always wondered this, but kept forgetting to post it
eg users would be on @grant@toast.ooo and a community would be on @canvas@group.toast.ooo or something like that
then it would still follow the AP spec but still allow for identical identifiers (like a user account being @sc07@toast.ooo and a community also being !sc07@toast.ooo)
You must log in or register to comment.
As an instance owner, the amount of overhead to support that would be nuts for me. Each subdomain would have to have DNS routed to it, or a wildcard which isn’t the best supported. On top of that I’d need to somehow manage certs in a way where when the software detects a new community it’d have to ask for a new cert and broadcast the new domain to everyone. Then what do you do about communities from other instances on your instance?
What is being done is the right way. We use DNS to tell us different services/hosts. We use the path to tell us a subsection of the same service
TLS certs can have one level of wildcard (even let’s encrypt supports this), and creating subdomains programmatically is not exactly black magic - the main blocker from the technical side is that the code to update the DNS is usually not portable between providers, so it’s not adequate for a federated open source project.
