On Tue, Jun 11, 2013 at 9:38 PM, Joseph Gentle <jose...@gmail.com> wrote:
> On Tue, Jun 11, 2013 at 11:08 AM, Bruno Gonzalez (aka stenyak) > <sten...@gmail.com> wrote: > > Additionally, I'm guessing that domains wouldn't be required, but > instead a > > simple ip+port pair could be used somehow (stenyak@192.168.0.15:5671 or > > something?) > > First, we don't need peers to be globally addressable. They can just > connect to servers or other peers on local network (or whatever). > > Secondly, we won't tie your identity to the IP of the computer you're > on - your identity doesn't change when you move between devices or > when your computer's IP changes. We probably want some method of > signing / encryption where your local node stores your private key so > other peers can verify the authenticity of your operations. > This would be equivalent to commit signing in git, where you simply carry your private key, and sign whatever comes out of your computer, right? So in order to add a user to a wave, you would add his public key instead of an email-like address, and then only owners of the private key (namely, the user himself) can send wave operations. > > > Is it possible to use this "something else" (both the certificate > > alternative, and the domain alternative) for federation in current WiaB, > > and if so, is there any reason (other than lack of resources) for not > > having it in WiaB already? > > Personally, I'm a big fan of mozilla persona for WIAB. That would > remove heaps of the sign in flow and remove the need to store user > accounts. > http://www.mozilla.org/en-US/persona/ > > I usually use OpenID (with my own openid server), but of course this requires a server to begin with. I understand Persona removes that need, which is why it would be preferable? I'm not sure if this is on a separate plane to the keypair stuff (they solve unrelated things, both of which would be necessary), or if it's an alternative/replacement method, or if persona can somehow use a key pair under the hood. -- Saludos, Bruno González _______________________________________________ Jabber: stenyak AT gmail.com http://www.stenyak.com
