Profile for adele
- Display name
- Adële 🐁!
- Username
- @adele@social.pollux.casa
- Role
- admin
About adele
Fields
- Smolweb
- https://smolweb.org/
- Static hosting
- https://pages.casa/
- Gemini hosting
- https://pollux.casa/
Bio
aka 아델
#French 🇫🇷 #PHP / #JavaScript and #Java developer
#Korean 🇰🇷 ancestry (but I don’t speak the language)
Into #SmolWeb, #GeminiProtocol, #Smolnet, #LowTech
#ArchLinux / #Debian user
#Markdown 🇲⬇️ enthusiast
Instance running #GoToSocial 🦥
en / fr
- Joined
- Posts
- 1085
- Followed by
- 1309
- Following
- 320
Stats
Social network users going to see a generative AI to have their Starter Packs made
#gotosocial v0.19.0 is running!
Here are Ten Pointless Facts About Me
https://forkingmad.blog/ten-pointless-facts-about-me/
I love doing these blogging challenges. A little bit of fun, and you get to know the personality behind the account a tiny bit more. 😊
Go on, get blogging with your own. You know you want to.
What's that coming over the hill, is it a monster? Is it a monster?
Yes actually, it's version 0.19.0 of #GoToSocial, aka Seditious Sloth 😈! It's busted out of the release candidacy process and it's ready to kick some ass.
You can get the release from here:
https://github.com/superseriousbusiness/gotosocial/releases/tag/v0.19.0
Or use either the latest or 0.19.0 Docker tag.
The update contains several database migrations, so please read the migration notes carefully for instructions on how to upgrade to this version!
Release highlights
- OAuth token scope enforcement: Token scopes (
read,writeetc) now actually do stuff! So we removed the big "scopes don't do stuff!" warning in the docs. The enforced scopes match the Mastodon API token scopes, so there shouldn't be any surprises for bot owners / app developers.
See https://docs.gotosocial.org/en/latest/api/swagger/ for more info. - Token review / invalidation: You can now review and invalidate tokens issued for your account in the settings panel, to help keep your account secure.
Docs: https://docs.gotosocial.org/en/latest/user_guide/settings/#access-tokens - Create and manage applications in the settings panel: Handy for people who want to run bots and applications with GoToSocial!
Docs: https://docs.gotosocial.org/en/latest/user_guide/settings/#applications - Gallery-style profile layout option: You can now choose to lay out the web view of your profile in a 'gram style gallery. Good for people who mostly post media and want to put that at the forefront.
Docs: https://docs.gotosocial.org/en/latest/user_guide/settings/#select-layout - Support for two-factor authentication (aka 2FA): If your instance isn't configured to use an OIDC provider, you can now secure your account with 2FA via a QR code and an authenticator app. When logging in with 2FA enabled, you will have to provide a time-based one-time password. Security!
Docs: https://docs.gotosocial.org/en/latest/user_guide/settings/#two-factor-authentication - Lots of web view tweaks including nicer media rendering on chrome, proper blurhash support, much better support for keyboard-based page navigation, wider font support for different scripts, tidier status info bar, and more.
- OAuth bugfixes should allow more flexibility and compatibility when logging in with or authorizing third-party applications.
- bandwagon.fm compatibility fixes: you can now follow Bandwagon.fm artists from your GoToSocial account and receive posts / announcements from them.
- Edit domain permissions: you can now edit the obfuscate and public and private comment fields in domain permissions (blocks/allows) instead of having to remove and recreate the permission to update the comments.
You don't know what #religion I am?
That's normal, I keep that to myself. Maybe it's because I'm French and in my country secularism is a dogma. For me, religion is part of intimacy and privacy.
I’m not trying to go viral.
I’m trying to be useful.
To someone.
Somewhere.
That’s enough.
https://www.joanwestenberg.com/notes-from-the-exit-why-i-left-the-attention-economy/
Block non-human crawlers with lighttpd
2025-04-20 19:05
Recently, I've put a copy of some ZIM files online with kiwix-server. I posted the url of this site on the Fediverse and, a few days later, the little server was a bit overloaded. The logs showed that the site was being crawled by search engines and AI training bots. There was no reason to let them. A robots.txt file calmed some, but not others.
Analysing user agents and IP addresses is not the answer, because, everything is done to make it complicated (randomisation, many datacenter origins). I thought about Cloudflare protection, Google captcha or the open source solution Anubis. All of them require javascript to be enabled on the human browsers.
