Mario Vavti on Nostr: @silverpill in regard to authentication: isn't it sufficient to trust the sender at ...
@silverpill in regard to authentication: isn't it sufficient to trust the sender at last? In this case the context owner?
Let's assume this situation: an actor is remotely authenticated at a server via OpenWebAuth and comments on a post there. No proof can be added and the object is not yet available at the actors origin server. In this case the message will be rejected allthough its authenticity is verified.
Published at
2024-11-24 08:30:07Event JSON
{
"id": "9bc0c873e3824fb924ca0b11e853c11d82c52a8730da1560ed843a38ddec269e",
"pubkey": "b5da3f367d71230519a76219f6eae1a2307186bff12be52b65cc0d0c0b2252a3",
"created_at": 1732437007,
"kind": 1,
"tags": [
[
"p",
"6a5f35dc281276c30c527e1240ef6bad3ef27bcf92b4fef017dc7f5a5c31e5ec",
"wss://relay.mostr.pub"
],
[
"p",
"57c9c09e424cfd3fd16cfd3ae9da0a469b19bb5055c507248500e951c0ee9112",
"wss://relay.mostr.pub"
],
[
"e",
"08f1267ceeec457fd6dd290bc929291ef03080882780db50750968ea2c5d0b61",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://hub.somaton.com/item/deca629e-0da8-4457-b155-b15982097722",
"activitypub"
]
],
"content": "@silverpill in regard to authentication: isn't it sufficient to trust the sender at last? In this case the context owner?\n\nLet's assume this situation: an actor is remotely authenticated at a server via OpenWebAuth and comments on a post there. No proof can be added and the object is not yet available at the actors origin server. In this case the message will be rejected allthough its authenticity is verified.",
"sig": "cc20a59916d165a8b1e7ac887b64eaa72d736d81b54d8299fe5318715fdcee8463a1a92363c764cbc81d94df5f0e5a4ced9c736e6aacfb993a0baca2a80d35ee"
}
