Gn #nostr.

Still troubleshooting nostr.Kiwi PWA.

Another test reply from nostr.kiwi pwa 🎉

This time with NIP-46, just using npub

nostr:npub1alpha9l6f7kk08jxfdaxrpqqnd7vwcz6e6cvtattgexjhxr2vrcqk86dsn Maybe spoke too soon? I tried to like a post, and I got an error, "Error reacting to note" - so maybe not all the way auth'd? Yes, verified on another note on the main feed (the first was a note on of my lists, which isn't showing the hidden members of the list, btw.) Failed to post a reply note, failed to post a new note.

So acting like auth through the nip-46 link, using just my regular npub, gives me view access (similar to just using my npub in any normal client, instead of an nsec.

Posting a token did work though.

Cookies in brave was the problem with logging in to nsecbunker. might be nice to have a logout link or clear link of some kind.

Logged out of PWA. This doesn't seem to actually log me out. If I continue in the PWA, it appears I have logged out. If I close and reopen it, my lists and profile is still loaded.

Removed PWA (I think this is as uninstalled as I can go?) Back into brave on my phone, reinstalled PWA.

Fuck. It still knows who I am. Removed PWA, back into Brave browser. deleted cookie. closed tab with nostr.kiwi. Closed Brave.

OK, did that like twice more, the last time because I realized I removed Kiwi PWA from the home screen, but still had it running while I was fucking around with Brave.

Anyway, got Kiwi PWA installed, and it has now apparently forgotten me!

Now nsecbunker on my PC is timed out apparently, back to where it won't show me keys, but won't show me a logon screen either. Going to /login and pasting my bunker string won't do anything.

resetting cookies on that too...

OK, login successful with just npub. I still have the token out there, but it's good for 1075 hours (this is me being a bit silly, but not wanting to have to reset it for a long time.)

So yes, don't have to fuck with tokens, as long as you don't mind your auth being identified as Snort, and are quick to approve on a PC while logging in on your phone. Pretty sure I couldn't flip back and forth between PWA and Brave fast enough to do it all on mobile, but maybe. I'm kinda slow.

I'd call this a successful test.

Someone rings your doorbell and then kicks you square in the bollocks.

Don't. Just block/ignore and move on with your life.

Judging by #zapathon, 5p EDT (US Eastern Time, currently in Daylight Savings)

Dumb question, but how do PWAs update? I assume automagically. I have the PWA link on my home screen, will be in there testing shortly. I'd love to get zaps working!

And now nsecbunker won't let me log in to look at the admin stuff (was going to make sure I remembered the tokens setup correctly).

I'm sure it will be fixed my morning! Cheers!

New note, mostly for nostr:npub1l2vyh47mk2p0qlsku7hg0vn29faehy9hy34ygaclpn66ukqp3afqutajft. Maybe a little bit for nostr:npub1alpha9l6f7kk08jxfdaxrpqqnd7vwcz6e6cvtattgexjhxr2vrcqk86dsn. This is my ux with nsecbunker, getting it to work on nostr.kiwi.

First, tried just opening nostr.kiwi. I had previously put my npub in, and it did remember my profile, but I couldn't interact with any notes. It wouldn't even pretend to try and do something when I tapped on the like button.

I figured that my npub was needing something in nsecbunker. There were some notes going around about getting DMs now if it needed to be reset or something, and I hadn't gotten any DMs - but fair to say, devs had been devving, so went to go check.

Well, nsecbunker admin is still not really operational from my phone (Brave browser, GrapheneOS on Pixel 6. Also tried with Vanadium. Tried turning off the Brave blockers as well.) I can log in, it shows the button for my keys, but pressing it doesn't do anything. I think even logging in required me to enter my full bunker string, then I had a go back and forward or refresh to actually get shown the Keys button.

This sucks, because my whole use case for nsecbunker is to access nostr apps from my phone, where browser extensions don't work. I already have nos2x and alby for my desktop browser.

Anyway, off to my desktop. Thought I was done working for the evening ;)

Fired up nsecbunker admin, sure enough, I could see the key was locked. Had some drama trying to get it unlocked, because my caps lock button was on, screwing up my attempts at my passphrase. Anyway, got it unlocked.

Back to my phone. logged out of kiwi. Tried to log back in. Wasn't seeming to work, just using my npub. FInally I noticed that down at the bottom of the screen on my desktop, nsecbunker was reporting that someone was trying to access. It said it was Snort. I wasn't running snort, so I cleared out a few attempts, and tried on kiwi again. This immediately showed up as an attempt from Snort. Ok, well I tried to change the name to Kiwi, and allow it. I couldn't do that before the attempt seemed to time out - was roughly 5 seconds I think, maybe a few more, but I'm slow.

That wasn't working. So I remember seeing something about Tokens. I went back in nsecbunker, found that I could add a Token now. So I did that, feeling my way through. Called it Kiwi. It produced something that looked like my npub with some other characters after it. I assumed this whole thing was the token.

Kiwi's entry box for nsecbunker auth mentioned token, so I copied that whole string over to Facebook Messenger on the desktop (hate on me, but this is your security model being broken by convenience) in a message to self, opened Facebook Messenger on my phone, copied my token, put it in kiwi.

It worked. Fucking hellyeah! Guys, you are fucking awesome. I tested a like. it lit up, stayed lit up. I assume it worked. I haven't gone back to check, but I can. I tried to zap something. That didn't work. nothing happened when I clicked on the button. I tried a reply post (which previously didn't work - and Jingles said he was working on it) - and it was a little weird, because the reply button didn't even show up in the main feed. Once I clicked on a post, it did show up. I replied to one of the posts about the earlier design sessions, and sure enough - it worked!!!

So - Still no zaps working. My follows list seems to either be old, or it isn't removing the people I followed and then later stopped following. I didn't get as far as checking on relay lists. I can see the lists I created in Highlighter, and browse the results. Lots of good. Performance doesn't seem to be as smooth at loading in posts or interacting as it is in Onyx, but it's usable. So right now, nostr.kiwi PWA is at least a mostly working fallback if Onyx takes a shit.

The worst I think is having to go back to my desktop to figure out nsecbunker. And that token stuff was not very intuitive at all. To be fair, I haven't watched anything from today's design sessions, or Jingles' howto.

Guys, thank you!!! I'm glad I can contribute an honest walkthrough, maybe it will help others like nostr:npub1dvl2gwcahzvhc6rmx4xp8hvrd5833jzaspz8e5xdts6vpfw3t5pshkhhya that are trying to adopt nsecbunker. I'd like to see it in habla.news, flycat.club, #Onyx, #Amethyst. Maybe #Yakihonne. #primal for sure, especially if they PWA or become useful on mobile, which is probably right around the corner. Really any new or existing and under development Nostr client should be implementing something that would allow both nos2x-style (I think Alby works the same) and nsecbunker-style authentication. I don't want to give my nsec to any more sites, ever.

That's enough - over and out!

Replying from kiwi, logged in with an nsecbunker token!

Rhymes with omelette? ohhhmmmmlet? I approve.

Well, looks like I missed #zapathon but I did publish my long-form #bitcoin origin story on #Yakihonne. 2600 words I don't plan on taking back!

Why Yakihonne? They asked. I obliged. Experience was fine, but I didn't see a way to easily save drafts, and their formatting options seemed a bit thin - but overall, it worked. At least I think it worked. The publish page hasn't given me a success yet, although I can see my story on several other long-form nostr clients, and on Yakihonne itself. Feel free to look me up on Habla.news or Flycat.club if you already use these clients.

I'm not sure yet how best to link to long-form posts using normal notes (type 1). Here's a link.

https://yakihonne.com/article/naddr1qq25kamtxacx7629xe25uu6j8pry74rsv3n9zq3q2mx9etcam5cjrpv3p6duqucmff23jeznksll5523fhp6hl6m8mqsxpqqqp65wtk4pjp

Thanks for your response. I have read it fully, and you bring up plenty of good points.

I certainly don't hold up the American experiment as an example of how things should work. I do find it interesting that your best example is Scandinavian countries - I've thought that way at times myself, but not so much anymore.

I think my best example of how things should work are various North American native communities, in Alaska and northern Canada, especially those that are largely insulated from their governments by geography.

But that is me. I think that overall, government funded social services will always fail those they purport to serve, in the end. True community efforts will have much better success. This includes public education and health care.

I don't fall into the trap of assuming racial characteristics when it comes to any socioeconomic strata. Not sure if you picked that up from something I said, but if so, I didn't intend it.

I think the talent thing is interesting. Really, I don't look much at talent. I don't necessarily care if little Timmy is a cello maestro - because having talent doesn't necessarily mean finding success. I believe success (especially personal success) comes from work - which you could take to mean actually applying those talents.

And here is where I believe that regardless of the opportunities and access, those that work, apply themselves, teach themselves, promote themselves, and deliver something back to society - those people will always succeed. They will overcome the obstacles, find opportunities and maximize them, make their own luck. That ambition is the "talent" that matters, and it can't be suppressed easily.

What does try to suppress that ambition? Governments. Religions. Communities. Parents. Peers. Anyone that would rather see others follow and serve. Most don't even realize they are doing it. I'm sure I've done it.

Encouraging ambition, rewarding work - those are the things that will move us forward as a species.

I have more coming on this topic. Again, thanks for your detailed response.

Today's plan - work on writing my bitcoin origin story on a long-form post nostr client TBD.

While bringing up ~240 servers running a legacy (not cloud-based, good old JBOSS and Oracle) enterprise software platform for a large Australian retailer.

Using custom code I wrote for them in Powershell some years ago.

comments on zap.stream

- would be nice to be able to resize the video to the browser tab size; it seems minimum size is almost full screen, pushing stuff below off the screen - like the viewers count, tags, etc. Tried the PIP option, which could work for some things, but still...

- can't figure out how to send a custom amount in zaps. I see people doing it, so it must be possible. But I would have sent zaps to several streams I crashed so far, if only I didn't have to zap them 100 or 1000 or more.

- volume is a little unpredictable. I've had to put it down to 50% to match normal volumes on my system in some places, and crank it (and my system volume) up a lot on others. I assume this is the stream generator's issue, not zap.stream.

yes

GM #nostr

not used to waking up social. rarely would check feeds before noon. brave new world, I guess. another example of how zaps are changing behaviour.

Fuck that. What fun is being uncensorable if you can act the cunt once in a while?

Gn boho 🌙

Gn #nostr.

The answer is work. Always has been.