private content is one of the top asks of atproto, we have some ideas. leading designs involve each user having multiple private repos. they differ from your public repo as they are access-controlled and not signed/redistributable. but they are still key->value, addressable, and of course they sync! - ThreadSky

divy.zone • 209 days ago

private content is one of the top asks of atproto, we have some ideas. leading designs involve each user having multiple private repos. they differ from your public repo as they are access-controlled and not signed/redistributable. but they are still key->value, addressable, and of course they sync!

Comments

spinny.bsky.social•208 days ago

if atproto can being Google+ circles back I will be happy.

cameron.pfiffer.org•177 days ago

we've all been trying to get back to The Light ever since

dmathewwws.com•189 days ago

Hey, wanted to share one idea on how to do private feeds.

You could add OAuth details inside your PDS. This would give anyone the info to generate tokens to view your private content.

ie) Your PDS is still public, it includes public + links to private posts.

https://3s-docs.org/hosting-provider-oauth

dmathewwws.com•189 days ago

*And you need to add a token you generate via OAuth to view the private posts.

blu3r4d0n.shutdown.network•167 days ago

this is neat!

tauheed-elahee.ca•160 days ago

📌

thoth.ptnote.dev•182 days ago

Iiiinteresting. I assumed that private repos would also be signed (I skeeted previously about the idea of using private relays to create small communities, which obviously doesn't work in the unsigned-private-repo world—although in that situation you are trusting the relay). Makes sense though.

nonbinary.computer•173 days ago

📌

sudanchapagain.bsky.social•183 days ago

📌

jcsalterego.bsky.social•209 days ago

secret garden of merkle trees

futur.blue•208 days ago

merkle rhizomes, if you will

neko.moe.observer•207 days ago

very, very cool!

i hope that even with "authority by host" you could still move pds and services would know to go to your new host?

dreamypup.penis.community•208 days ago

would this open up the ability to have 🐦 circles, but here instead?

moll.dev•208 days ago

Yep! A circle is like a group chat but it’s in the feed instead of the DMs

dreamypup.penis.community•208 days ago

did you use some invisible character that specifies RTL Text in your name? 😭

moll.dev•208 days ago

U+202E, sorry about that I was testing how the app renders RTL text

dreamypup.penis.community•208 days ago

does it even render rtl text at all? only android notifications show it like that, not inside the app 😅

moll.dev•208 days ago

It used to! I think Arabic and other RTL languages would put your handle on the right side. It doesn't seem like it works that way anymore

dreamypup.penis.community•208 days ago

or am I just misunderstanding the idea and the "friend-group" thing

afminguela.bsky.social•196 days ago

Mira mamá, un árbol binario!!! (😏)

leozeba.bsky.social•190 days ago

we've done something like this at https://memori.as with 3 sqlite databases per account.

- private data is local first and synced to private.db
- friend groups write data to shared.db (to, from) with read-only access to everyone in from list
- public.db is for everyone
- ui handle data from all databases

leyarte.bsky.social•205 days ago

📌

oyin.bo•208 days ago

That's way more practically useful than redoing JSON Schema.

margotsibley25.bsky.social•196 days ago

Totally beyond my understanding. R u highly intelligent?

devilhex.bsky.social•204 days ago

📌

evpok.love•208 days ago

how would you handle access revocation?

bumblefudge.com•22 days ago

ucans do it good

prayforchicken.bsky.social•196 days ago

📌

benwest.bsky.social•189 days ago

Interesting

snarfed.org•208 days ago

Phew. Huge change! ATProto v2 arguably, this plus E2EE messaging on MLS/MIMI. You all do keep yourselves busy

jshaked.com•207 days ago

📌

rafael.my•207 days ago

📌

sndwv.net•208 days ago

host authority repos for write control seem like they might be useful but also seems like most private content cases would be better covered by key wrapping?

silverkey.social•196 days ago

📌

metaflame.dev•195 days ago

Would this involve something like micro-appviews to keep the UX similar (keeping likes etc.), or would private posts be a whole separate thing? Or maybe stuff such as likes would effectively be centralized into the private post data itself, since the host has control?

maxinne.me•205 days ago

📌

zed.earth•206 days ago

Wonder if you and the team are generally familiar with Capability-based approaches for (fine-grained, delegatable, revokable) access-control?

divy.zone•206 days ago

good call, yes! @dholms.xyz actually worked on the UCAN spec https://github.com/ucan-wg/spec

thisismissem.social•22 days ago

I wonder how UCANs compare to OCAPs?

bumblefudge.com•22 days ago

v similar, actually. I forget the differences but they're p subtle, mostly having to do with the syntax for permissions expressions. both tokens u sign over with the key they're issued to

bumblefudge.com•22 days ago

speaking of which, how would u present them to a private app view? does the pds have a "quick, sign this digest" method? must an app view ask for a fresh sig per session, or can a nonrevocation check happen invisibly?

bmann.ca•22 days ago

Keys are delegated to the PDS and OAuth happens at the app view.

So PDS uses keys it holds for you to sign on your behalf.

Where to put the keys for signing if introducing UCAN could more easily be in several places, including on your phone.

zed.earth•206 days ago

Oh right, perfect! I believe I was on a UCAN community call where Daniel was presenting some work on did:plc.

There's also work coming out of Agoric/MetaMask on EndoJS, building some capabilities-mechanisms on top of SES. @kumavis.me

verdverm.com•22 days ago

What about something like Zanzibar and SpiceDB? (these are like how Google Workspace does permissions)

https://research.google/pubs/zanzibar-googles-consistent-global-authorization-system/

https://authzed.com/spicedb

vivl.im•194 days ago

📌

mikestaub.social•208 days ago

It makes sense to join forces with the Matrix team on this as the problem is quite complex. https://youtu.be/PCIg8Qjn74I?t=1357

Comments

Posting Rules

Reply