Olivia
Online
Aaron Parecki
@aaronpk
Ō̴̡̨͍͕̠̹̘͖͓̭̝̰̖͉̬̫͍̝̰̟͖͖̞͇̟̻̫͇̠̯̋̋̂ͅͅA̷̡̧͎̫̬͖̠͍̼̗̠͊̉̏̓̈́̂̀̈́͆͘͜uth @oktadev 🎥 livestreaming 💛 #indieweb 🐘🦋
Portland, Oregon
Joined April 2008
1.1K Following
6.1K Followers
10.6K Posts
@tweetsbycolin That's why Resource Indicators (RFC8707) is called out in the Protected Resource Metadata spec (RFC9728) https://t.co/7rswuuf3Pj
@levie If you want to avoid your users having to click through a bunch of OAuth consent screens when connecting all these data sources, give this a read and get in touch https://t.co/ORxsblYJck
@tweetsbycolin @zeeg Yes, it's been there forever, but rarely used. There's also step-up auth RFC 9470, not about scope, but about other attributes https://t.co/wZ00n8zuFR
@tweetsbycolin Hey there, sorry I was out of town last week and didn't see this until now! I have some ideas for how to improve this, what's the best way to discuss?
Who to follow
Tantek 
@t
@[email protected] #IndieWeb #WebStandards @Mozilla. W3C AC CSSWG #IndieWebCamp #microformats. #trailRunner #ultraRunner
Identiverse
@Identiverse
Welcome to your hub for all things identity. Join the brightest minds in the industry June 3-6, 2025 at the Mandalay Bay Resort for a unique event experience!
Okta Dev
@oktadev
Secure access for everyone. But not just anyone. Support: [email protected]
@samuelgoto @Paul_Kinlan @mfosterio oh I bet the browser is blocking it. If you've ever clicked the little X it blocks it from working until you go unblock it. Go to this page and I bet you'll see "automatically blocked third-party sign-in" chrome://settings/content
@samuelgoto @anderspitman Let me poke around a bit. I've also got some interest in the IdP registration API internally.
@samuelgoto Yeah, I've been following that, and think it's a great idea. If that ships, I would then 100% recommend people use a BFF to manage OAuth tokens and a device-bound cookie to their BFF. https://t.co/GZy34yxXUZ
@samuelgoto We've tried to capture the state of storage in the browser in the OAuth Browser Apps BCP https://t.co/cQgvjGPTug
@samuelgoto Yes this is still a gap. Non-exportable WebCrypto keys are a good start, since you can use them to sign access token requests using DPoP, making token exfiltration less of a problem.
@__b_c I lost my API key in The Purge™
@SoundSpeedsYT @notshenetworks That'd be a pretty good deal if you can pull it off
@ottokruse That's the TLDR. The longer version is explaining the intricacies in how the implicit flow relates to OpenID Connect and all the combinations of response types and response modes
@vibronet I absolutely agree, the problem is certain platforms *ahem* still haven't fully made the switch
@dpchiesa Sounds a lot like advertising/marketing too. I suppose that's true with everything.
@jakesloaninak tbh go look at the comments from large channels on related videos that you'd do and see what the viewer community is like.
I should have done that before I made that Remote ID video because 😬😬😬 notice how I haven't posted another video about that since 😬
@saradietschy The last good GoPros for live video! 😅
@EposVox omg me too definitely don't look at my older videos 🙈
I eventually gave up and use straight out of camera colors for everything now
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.6M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers