ltI see12:23:12
@kati:kamax.iomkatee changed their profile picture.14:08:51
@mextor:matrix.orgmextorthx :D14:41:10
@jasonm:matrix.cambsac.org.uk@jasonm:matrix.cambsac.org.uk changed their display name from Jason Morgan to Jason.15:51:08
@kati:kamax.iomkatee @room In our research work for The Grid protocol, we've put together a write-up that talks about privacy and data collection ofΒ Matrix.orgΒ while using Riot and synapse self-hosted. This document has specifics about the often understated importance of self-hosting your Identity server:

https://gist.github.com/maxidorius/5736fd09c9194b7a6dc03b6b8d7220d0 		20:23:49

Show newer messages

Back to Room ListRoom Version: