Feed digilinux.ru [copy] http://digilinux.ru/feed/ has loading error: cURL error 22: The requested URL returned error: 403 Forbidden
Feed freepost [copy] https://freepo.st/rss/new has loading error: cURL error 6: Could not resolve host: freepo.st
Feeling like Don Quixote
For some years now, I have been feeling like Don Quixote fighting against windmills. This is a multidimensional feeling that has its roots in both personal and professional circumstances. With regards to personal issues, I won't go into details as I want to keep this blog free from politics, society, and economics. With regards to professional circumstances, something that bugs me a lot is that I seem to engage in fighting wars that can't be won. Free software lost a lot of wars, most notably though in the mobile sector. As I have complained more than once before, over the...
Introducing the BARE message encoding
I like stateless tokens. We started with stateful tokens: where a generated string acts as a unique identifier for a resource, and the resource itself is looked up separately. For example, your sr.ht OAuth token is a stateful token: we just generate a random number and hand it to you, something like “a97c4aeeec705f81539aa”. To find the information associated with this token, we query the database — our local state — to find it.
Click here to skip the context and read the actual announcement ->But, increasingly, we’ve been using stateless tokens, which are a bloody good idea. The idea is that, instead of using random...
Status update, June 2020
Like last month, I am writing to you from the past, preparing this status update a day earlier than usual. This time it’s because I expect to be busy with planned sr.ht maintenance tomorrow, so I’m getting the status updates written ahead of time.
aerc has seen lots of patches merged recently thanks to the hard work of co-maintainer Reto Brunner and the many contributors who sent patches, ranging from a scrollable folder list to improvements and bugfixes for PGP support. We wrapped all of this up in the aerc 0.4.0 release in late May. Thanks to Reto and all of the other contributors for their hard work...
Can we talk about client-side certificates?
I’m working on improving the means by which API users authenticate with the SourceHut API. Today, I was reading RFC 6749 (OAuth2) for this purpose, and it got me thinking about the original OAuth spec. I recalled vaguely that it had the API clients actually sign every request, and… yep, indeed it does. This also got me thinking: what else signs requests? TLS!
OAuth is very complicated. The RFC is 76 pages long, the separate bearer token RFC (6750) is another 18, and no one has ever read either of them. Add JSON Web Tokens (RFC 7519, 30 pages), too. The process is complicated and everyone implements it...
Add a "contrib" directory to your projects
There’s a common pattern among free- and open-source software projects to include a “contrib” directory at the top of their source code tree. I’ve seen this in many projects for many years, but I’ve seen it discussed only rarely — so here we are!
The contrib directory is used as an unorganized (or, at best, lightly organized) bin of various useful things contributed by the community around the software, but which is not necessarily a good candidate for being a proper part of the software. Things in contrib should not be wired into your build system, shouldn’t be part of your automated testing, shouldn’t be included in your documentation,...
Реанимация консоли OUYA
В 2015 году стартап OUYA перешел к компании Razer. Пользователям было предложено перейти на новую консоль Forge TV от Razer. Но владельцы OUYA все еще могли пользоваться купленной консолью и приобретенными играми …пока не наступил 2019 год. В 2019 году …
The post Реанимация консоли OUYA appeared first on Ugolnik's blog.