Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
hachyderm.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Hachyderm is a safe space, LGBTQIA+ and BLM, primarily comprised of tech industry professionals world wide. Note that many non-user account types have restrictions - please see our About page.

Administered by:

Server stats:

9.4K
active users

hachyderm.io: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Public
洪 民憙 (Hong Minhee)

I received a request from @ghost today to add #LDSignatures to @fedify for compatibility with #Mastodon, as Mastodon does not plan to implement Object Integrity Proofs (FEP-8b32) for the near future. 😩

However, Mastodon's implementation of LD Signatures does not even use valid JSON-LD properties (despite the name), so I'm not sure how to make it compatible with Mastodon since #Fedify does JSON-LD processing. 🤔

The JSON-LD representation of a Create(Note) activity containing LD Signatures produced by Mastodon and its expanded form. The “signature” property and its child properties are not properly namespaced.
#ActivityPub#fedidev
Public *
洪 民憙 (Hong Minhee)

As the creator of Fedify, I'd like to see either ActivityPub implementations all deal with JSON-LD properly, or the ActivityPub spec gives up on JSON-LD. 😩

Public
wakest ⁂

@hongminhee hey @thisismissem, @andypiper what do yall think of this situation? where are we going here? I keep seeing dev after dev complain about the JSON-LD issue with Mastodon and I personally dont even know where to stand on it but it seems its a major hurdle.

Public
Andy Piper

@liaizon @hongminhee @thisismissem I think it may be something long-standing here, is there an existing GitHub issue where I can get more background? I know it’s pretty complicated at this point though.

Public
Andy Piper

@liaizon @hongminhee @thisismissem (also asking as I’m on my phone walking right now and can’t search so easily!)

Emelia 👸🏻

@andypiper @liaizon @hongminhee the version of JSON-LD Signatures that mastodon supports is old, basically they implemented it, then the spec completely changed.

That's why stuff doesn't look right.

The question is then: how do you migrate forwards without breaking compatibility with existing deployments. That's gonna need time & money thrown at the problem to solve.

Sep 11, 2024, 06:28 PM·Public·Ivory for iOS
0boosts·5favorites
Public
Andy Piper

@thisismissem @liaizon @hongminhee agreed that it will take a while to resolve things due to the scale of the deployments.

Public
silverpill

@thisismissem @liaizon @andypiper @hongminhee

FEP-8b32 is designed to be compatible with existing implementations. The upgrade path for Mastodon may look like this:

1. Support multiple public keys per actor
2. Start publishing second Ed25519 key as described in FEP-521a
3. Start adding FEP-8b32 integrity proofs in addition to LD signatures (as specified in "Backward compatibility" section of FEP-8b32)
4. Stop adding LD signatures

Summary card of repository fediverse/fep
Codeberg.orgfep/fep/8b32/fep-8b32.md at mainfep - Fediverse Enhancement Proposals
ExploreLive feeds
About