this post was submitted on 08 Jul 2023
115 points (98.3% liked)

Asklemmy

43989 readers
1328 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy πŸ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_[email protected]~

founded 5 years ago
MODERATORS
 

Would something single sign on (SSO) even be possible? I think the convenience of having a single account for the family of federated platforms would be wildly convenient.

Of course folks could continue to have individual accounts on each platform if they wanted.

I also understand that it would create a very tempting target for hackers and it would need to use MFA (multi factor authentication).

Just a thought and I would like to see you all have to say.

Asking after having this discussion.

top 34 comments
sorted by: hot top controversial new old
[–] [email protected] 26 points 1 year ago* (last edited 1 year ago) (5 children)

Not sure if this would help or not but what I want is to own my user, so I can bring it anywhere and not worry if an instance goes down since I own the user. Similar to email with your own domain, the provider I use for email could go down but I have control to the domain/email so I can switch to something else, but keep my user.

[–] [email protected] 8 points 1 year ago (1 children)

This would be great. I don't want to make multiple accounts if I want to leave an instance. It should be as simple as switching in a menu.

[–] [email protected] 3 points 1 year ago (1 children)

I had a drunk conversation about this very thing last weekend with my brother. We thought about doing it as a crypto coin or NFT or some block chain thing. We got about as far as you expect 2 drunk people talking about something that they have a passing familiarity with but little actual technical knowledge of.

Someone much smarter than me might figure it out one day.

[–] [email protected] 1 points 1 year ago

Yeah I'm not going to pretend like I know the technology but I hope it's possible.

[–] [email protected] 4 points 1 year ago

With mastodon, you can switch your user between instances and bring your followers and stuff with you. I guess the only problem would be is if the server you are leaving suddenly went offline, but I’m on a pretty decent server so I’m not too worried about it.

I don’t think this is in Lemmy, but I imagine it will be at some point.

[–] [email protected] 3 points 1 year ago

This could be something that could be incorporated into the development of this process. I would love that too.

If I suddenly didn't like the way an instance is doing their administration I could move easily.

[–] [email protected] 1 points 1 year ago

Yes, this would be nice. You can use .well-known redirects so that when someone searches your owned name they get redirected to a Fediverse account of your choosing. And you can update those redirects if you change accounts. But that's not quite the same.

[–] [email protected] 25 points 1 year ago

Decentralized identity is a field of active research. It’s tough, but very interesting. I’m particularly a fan of what nostr is doing, where accounts are completely separate from relays, and can post anywhere.

[–] [email protected] 14 points 1 year ago

It's a thought but I don't think the lack of SSO is preventing broader adoption. I think that the word is just not completely out yet and many of the fediverse platforms are still young yet. I do see organic growth happening though.

[–] [email protected] 11 points 1 year ago (2 children)

Honestly I think one of the bigger hurdles is the confusion about where to sign up. You have to choose an instance, preferably one that is "compatible" with you. But it hardly matters to the user because it's all federated anyway. Just give me a server that will stay up.

[–] [email protected] 7 points 1 year ago (1 children)

But it hardly matters to the user because it’s all federated anyway

Unless you unknowingly joined a community that was defederated by everyone else.

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago) (1 children)

Yeah, I had joined Beehaw shortly before they defederated. I knew this happened, but I thought "meh, it'll be alright". I tried to make the best of it... but at the end of two weeks I was asking myself "Is this all there is to the fediverse? It's pretty disappointing".

So before I gave up on Lemmy and the fediverse, I looked for a new Lemmy server that wasn't defederating nor defederated from the fediverse. Eventually, I settled on Lemm.ee and I see know just how much of the fediverse was being filtered out for me.

disclaimer: I don't fault Beehaw for their decision to defederate. It is their choice to make, and I greatly admire and respect their transparency in the matter. However, for myself, I don't need, want or appreciate these extra guard rails "to keep me safe". I'm an adult and are willing to act and be treated like one.

[–] [email protected] 2 points 1 year ago (2 children)

You've raised another important thing I've never thought of: How do we even know how connected an instance is to other instances aside from hearing from other users. I didn't even know Beehaw was defederated until you mentioned it.

[–] [email protected] 2 points 1 year ago (1 children)

Defederated from what though? I still see plenty of other community’s posts.

[–] [email protected] 2 points 1 year ago

It's not just two, it's two "big" ones and a bunch of eg. neo-Nazi ones, Lemmygrad, spammers and so on. I vaguely remember there being some sort of blocklist that a lot of the instances use, but don't quote me on that.

Lemmy's vanilla UI has the list of connected and blocked instances under /instances, so eg. https://beehaw.org/instances

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

Beehaw is only defederated from two instances iirc, so most of us are still able to see and interact with them.

