Post · bonfire.cafe

In this Codeberg issue @thisismissem wonders..

> "Has anyone done an assessment of the authentication mechanisms and standards used by each of these [C2S] implementations?

https://codeberg.org/fediverse/delightful-fediverse-experience/issues/130#issuecomment-7554760

I will bring this to a #SocialHub topic later this week, if I don't forget (otherwise remind me :)

#SX #ActivityPub #C2S #fediverse

Codeberg.org

Which ActivityPub applications support Client-to-Server (C2S)?

In preparation of updating and reorganising of this list I would like to collect current FOSS projects that offer an implementation of ActivityPub C2S. In this [current fedi discussion](https://ausglam.space/@hugh/1144176911799110820) a bunch of projects were already named: - [ActivityPods](http...

Hazelnoot

@hazelnoot@enby.life replied · 3 weeks ago

@smallcircles@social.coop @thisismissem@hachyderm.io huh, I didn't realize there were actual C2S implementations out there. That... might be bad, since Misskey (and especially Sharkey) tend to enforce things by signing key domain instead of actor URI. A naive C2S implementation (like a transparent inbox/outbox with no validation) might allow one user to impersonate another from the same instance

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0-rc.3.21 no JS en

Automatic federation enabled