[ANN] twinwiki, a Gemini wiki edited with sed commands

Frederick Yin fkfd at macaw.me
Mon Jul 6 07:32:19 BST 2020

Previous message (by thread): [ANN] twinwiki, a Gemini wiki edited with sed commands
Next message (by thread): [ANN] twinwiki, a Gemini wiki edited with sed commands
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On July 5, 2020 10:49:55 PM UTC, Hannu Hartikainen <hannu.hartikainen+gemini at gmail.com> wrote:
>- Navigating back to a /_edit?<sed_command> URL will redo the edit,
>which
>is mostly not what you tried to do. This will probably be an issue on
>many
>gemini applications; browsers will need to consider it if applications
>become a thing.

Maybe we could try adding a volatile session token assigned to each edit request. Then, reject any other edit with the same (and other unauthorized) token.

For example:
* Client requests /twinwiki/Sandbox/_edit
* Server generates session token, a random hex string, valid for this page and this ten minutes only
* Client gets redirected to /twinwiki/Sandbox/_edit/<session_token> 
* Client asks user for sed command.
* User fills in sed command, sends request to <session_token>?<sed_command>.
* Server checks validity of token. Once verified, apply change and destroy token. Otherwise, reject.

Overall, twinwiki is way cooler than I could have imagined. If we are to continue this conversation we should probably move to the sr.ht list instead.

~fkfd

Previous message (by thread): [ANN] twinwiki, a Gemini wiki edited with sed commands
Next message (by thread): [ANN] twinwiki, a Gemini wiki edited with sed commands
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list