Account Switching by ekzyis · Pull Request #644 · stackernews/stacker.newsgithub.com/stackernews/stacker.news/pull/644
13.9k sats \ 45 comments \ @ek 19 Nov 2023 meta
Made some progress on account switching and interested in feedback, if there's any.
With this feature, you'll be able to switch between accounts. @sn and @kr or @hn and me are good examples: Currently, I always create an incognito tab to login as @hn to keep my session as @ekzyis alive. Now, I will be able to login as @hn within my session as @ekzyis. So if there are stackers out there with multiple nyms: this feature is for you!
However, keep in mind that in theory, we would be able to link your accounts. We haven't found a secure and private solution. See discussion in the PR.
The changes in this pull request should also make anon UX better since you no longer will have to logout to post anonymously. You can just switch to anon and then when you're done, you will be able to return to your session.
Again: anonymously means here you're anonymous in front of other stackers. You're trusting us that we don't log request cookies if you use this feature to post as @anon. If you logout and then post as @anon, the only way for us to find out who you are is to compare IP addresses. Which is always something you trust services to not do. Or simply use a VPN.
For video showcase, click here.
write
preview
related posts
503 sats \ 1 reply \ @WeAreAllSatoshi 19 Nov 2023
I wonder if it'd be a good idea to make this kind of posts for all pending PRs, to solicit feedback? I realize this one might be a bit more geared towards feedback than others, so maybe not every PR should be shared, but it's still probably a good idea!
reply
10 sats \ 0 replies \ @ek OP 19 Nov 2023
Yes, I think in general, it's good to ask for feedback here.
As you mentioned, some PRs might be better suited than others.
For example, stackers might have have more feedback when it comes to feature PRs compared to bug PRs.
I think this is something every PR author can decide for themselves :)
reply
449 sats \ 2 replies \ @benthecarman 19 Nov 2023
Why not have individual login tokens per account and client side it picks which to use based on which account is selected?
reply
0 sats \ 1 reply \ @ek OP 19 Nov 2023
Is this different to what I am doing?
I am setting individual login session tokens (JWTs) per account (multi_auth.<userId>).
The client uses a "cointer pookie" (I made that term up) to switch between accounts since we don't want to give JS access to the actual session tokens.
My assumption is that using pointer cookies should prevent XSS vulns since in case of a XSS vuln, an attacker could only see which accounts you're linked to. But don't access the actual session tokens.
reply
100 sats \ 0 replies \ @ek OP 19 Nov 2023
lol, cointer pookie. I meant pointer cookie
reply
428 sats \ 1 reply \ @WeAreAllSatoshi 19 Nov 2023
I guess this is intentional, but the account switching only works in your current browser session, right? Meaning, there is no actual link established between one account and another, it's all just managed via the cookies in your browser.
reply
0 sats \ 0 replies \ @ek OP 19 Nov 2023
there is no actual link established between one account and another, it's all just managed via the cookies in your browser.
Yes
reply
428 sats \ 1 reply \ @WeAreAllSatoshi 19 Nov 2023
Would you prefer feedback here or on the PR?
reply
0 sats \ 0 replies \ @ek OP 19 Nov 2023
Mhh, good question. I don't really mind but here, more people might see it
reply
10 sats \ 2 replies \ @SpaceHodler 19 Nov 2023
Would it also be possible to allow transferring an SN account to another lightning login? For example I log into my SN account via Alby. But Alby is only available on desktop. I'd like to transfer my account to WoS so I can log in on mobile without needing access to my desktop. But I don't want to abandon my SN account and create a new one.
I know e.g. lnmarkets.com has that feature.
reply
5 sats \ 1 reply \ @ek OP 19 Nov 2023
Linking multiple lightning logins is a different ticket.
But what you want to do, you can already do. Since currently, you can only link a single lightning login, you need to link a different auth method first (or if you feel reckless, don't) and then you can unlink your lightning auth. You can then link your WoS wallet (do they support LNURL-auth now?).
reply
0 sats \ 0 replies \ @SpaceHodler 19 Nov 2023
Thanks, I'll look into it when I get home.
Yes, they do: #118606 , and I have actually used it with lnmarkets.
reply
0 sats \ 2 replies \ @Zepasta 19 Nov 2023
Personally im not big fan of the Anon feature.
Just a recent experience on my "You Shouldnt DCA" thread, many users were using those anon acc to insult me and my "take". If you are gonna call me a retard for saying DCA is stupid (which has been proven by math) atleast have the balls to use your real acc and not anon.
@DarthCoin said it best:
stackers with a SN account that are (ab)using the anon feature to post stuff that could be opposite or affect their regular SN account reputation. That means they are NOT responsible for their own actions/words, they do not have balls to take that responsibility, they do not know how to stand your ground.
reply
0 sats \ 0 replies \ @DarthCoin 19 Nov 2023
reply
0 sats \ 0 replies \ @ek OP 19 Nov 2023
many users were using those anon acc to insult me and my "take".
I see only this comment from @anon in your first post and I see no insult there. No @anon comments in the second part.
Imo, calling something "wrong and terrible financial advice" is not an insult, that's an opinion.
reply
0 sats \ 28 replies \ @DarthCoin 19 Nov 2023
OMG you are just feeding spammers. Who is using anon and also using a SN nym are just cowards and I do not believe any words they say. You are just opening pandora"s box with this feature. How am I suppose to take in consideration any post by an anon if everybody could be an anon ?
reply
1 sat \ 27 replies \ @ek OP 19 Nov 2023
OMG you are just feeding spammers.
How exactly?
How am I suppose to take in consideration any post by an anon if everybody could be an anon ?
What? Anybody can already be anon, this PR doesn't change that.