[–] [email protected] 3 points 1 year ago

This is why a single sign on that gives you access to ALL THE THINGS and would simply adoption.

[–] [email protected] 10 points 1 year ago

Looks like this may already be starting https://lemmy.fmhy.ml/post/686097

[–] [email protected] 10 points 1 year ago (1 children)

Doesn't SSO undo the decentralised nature of the Fediverse? What would it even add? You can already access a lot of different ActivityPub platforms from one (e.g. Lemmy can access kbin, Mastodon can access both) and that will only increase as development on these platforms increases.

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago) (2 children)

Not really. The content of what is in the fediverse is still distributed and not owned or living in a single instance.

It would add the ability to simply your username/instance/password administration.

It would also allow an account to have an ability to create a community because if I find someone on Lemmy that has similar interests as I do it's likely I would enjoy their content on other platforms.

Right now people have to post all of their social media in their profile and then I have to go log into those platforms and go find them to follow them.

If I found someone that I want to connect with on multiple platforms it be would be great if I could choose them through a "Follow Me Across The Fediverse" option where I could pick what platforms I follow them on.

I think it could add a lot to the sense of community.

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago) (1 children)

An Sso account would mean one identity across all instances, which can be tracked and monitored.

Users using different account on different instances with different passwords are a lot more difficult to track.

Googles entire operation is about connecting users across different websites using identifiers and so on, because that's where the value is. All that data under one profile is highly valuable to them.

It's always like this by the way - users give up privacy for convenience or "safety".

Later, you add ads when it's too convenient to move away from the service.

[–] [email protected] 3 points 1 year ago

You could still make separate identities if you choose. At present you're still using a single one to interact across the fediverse (unless, of course, you make another one in the same way), so no additional loss of privacy

[–] [email protected] 2 points 1 year ago (1 children)

But it would still require there to be some centralised account provider though, right?

I think that optimistically as the Fediverse is developed you won't need to have different accounts (unless you want to) as an account on one platform will be able to interact with another platform in exactly the same way as one created on that platform would.

[–] [email protected] 3 points 1 year ago

No, any server instance could support sso as long as they agree on the protocol. If the one you're using now turned it on tomorrow you'd be able to use it elsewhere.

[–] kromem 5 points 1 year ago (1 children)

Yes, particularly if SSO compatible with other social media platforms.

Ideally, you could even upload GDPR data requests from servers and build up some of your post history in some way.

I think a lot of people would switch to something like Mastodon if transferring service with one service provider to another for hosting their content and connecting them to their old network was made much easier.

That's almost the kind of thing the new FTC chair (who has publicly stated an agenda to reevaluate tech company anticompetitive behaviors) might want to end up looking into.

Fixing social media - and with it quite a lot else - may end up being as simple as classifying social media companies as common carriers of personal media content and connection data, who had to play nice with others.

If they needed to bring down their walled gardens and play fair in allowing users to take business and content elsewhere, the one thing capitalism is actually good at would so quickly change them all into platforms competing against each other for your business and data rather than only succeeding by effectively holding you hostage to their data retention.

More than any single federated platform, the idea of standardization of social media data - and its adoption even by Meta of everyone out there - may be setting up some very promising future developments.

Reddit threw oil on this fire at quite the worst timing for their long-term longevity.

[–] [email protected] 2 points 1 year ago

This guy Federates

[–] [email protected] 4 points 1 year ago

Yes I think SSO would be a benefit.

People are generally used to doing one of these:

  1. "Go to this website and register an account." This is e.g Reddit.
  2. "Go to this website, register an account and you can access all these other services too". This is stuff that Meta, Google etc offer via SSO. SSO is largely invisibile to the end user.

Fediverse at the moment has a lot of "huh, why do different instances have different stuff and why can't I just access all of that? Oh, I can? But why is it so complicated? Why can't I just use it from one place?" that is definitely a hindrance to adoption until enough people are there to tell "do it like this" or the system becomes more user friendly and abstracts some of the inconveniences.

As it is, e.g Lemmy can't even do pagination right, so there's still a lot of work to be done before it's a polished experience.

[–] knowledgephoenix 3 points 1 year ago

I think most people don’t know what SSO is, so it wouldn’t help them adopt this other technology they also know nothing about. I’d love it though!

[–] [email protected] 3 points 1 year ago

I do think so and I know you can use ldap and ohers for PeerTube but I haven't seen it for lemmy or Mastodon yet.

[–] mr_m00 3 points 1 year ago

I'm thinking something like ORCID (used in research and the academe) can be implemented.

[–] [email protected] 2 points 1 year ago

Nope, people always ask for it but I don't believe they would use it a lot.

[–] [email protected] 2 points 1 year ago

I’m happy to have separate logins. Even if I could have 1 login, I’d still keep them isolated.

load more comments
view more: next β€Ί