This topic has been covered before loosely, but I have some questions
I was hoping people could opine on as far as how they see the future
working out. I'm currently working on a messaging product which
relies heavily on XMPP and eventually PubSub. We're also looking at
PEP and other ways to consume/expose our data in a brave new PubSub
world of federated social networks. This has led to a lot of
interesting questions.
Imagine [EMAIL PROTECTED] posts an image to flickr. Bob has
many friends who might be interested in that. In a PubSub world,
those friends would subscribe to a node somewhere which flickr would
publish to. Bob's friends would subscribe to that node. Here's
where the questions start. Do people imagine that node living on
flickr or on somejabberhost.com? There are benefits to both.
Imagine this particular node of Bob's is private. He only wants to
allow a subset of his roster to have permission to subscribe to that
node. Lets say, from Bob's point of view, he has a roster group
called Family who he wants to give permission to. If
somejabberhost.com hosts that node then it would be easy for Bob to
say he only wants his Family roster group to have access to his
images_stream node. He also would need a way of authorizing flickr to
publish to that node on his behalf (OAuth) Of course now Flickr
can't further authenticate users for Bob since flickr doesn't know or
have access to Bob's roster. Nor would Bob want flickr poking in his
roster.
We tried to imagine a scenario where Bob could give Flickr permission
(perhaps using OAuth) to authenticate people against his roster
(without flickr being able to read his roster fully). All of that
seems complicated though.
If Flickr keeps the node, then you have the same issues of Flickr not
having any knowledge of Bob's roster.
I know there may not be answers for these questions yet. I guess I'm
just wondering what people think logical solutions might be. Or maybe
there are answers.
Thanks,
adam
- [Social] Federated PubSub Adam Pisoni
-
