Tootfinder

Opt-in global Mastodon full text search. Join the index!

@aral@mastodon.ar.al
2026-01-02 20:05:31

Just added a “Sign in with Mastodon” example to Kitten’s¹ examples:
codeberg.org/kitten/app/src/br
If I have time at some point, I might make it into a tutorial.
Enjoy!
:kitten:💕

Browser at dev.ar.al, showing Sign in with Mastodon page: Your mastodon instance (e.g., mastodon.social) Text input field: mastodon.ar.al Button: Sign-in
Screenshot of the second step: authorisation required page on mastodon.ar.al/oauth/authorize/?client_id=… Authorization required Kitten sign-in with Mastodon example would like permission to access your account. Only approve this request if you recognize and trust this source. Review permissions Accounts: Read-only access Authorize button Deny button
The final step: Back at dev.ar.al, showing my Mastodon profile info (unseen, off screen: a Sign out button): Balkan @aral@mastodon.ar.all Social oncologist. I make small things. Unapologetically anti-genocide. From Gaza? If you need to get verified, please go here: https://gaza- verified.org/join/ Want to donate to people in Gaza? Please see https://gaza-verified.org/donate/ My posts are licensed under Creative Commons Attribution-NonCommercial-ShareAlike (https://creativecommons.org/licenses…
@dde@social.tchncs.de
2025-12-30 11:16:09

Ich habe gestern einmal feed2toot durch den Fork feed2toot-oauth ersetzt. Das ist ein Drop-In-Replacement, das ursprüngliche Projekt steht seit 2021 still.
pypi.org/project/feed2toot/

feed2toot
Parse rss feeds and send new posts to Mastodon

@geant@mstdn.social
2025-11-17 13:46:29

🌐 eduGAIN piloting use of OpenID Federation
eduGAIN has relied on SAML for years, but modern protocols like OpenID Connect 1.0 & OAuth 2.0 are now industry standards.
The eduGAIN service is running a 12-month pilot to test how OpenID Federation could be used as the future trust technology for eduGAIN, alongside SAML.
🔗 Read more in the latest #CONNECT50 article by Lars Fugl…

eduGAIN piloting use of OpenID Federation
@azonenberg@ioc.exchange
2025-12-10 22:51:29

Random thought: the centralization of authentication to a few big OAuth providers like MS and Google, combined with services that time out your cookies and force relogins every so often, makes phishing people so much easier.
Want someone's account creds? Just pop up something that looks like a ms or google login form, odds are they're so conditioned by login fatigue that they'll automatically type their creds and TOTP token into it.

@daniel@social.telemetrydeck.com
2025-11-11 09:49:11

You’ve heard of App Store Review, but have you heard about the 4-6 weeks waiting period for Google to review your Oauth App for Sign In With Google? 🤡