Stefan

Hm, I think I got a bit confused here. It works when I add the snippet directly in the category subtree: ```org * org-mode ** Some snippet with properties \**...

(I am not the maintainer) > If I define a webhooks_secret, I should be able to open the POST at the target URL only if I authenticate with my webhooks_secret....

Thanks for the reply! You are right, I don't have MFA enabled at the moment. I'll try your suggestion!

Is this what [Section 7.5 of the ARF](https://eu-digital-identity-wallet.github.io/eudi-doc-architecture-and-reference-framework/1.3.0/arf/#75-relying-party-authentication) is talking about? E.g., the Relying Party Instance certificate discussed in [Section 7.5.8.2](https://eu-digital-identity-wallet.github.io/eudi-doc-architecture-and-reference-framework/1.3.0/arf/#7582-relying-party-instance-certificate-format). I agree that the justification for the legitimate purpose...

I have two more nitpicking thoughts on this: - is displaying the registration (RP certificate) to the user enough, or does this end up in the same issues we had...

afaik the sites are parsed on the tvshowsapp.com server. here are the urls: https://github.com/victorpimentel/tvshowsapp.com/blob/master/feeds/config/app_constants.yml

Interesting. How are apps like Signal doing this? They also have a working donation system in their gplay version.

related: do you think it makes sense to also scale the preview?

for me this works (Ubuntu, X.org, i3wm, PDF-Over 4.4.5)