I use anon sometimes myself.
reply
100 sats \ 26 replies \ @nemo 19 Nov 2023
deleted by author
reply
111 sats \ 15 replies \ @ek OP 19 Nov 2023
avoiding some of the blow back potentially, to save engagement energy. sometimes there might be something to be said, but we don't always want to be exposed to having to die on that specific hill, lol :)
Well said. Some people take stuff way too seriously and judge you by little things you said.
Doesn't matter how much other things you said.
If you said X, you're automatically Y, lol
Don't need to feed these people. If that makes me a coward, so be it.
reply
100 sats \ 11 replies \ @nemo 19 Nov 2023
deleted by author
reply
21 sats \ 7 replies \ @DarthCoin 19 Nov 2023
if you really want to not use your main nym, then create a new one, random one and use it. But then we are in another situation... 2 faces nym, that means personality disorder...
reply
43 sats \ 1 reply \ @nemo 19 Nov 2023
deleted by author
reply
21 sats \ 0 replies \ @DarthCoin 19 Nov 2023
hahaha exactly my point - a mess
reply on another page
0 sats \ 4 replies \ @ek OP 19 Nov 2023
then create a new one, random one and use it.
Why not just use anon for single takes?
reply
21 sats \ 3 replies \ @DarthCoin 19 Nov 2023
and then nemo came also as anon and reply with an opposite view, just to mess around... How that sounds to you? Will be a good conversation or wasting time?
view replies
21 sats \ 2 replies \ @ek OP 19 Nov 2023
Yes, we need to pick our battles.
reply
10 sats \ 1 reply \ @nemo 19 Nov 2023
deleted by author
reply
0 sats \ 0 replies \ @ek OP 19 Nov 2023
The exception highlights the rule :)
Maybe bad translation, in German we say:
"Die Ausnahme bestätigt die Regel."
reply on another page
0 sats \ 2 replies \ @DarthCoin 19 Nov 2023
If that makes me a coward, so be it.
I wasn't talking about you and other SN devs that we already know you are using different accounts to post specific stuff.
I was talking about those regular stackers with a SN account that are (ab)using the anon feature to post stuff that could be opposite or affect their regular SN account reputation. That means they are NOT responsible for their own actions/words, they do not have balls to take that responsibility, they do not know how to stand your ground. That means they have two faces, personality disorder. Why would I take in consideration such things?
reply
0 sats \ 1 reply \ @ek OP 19 Nov 2023
I wasn't talking about you and other SN devs that we already know you are using different accounts to post specific stuff.
Don't be a coward now Darth, stand by your words! :)
Just kidding, it's all in good faith here. But I really do use anon to hide myself from some "personal" takes since I don't want to associate myself necessarily with these views publicly. So
I was talking about those regular stackers with a SN account that are (ab)using the anon feature to post stuff that could be opposite or affect their regular SN account reputation.
Is indeed exactly what I am doing :) I can understand your view, I just don't agree with it. Your stances on (the importance of) privacy are just different and that's fine :)
But I think you should call me a coward now and don't back down! Say the words Darth! lol
That means they have two faces, personality disorder. Why would I take in consideration such things?
Everyone has already multiple faces imo. Some things you say in public, some not. Some things you only say as anon, some you don't mind posting under your nym.
reply
0 sats \ 0 replies \ @DarthCoin 19 Nov 2023
Everyone has already multiple faces imo.
Yes, but those are only 2: public and private. Not multiple faces in public. Only politicians have that.
DarthCoin is a public face, to protect the private one. My private face is another one. But the private one NEVER comes online, it just stays in private, at home and/or in his private life.
Think about this:
  • you go to work, to an office and you dress accordingly and wear a specific hat. All for public image and use.
  • you came home and undress those clothes and hat and put your warm home clothes. You come back to your REAL you, the PRIVATE one.
This is the problem nowadays, people cannot make the difference anymore between public and private. All start by reading this excellent blog - to understand these aspects.
reply
0 sats \ 9 replies \ @DarthCoin 19 Nov 2023
If I came as anon and reply to you a specific thing, then somebody else come also as anon and reply to you with another POV, then what is the point in having POV as anon ? Will be a mess, nobody understands nothing and MOST important - manipulators could do their game, spreading all around lies, FUD, misinformation etc
Do not think that we do not have infiltrators on SN...
reply
0 sats \ 8 replies \ @ek OP 19 Nov 2023
lol, already any post or reply from @anon is most likely a different person. Again, this PR doesn't change that. It makes it easier yes, because the UX around @anon currently sucks. I want to see more hot takes from @anon. Some things just need to be said.
then what is the point in having POV as anon
That you're anon
reply
27 sats \ 4 replies \ @DarthCoin 19 Nov 2023
I think this PR is mostly for you and other SN devs. Is understandable and I have nothing against. What I was trying to say is that now more spammers saw this and will try to take advantage of it... a pandora's box. We will see.
reply
1 sat \ 3 replies \ @ek OP 19 Nov 2023
What I was trying to say is that now more spammers saw this and will try to take advantage of it... a pandora's box.
I don't see how this leads to more spam
I don't think people were hold back by not being able to switch nyms or to @anon easily.
reply
100 sats \ 2 replies \ @DarthCoin 19 Nov 2023
You had my warning.
view replies
3 sats \ 2 replies \ @anon 19 Nov 2023
We are anon
reply
3 sats \ 1 reply \ @DarthCoin 19 Nov 2023
I never take anything in consideration what anon says.
reply
129 sats \ 0 replies \ @anon 19 Nov 2023
there was nothing to be considered here
reply on another page
0 sats \ 0 replies \ @faithandcredit 19 Nov 2023
I will probably never use this. But thanks for pushing the limits of social media ever so slightly. It can help secure its future.
reply