weird icon indicating copy to clipboard operation
weird copied to clipboard

Published 20 hours ago verified publisher icon commune-os

ATProto integration

Open erlend-sh opened this issue 11 months ago • 1 comments

  • Import (archive) #205
  • Login: #206
  • Alias: #249
  • Domains: https://github.com/muni-town/weird/issues/275#issuecomment-2558204600
  • Client: myb https://github.com/zeucapua/myb/issues/32
  • key rotation / recovery key
  • PDS interop
  • bespoke PDS on top of Leaf? (late 2025 at best)

Account and Identity

Our answer to the call is that Weird can handle this well:

Account Backups: services and tools to help backup account data and identity control. This could be things like cronjobs which do daily repo CAR file and "blob" backups to an S3-compatible bucket, or Shamir secret sharing between friends to recover PLC rotation keys. Monitoring and alerting for unexpected account changes.

PLC Rotation Key Management: most users in the network today do not have complete control over their network identity, because they have not registered a locally-controlled rotation key. Getting everyday users in control of their identities will take work, but the first steps are to increase accessibility of this to developers, technical users, and high-profile / high-value accounts. This could include command line tools, integrations in password managers and "wallets", support or plugins for hardware enclaves, as well as tutorials and guides to security best practices.

Account Data Exports: the current repo export format is CAR files. These are complete, app-neutral, can be used for account migration, and have a well documented format. They can be processed with tools like 'goat', but are not particularly accessible for many users. More accessible tools to convert and explore CAR exports would be helpful: indexing into sqlite, converting to spreadsheets (CSV) or JSON, displaying and browsing bsky posts, etc.

Privacy

If folks want to implement less-visible content in atproto projects today, we recommend doing what we did for the temporary Bluesky Chat DMs system: implement a [de-]centralized server and talk to it over Lexicon APIs using service proxying (aka, service authentication). In the future, when private data is ready to use, it should be possible to have users migrate their content over.

Weird/Leaf can supplement ATproto with several privacy facilities, largely thanks to Willow and Meadowcap.

erlend-sh avatar Dec 21 '24 16:12 erlend-sh