David Shanske – Page 9 – The Definitive Location

My biggest problem in wanting to share trips is timing. I enjoy taking pictures on trips, but I don’t want to spend time while on the trip going through the steps of choosing what to upload and uploading them. But when I upload later, the time and location data isn’t aligned unless I do so automatically.

So, what I’d like is the ability to select from the photos and decide which ones to upload, and have my site take care of posting them, rather than a one-by-one flow. I can probably build a basic version of that into my site, but I’d prefer a mobile app(of course, I won’t be creating one).

Tweaking my in flight WiFi to GPS Logging software.

Castle, Magic Kingdom

Fireworks show.

It’s 4AM and I’m remoting into the first in-person IndieWebCamp since the pandemic started. Certainly easier than going to Dusseldorf, but hope to join the community in person next time.

Dean Stockwell passed away. As a Quantum Leap fan, I watched him many times.

Just got the movement to fix my schoolhouse clock. Decided not to go for the chime upgrade, which would have it chiming on the hour, as distracting, but it now has a second hand, which the original movement didn’t include.

Just ordered new movements for all the broken clocks in my apartment. Hopefully I can fix them all.

Launched a scanning project to scan and discard old papers of interest to regain the space. Not everything can be discarded, but finding a lot of interesting memories.

Today is Columbus Day/Indigenous Peoples Day in the United States. In honor of same, I’m writing about Lebn Zol Kolumbus, a song from the 1915 Thomashefsky production, Der grine milyoner. In the song, the immigrant characters praise Columbus for setting in motion the events that led to an America of opportunity for them.

Jane Peppler’s rendition comes with historic notes, as she includes the two verses that were removed by the time the play launched in 1915, which included references to the case of Leo Frank and an anti-immigration bill. It is also the only version I found online with subtitles.

The musical Ragtime even pays tribute to the song in their song, A Shtetl Iz Amereke, where some of the lyrics and tune of the song were incorporated into, though played at a lower tempo.

For more about the Thomashefskys, I recommend their grandson’s musical tribute to them that was broadcast on PBS in 2012.

Trying to flash some boards with new firmware. Holes too small. Internet suggested sewing needles. Didn’t have any. Borrowed some from parents. They came from Shopwells…which ceased to be in 1986. Clearly we don’t sew much. Needles worked though. 1 board down, 10 to go.

I heard some social networks were down. As long as I have my website, my social network is always running. If you’re interested, join the #indieweb community on Wed at 6PM PST/9PM EST for Homebrew Website Club, this weekend for Create Day. All events at events.indieweb.org.

Dinner in the sukkah. It’s nice out today.

IndieAuth for WordPress Version 4.1.0

IndieAuth 4.1.0 was Released. One of the biggest changes were fixes as a result of the doubling of unit tests, which allowed several small scenarios to be troubleshooted, as well as other under the hood fixes.

In addition, the introduction of refresh tokens and an introspection endpoint, as discussed in the last Indieauth popup.

Finally, an experimental ticket auth endpoint, which is disabled by default, which can be enabled by added define( ‘INDIEAUTH_TICKET_ENDPOINT’, true ); to your wp-config.php file.

Ticket Auth is an developing spec that I’ve commented on before. This endpoint received tickets and redeems them…and at the moment, nothing else(which is why it is not enabled by default). That and the fact that we have not yet iterated on how to use the token once it is received.

IndieAuth Popup – August 2021

At the end of last month, a group got together to discuss some of the outstanding issues in IndieAuth. We had two similar sessions in 2020 and the specification is better for it(see Aaron Parecki’s summary of changes), however, we left many issues on the table due time considerations.

The spec hasn’t been updated yet, but here are some notes on the new changes. We’re hoping to follow up at another session before the end of the year.

Tokens having an expiration is now recommended, but not mandatory. This would mean the token endpoint would return the ‘expires_in’ parameter as part of the access token response, indicating the number of seconds till it expires.
In order to support expiring tokens, the access token response may now return a refresh token. The token endpoint will support the grant_type refresh_token in order to utilize these tokens to get a fresh access token. Refresh Tokens are common in OAuth2 and there would be no changes from the existing specifications.
Adoption of the OAuth2 Token Introspection Specification, with the token endpoint acting as the token introspection endpoint. At this time, that spec requires authentication to use the endpoint, whereas IndieAuth’s existing token verification interaction does not. This question is ongoing, as to whether we should specifically drop the auth requirement.