fsebugoutzone.org:9999

       Post AS0S8t2MFJLLJNFyFM by feld@bikeshed.party
 (DIR) More posts by feld@bikeshed.party
 (DIR) Post #ARydHmeS4Dy5IDbFfk by feld@bikeshed.party
       2023-01-24T18:52:00.297663Z
       
       1 likes, 0 repeats
       
       Posting from Ivory
       
 (DIR) Post #ARz0sVbcheWS5Sl2YK by feld@bikeshed.party
       2023-01-24T23:16:18.279570Z
       
       0 likes, 0 repeats
       
       oh that&#39;s funny it worked because it was giving me an error in the app
       
 (DIR) Post #ARzEW6o5cghUA6nmAy by himay@rave.ineptiarum.ca
       2023-01-25T01:17:01.243962Z
       
       0 likes, 0 repeats
       
       @feld How&#39;d you manage that? My Pleroma instance clearly isn&#39;t presenting itself close enough to be considered a Mastodon instance by the app. Or do you already happen to know what the missing tidbit of communication is?
       
 (DIR) Post #ARzEW7eYTcfSmpLfxA by feld@bikeshed.party
       2023-01-25T01:48:54.436460Z
       
       0 likes, 0 repeats
       
       I didn&#39;t do anything special but I am running pretty close to latest develop branch
       
 (DIR) Post #AS0RVQRacWYtL1F4LY by himay@rave.ineptiarum.ca
       2023-01-25T15:47:55.893367Z
       
       0 likes, 0 repeats
       
       @feld Do you happen to know whether your instance is storing account IDs as either UUID string or integers like Mastodon?
       
 (DIR) Post #AS0RVRhDxsf7DnZ4M4 by feld@bikeshed.party
       2023-01-25T15:49:30.587972Z
       
       0 likes, 0 repeats
       
       all Pleroma instances store IDs of things as FlakeIDs for security purposes. Mastodon&#39;s use of incrementing integers is a massive problem that they refuse to address. You can enumerate accounts and posts with their stupid implementation which makes scraping and hunting for data much easier.
       
 (DIR) Post #AS0S8sVkCZFtgDzvPc by himay@rave.ineptiarum.ca
       2023-01-25T15:53:02.972281Z
       
       0 likes, 0 repeats
       
       @feld Ah, got it. According to @paul it sounds like that&#39;s a major limiting issue as to whether other ActivityPub instances are usable with Ivory or not (they&#39;re setup to just expect Mastodon&#39;s INT id).…which doesn&#39;t make sense if your instance is also using FlakeIDs. 🤦🏻‍♂️
       
 (DIR) Post #AS0S8t2MFJLLJNFyFM by feld@bikeshed.party
       2023-01-25T15:56:35.164099Z
       
       0 likes, 0 repeats
       
       we can convert FlakeIDs to integers. I have a patch right now that does it and allows you to login with Ivory but there are still problems possibly because of an overflow as our integers are too big haha
       
 (DIR) Post #AS0TNTaDGVbQfJc3Ci by paul@tapbots.social
       2023-01-25T16:02:12Z
       
       0 likes, 0 repeats
       
       @feld we can handle 63 bits, not sure if 64 would work or not but basically anything long long.
       
 (DIR) Post #AS0TNU6TKZPIHMhoUC by feld@bikeshed.party
       2023-01-25T16:10:22.519829Z
       
       0 likes, 0 repeats
       
       your app seems to be very unhappy when I present integers like 30892042907922260309966453407744e.g., the local timeline on my dev server shows the same post over and over instead of the correct postsbut also it&#39;s a crime to treat the &quot;id&quot; field as an integer when it&#39;s actually encoded as a string 😭🫠We use FlakeIDs as a security measure so users and posts cannot be enumerated by an attacker. It would be nice if we didn&#39;t need to make a kludge here... Mastodon really really needs to stop treating the id field as an integer and close this security hole toocc @lain
       
 (DIR) Post #AS0TSMPjLaFrsY2SQq by himay@rave.ineptiarum.ca
       2023-01-25T16:10:43.498280Z
       
       1 likes, 0 repeats
       
       @paul @feld Pleroma appears to generate 128-bit IDs. :ablobgrimace: https://docs-develop.pleroma.social/backend/development/API/differences_in_mastoapi_responses/
       
 (DIR) Post #AS0TwKh0JO3zEAPUJM by zop@7td.org
       2023-01-25T16:15:00.344287Z
       
       0 likes, 0 repeats
       
       @himay @feld @paul correct. 128-bit FlakeID - DB side PostGreSQL UUID - under the hood https://git.pleroma.social/pleroma/elixir-libraries/flake_id
       
 (DIR) Post #AS0TwOO0ZxFGgPYNG4 by feld@bikeshed.party
       2023-01-25T16:16:41.159053Z
       
       0 likes, 0 repeats
       
       and for the record, Mastodon&#39;s using the Postgres bigint typehttps://www.postgresql.org/docs/14/datatype-numeric.html
       
 (DIR) Post #AS0UHPRxopd440QQpE by himay@rave.ineptiarum.ca
       2023-01-25T16:00:41.384403Z
       
       0 likes, 0 repeats
       
       @feld @paul Ah ha, so that is the trick I’m missing most likely. Thanks!
       
 (DIR) Post #AS0UHPv24kshWA1e8O by feld@bikeshed.party
       2023-01-25T16:20:31.718341Z
       
       0 likes, 0 repeats
       
       yeah it&#39;s basically this ugly hack applied in a lot of placesbut the reverse needs to be implemented so requests for things that are integers are converted back into flakesthough it would be nice if they just worked with strings
       
 (DIR) Post #AS0UZKtLVOfX8emUFc by lain@lain.com
       2023-01-25T16:23:23.217064Z
       
       0 likes, 0 repeats
       
       @feld @paul official mastodon docs also say that these fields are a string and not an integer, check out https://docs.joinmastodon.org/entities/Status/#id
       
 (DIR) Post #AS0VZGiT85d48vE1QG by feld@bikeshed.party
       2023-01-25T16:34:53.556782Z
       
       1 likes, 0 repeats
       
       apparently Mastodon&#39;s also using the Twitter style Snowflake and this escaped my memory. But it&#39;s represented only by integers.https://github.com/mastodon/mastodon/pull/4801