Include user’s twtxt nick and URL in their user-agent string #63
Comments
|
👍 |
|
It's great for discovery, but on the other hand it's sort of like a tracking cookie, allowing you to track when a specific user checks for new tweets, how often and at which time, from where, etc... Maybe this could be done on the first request only, so you can grep your logs for new followers, but can't stalk them? Either way, this should be a configurable option IMO. |
|
Yes, valid doubts indeed. Of course this would be configurable and disabled by default. Including it only once when newly following someone would help, but then again you can’t really be sure of this person is still "following" you weeks later. |
|
The quickstart could ask you if you want to use that feature or not. 2016-02-11 10:21 GMT+01:00 buckket [email protected]:
|
|
Personally I would prefer if the inclusion be configurable and sent with every request. The quickstart is a good place the make people aware of the feature, and it should default to “don't disclose my identity”. In addition to never, once and always, a possibility could be to include twtxt's URL and @username if random.random() is below a certain threshold (that could be configurable and default to, say, 0.5). |
|
I rather like that format. 😉 |
|
RFC 7231, Section 5.5.3 “User-Agent” states:
and
and
I seriously doubt that information about the user (and not the user agent) is in scope for the “User-Agent“ header field. Note that there is a “From” header field defined in RFC 7231 which “contains an Internet email address for a human user who controls the requesting user agent”: https://tools.ietf.org/html/rfc7231#section-5.5.1 |
|
@erlehmann I agree with you - it's kinda out of scope. The From header field should contain an email address which is in our case not what we want. |
|
Eh, I think its ok to put the url and username in the user-agent if the user requests it, even if it is discouraged by the RFC (but not actually disallowed, I note) For twtxt.reednj.com I am going to use the format proposed by @buckket with an extra field at the end to show its not the official client. Something like this:
This follows the user agent spec, which allows for multiple product tokens. |
|
@reednj this means your twtxt-directory-client is using the official client code just for downloading? |
|
@erlehmann It doesn't use the official client at all... |
|
@erlehmann twtxt is not only the official client but also the format specification, so I see no problem using it, even if @reednj does not use parts of the official client. Personally I really like this feature, it allows to get information about ones followers without to much effort. Plus it is totally optional und requires no modification on the server side as the User-Agent is logged automatically most of the time. If no one has any serious doubts about this I will start implementing this feature as proposed here. |
Like proposed here: #3 (comment)
This allows searching the webserver’s access log for one’s followers.
Format:
twtxt/1.2.3 (+https://example.com/twtxt.txt; @somebody)Any other suggestions for the format we should use?
The text was updated successfully, but these errors were encountered: