I’m new to fediverse. For a long time I assumed it would be possible to have a single identity separate from the ActivityPub instance I’m using and tried to figure out what am I missing. Recently, I figured out that it was not the case. People generally have multiple accounts for interacting with different aspects of fediverse. It still bothers me a bit. So I did a search and found this note from 2018 that summarizes my thoughts very well.
I’m wondering if there are others thinking about this, or having multiple accounts has been accepted as the “correct” way of interacting with fediverse?
I think separating identity from the instances would really be a step forward, but as I said, I’m new to this and maybe there are things I don’t understand?
I think being able to migrate your identity from one instance to another is a core requirement to fulfilling the promises of federation. The idea is to be able to freely leave a bad instance, but all you can do now is completely start over on a new instance, losing all your posts and followers. That’s way worse, and not how it should be imo. No big instance has gone rogue yet afaik, but as soon as one does this will be a major issue!
To really accomplish that we would have to create a mechanism for a user to own their own identity, e.g. in form of some sort of secret key file. This would introduce a huge number of usability issues though! Handling key files is really hard, so that’s probably not an option in the near future.
What we definitely should add is some sort of instance single-sign-on, so you can log into another instance by having your original instance authorize the login attempt. This should then allow the new instance to use your original account (for subs and posts), and also migrate that account to the new instance (update handle on all your posts, migrate your followers, …). This would be a bit worse than owning your identity, because your original instance could just refuse to authorize any SSO attempts, but it would still be a big improvement imo.
Maybe we can also just combine the two, so instance SSO and being able to download an identity key as backup.
Idk how I feel about easily migrating accounts from one instance to another or even having my password pass between instances on activypub. If it’s easy to migrate an account then it would be possible for an admin of a rogue instance or even just a rogue admin of a perfectly fine instance to take your account. One thing I learned since joining is these accounts are kind of disposable. Personally I only have 2 on 2 different instances one of which is lemmy.world which is/has grown a whole bunch in the last few weeks. Personally idk how that kind of growth is sustainable on this kind of platform and I’m not shocked they are running into issues. When an instance explodes the way lemmy.world has they need to make an extreme investment into the server side of the instance to keep things running smoothly and that doesn’t stay cheap or easy for very long.
This is the case right now. Admins of your instance have full control over your account. They can remove it or lock you out at any point if they want to.
Remove yes but not transition it to a new instance. But this is one of the reasons I’m using a temp email and unique username and password for each account that isn’t tied anywhere else. More things are easy to gather together knowledge wise compared to say reddit.
I don’t see how this is worse than completely removing or taking over your account.
I guess its really not in the big scheme. Idk just makes me nervous counting on so many people to store and manage my password in a smart way but I don’t know a lot about Lemmy or activitypub so maybe that’s all handles outside of instance admin control.
Remember that this is how every service you sign up for works. What’s special about Fediverse services is that they synchronize posts between the instances, other than that they work like any other website or app.
Yeah that’s true. Just feels different when it’s a company and not potentially some random person in their basement.
That’s why picking the right instances is important, to make sure it’s not some random person in their basement. Read the about pages of the instances, see what they publish about their operations. The people behind the .world instances regularly blog about what they are doing, spending and earning for example. Some are even run by non-profits. I personally feel much better with those kinds of people running a service I rely on, instead of a company that talks to me only through their marketing department and first and foremost wants to maximize profits.
But that’s also exactly my point. You should be able to transfer your account to another instance, so you’re not stuck if the one you picked turns out to be bad or has to be shut down.
@shrugal
In Hubzilla / (streams), that existing functionality is called “remote login” (or technically “OpenWebAuth = OWA”) - and it’s the prerequisite to share access-controlled local content with connections - Unfortunately, this work only with Hubzilla/(streams) identities, because AP does not support this…
It would be a blast if this mechanism could be transferred to the AP world (after all, it’s freely available open source…) and let us share the local content functions with our AP connections…