Announcing my latest open source project, in collaboration with @carl

🌵 Cactus Comments - Federated web comments, based on the Matrix protocol.



@asbjorn @carl This is really cool, but having to ask for the user's matrix username/pw on my blog is... 😬

I know matrix doesn't really have better options right now, but still, that feels super unsafe. Matrix desperately needs an oauth flow or something

@jfred Well, the client does include a link labeled "Use a Matrix client"

That'll let your users open the room via a pre-authenticated client of their choice.

@asbjorn Oh, good point! I think I missed that because the styling doesn't make it super obvious that it's a link, and I'm on a mobile browser where I can't just hover over it.

Is there a way to disable username/password auth entirely and rely solely on the user's client for submission? I'd rather not even ask for their creds.

(My current blog isn't a static site, so I don't currently have a use case for this, but I might in the future!)

@jfred Hahah, web styling isn't my strong side 😅 Thanks for the fedback!

There isn't a config option to disable the authentication bits per se, but you could always hide the elements you don't want by editing the CSS file.

@asbjorn No problem! :)

Good luck with the project, it looks really cool!

Sign in to participate in the conversation
Mastodon @ SDF

"I appreciate SDF but it's a general-purpose server and the name doesn't make it obvious that it's about art." - Eugen Rochko