After several tests, I have found a simple method to stop these crawlers.
The principle
When a connection arrives on the web server, it checks to see if the request comes with a cookie. If it does not, the web server redirects the browser to an HTML form that asks the user to tick a checkbox and submit. If the user submits the form correctly, he or she receives a cookie and is redirected to the previously requested page. The new request is made with a cookie. So, the web server does its job and send the expected content.
I think I've managed to curb AI crawlers with a simple HTML form that drops a cookie.
I'll see if it holds up and make a post about it.
It protect my #kiwix server
w is the preferred subdomain for smolweb sites
A simple way for a website to indicate that it adheres to the smolweb guidelines is to use the subdomain w instead of www.
This short subdomain is very much in the spirit of smolweb.
This is not a requirement, just a suggestion.
w.example.org is visually different from www.example.org or example.org.
@adele Has someone suggested also using w as a subdomain to signify that it’s lightweight ? I believe that would make sense.
I mean like w.sm0l.org instead of www.sm0l.org .
New smolweb symbol could be <w> in monospaced font
The angle brackets < and > recall HTML tags, giving a nod to the DIY, hand-coded nature of many smolweb sites. It signals that the web can be understandable and writeable by humans, not just something consumed through complex platforms. It carries the scent of rawness and control, not abstraction and obfuscation.
A single, lowercase w stands in for "web" in a modest, almost shy way. It’s not the grand "www" of the mainstream web, but a small w, lowercase and self-aware. It hints at an alternative web, not the bloated, surveillance-driven one, but a quieter, slower, more intimate one.
<w> is compact, echoing the idea that less is more. That brevity is not a compromise but a strength. It suggests that meaning and value can come in small, lightweight package, just like a well-crafted static HTML page.
The whole symbol feels like something you might type into a terminal or a text editor. It invites tinkering. It feels like the smolweb: accessible, understandable, and remixable.
So yeah, <w> quietly says a lot: it’s webby, small, and stripped-down, no frills, all signal. Perfect shorthand for the smolweb !
Bravo to SourceHut for making noise about this. No, site operators should not just "handle this volume of traffic". Foisting rising resource requirements on site operators will centralize the web.
https://sourcehut.org/blog/2025-04-15-you-cannot-have-our-users-data/
Giving pages.casa https://pages.casa/ a try. Thanks to @adelesocial@pollux.casa for getting things quickly set up on the server. Switching my DNS from @hover was quick and I'm up and running. Pages.casa also has a method that lets you publish markdown directly with out having to build things yourself (https://pages.casa/posts/publish-markdown-files-easily/ ) #smolweb #indieweb
If you run a single user #GoToSocial instance, maybe you would like to get more toots about a specific subject in your timeline.
#FediBuzz relay could help you. You can subscribe to a specific hashtag fake-account and then receive toots it re-toots.
more info here https://relay.fedi.buzz/
For example, you can follow @tag-gotosocial
I'm looking for a new symbol for the #smolweb
On smolweb.org, I use a small w between brackets : (w)
But I find it ugly, it seems to be a failed batman logo ^^
I think about ~w~, because tilde is part of smolweb community, and it is used for user directory on UNIX systems and web server. But it is not very fun. There are other possibilities: sw~, ~w, w~...
What would you use to symbolize smolweb?
I've a huge problem with the concept of digital "sovereignty", because it evokes (and in fact push) some very reactionary political ideas.
I prefer to talk about #DigitalAutonomy or independence from Big Tech.
Katy Perry is far less inspiring than Greta Thunberg
Don't build #ActivityPub from scratch! It's complex. See why using the #Fedify framework is the smarter way to develop for the fediverse in my new post:
I've switched to @librewolf browser. Mozilla's latest announcements have made up my mind.
#Librewolf is really the good compromise: #Security #Privacy modern #Features
If you use Firefox, you should give it a try. You can use Firefox extensions and, even, Firefox Sync if you want to sync with Firefox for few days (you need to enable this option in settings)
https://librewolf.net/
I need your point of view about a login method.
On pages.casa, I want to add the possibility to edit/create blog post directly in the browser (simpler than FTP/SFTP file transfer).
To avoid users to manage a password which could differ from their FTP/SFTP account, I'd like to propose to log in with a link sent by email:
- User opens the login page
- Enter her/his email associated to the account.
- System sends a one shot login link available 20 minutes
- User open the link with her/his browser and confirm to use it to connect.
- Access to back-office is done