“Improved identity management across the Fediverse
* Easy-to-use single-sign-on across servers. Use case: I use several apps for different content types (like micro blog and video). Bonus: they all post from the same identifier
* Easy-to-use persona management. Use case: I have a personal and a work account, bonus if they can be on the same server Identifiers not tied to the domain name system”
@ajsadauskas I have a strong feeling that the more convenient “Easy to use single sign on across servers” will be, the less secure it will also be. #SingleSignOn is #SinglePointOfFailure.
I vote for security over convenience.
@Hovedorganet@ajsadauskas They’re not necessarily opposed. The trick is always to find the right balance of both. There is no such thing as perfectly secure so it becomes a matter of how much risk is reasonable to make a product usable. Right now the Fediverse suffers a major flaw, even with something as simple as following people on other instances.
Interesting to see the section on suggestions for more universal user accounts.
@maegul @lemmyreader
I definitely agree with this suggestion:
“Improved identity management across the Fediverse
* Easy-to-use single-sign-on across servers. Use case: I use several apps for different content types (like micro blog and video). Bonus: they all post from the same identifier
* Easy-to-use persona management. Use case: I have a personal and a work account, bonus if they can be on the same server Identifiers not tied to the domain name system”
https://reb00ted.org/tech/20230425-w3c-activitypub-wishlist/
I currently have a Mastodon, Pixelfed, Lemy, and PeerTube account. A single ID across all of them would be amazing.
Not just that, but it would really help accelerate the uptake of other Fediverse services if users could simply login with their Mastodon account.
Pixelfed is a better UX for photos, so why not let Mastodon users use it for that?
#Fediverse #Mastodon #Pixelfed #ActivityPub
@ajsadauskas I have a strong feeling that the more convenient “Easy to use single sign on across servers” will be, the less secure it will also be.
#SingleSignOn is #SinglePointOfFailure.
I vote for security over convenience.
@Hovedorganet @ajsadauskas They’re not necessarily opposed. The trick is always to find the right balance of both. There is no such thing as perfectly secure so it becomes a matter of how much risk is reasonable to make a product usable. Right now the Fediverse suffers a major flaw, even with something as simple as following people on other instances.