jdev - 2020-09-13

  1. lovetox

    refering to https://blog.prosody.im/great-invitations/

  2. lovetox

    The “magic link” feature provides the most seamless flow. The user follows the link to install the app, and the invite token is magically discovered by the app after it is installed.

  3. lovetox

    is this something smartphone specific, or is there a technic to make that happen on desktop?

  4. Ge0rG

    lovetox: this is a feature of Google Play called install referrers. https://developer.android.com/google/play/installreferrer

  5. lovetox

    pep., the user tells you its tor, i talk about the case when a user configures the proxy in the client

  6. lovetox

    if he configures it on the system you can’t know anything anyway, so not much to handle there

  7. MattJ

    lovetox: a magic link for desktop is probably possible with certain constraints

  8. MattJ

    Ge0rG reported that MS Teams even does something along these lines

  9. lovetox

    yeah seems i can do this on windows

  10. lovetox

    linux seems a bit impossible

  11. Ge0rG

    MattJ: I'm sure the "magic" in MS Teams is that you get a small personalized installer&downloader EXE

  12. MattJ

    I can imagine downloading a generated install script

  13. lovetox

    https://nsis.sourceforge.io/ReadCustomerData

  14. lovetox

    nsis is a popular installer on windows

  15. MattJ

    Looks neat, that's exactly what's needed

  16. MattJ

    I'm sure similar could be done on Linux, but it's harder yes :)

  17. MattJ

    Since there are so many possible Linux environments

  18. lovetox

    nsis script language is .. i hate it

  19. flow

    hmm, place magic file in ~/.local/share/$xmpp-client/my-magic-file and execute xmpp-client? question is probably "who does place the magic file?"

  20. lovetox

    bingo ..

  21. pep.

    `curl | sudo sh` problem solved!!

  22. MattJ

    There are so many ways :)

  23. MattJ

    Scraping browser history

  24. MattJ

    Ok ok

  25. MattJ

    Assuming the page remains open, it could also try to connect to a server on localhost

  26. MattJ

    And when the XMPP client is installed, it opens a listening port

  27. MattJ

    And then offers to use the invite instead of the normal account setup flow

  28. MattJ

    Generating an install.sh is a less sneaky way, probably also the simplest and most adaptable

  29. MattJ

    But not quite as user-friendly I imagine

  30. MattJ

    Hmmmmmm

  31. pep.

    you also need to select your distribution etc.

  32. Zash

    Do these container/sandbox things support anything suitable?

  33. MattJ

    I doubt it because they generally aren't installed by default and thus have the same bootstrap issue, unless there are distros where they are installed by default and have a protocol handler

  34. MattJ

    I just checked whether apt:// allowed custom repositories, apparently not (well not enabled by default anyway)

  35. pulkomandy

    Could clipboard sniffing work? Detect an xmpp uri in the clipboard and do something?

  36. pulkomandy

    I think some torrent apps do that for magnet links

  37. MattJ

    Oooh

  38. lovetox

    but why would it be in the clipboard?

  39. lovetox

    clicking a link does not add it to the clipboard

  40. pulkomandy

    I think javascript can solve that?

  41. MattJ

    lovetox: https://developer.mozilla.org/en-US/docs/Web/API/Clipboard_API

  42. MattJ

    > The clipboard-write permission is granted automatically to pages when they are in the active tab.