ivatar issueshttps://git.linux-kernel.at/oliver/ivatar/-/issues2019-02-21T08:51:43Zhttps://git.linux-kernel.at/oliver/ivatar/-/issues/13Add RoboHash?2019-02-21T08:51:43ZOliver Falkoliver@linux-kernel.atAdd RoboHash?If we want RoboHash, this should receive some votes, else, I'll not care too much:
https://github.com/e1ven/RobohashIf we want RoboHash, this should receive some votes, else, I'll not care too much:
https://github.com/e1ven/RobohashAdditional features (not required for go-live)Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/12e.g. ".well-known/avatars" as an alternative/addition to DNS SRV for federate...2022-12-30T12:37:46ZOliver Falkoliver@linux-kernel.ate.g. ".well-known/avatars" as an alternative/addition to DNS SRV for federated libravatars?Looking at [WebFinger](https://webfinger.net/) and its [avatar link](https://webfinger.net/rel/avatar/) rel I was wondering if one could use a .well-known/avatars or something similar as an alternative/addition to DNS SRV records federat...Looking at [WebFinger](https://webfinger.net/) and its [avatar link](https://webfinger.net/rel/avatar/) rel I was wondering if one could use a .well-known/avatars or something similar as an alternative/addition to DNS SRV records federated avatars server?
E.g. either add something like:
https://example.com/.well-known/avatars
or
https://example.com/.well-known/avatars-server
which responds with the avatars-server (and maybe port/path) to [Well-Known URIs](https://www.iana.org/assignments/well-known-uris/well-known-uris.xhtml)?
Or maybe it would fit better to use [RFC 6415](https://tools.ietf.org/html/rfc6415)'s .well-known/host-meta or even [WebFinger](https://webfinger.net/)?Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/83Verification links not working2021-09-06T12:18:00ZGhost UserVerification links not workingWhen adding a new email address on my install, the verification links don't seem to work. The links have a different hash than the database table. When I take the hash from the database and use it in the link, it works. I tested this ...When adding a new email address on my install, the verification links don't seem to work. The links have a different hash than the database table. When I take the hash from the database and use it in the link, it works. I tested this using both the SQLite and PostgreSQL options.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.at2021-04-16https://git.linux-kernel.at/oliver/ivatar/-/issues/71Bitmoji integration2022-12-30T12:24:15ZGhost UserBitmoji integrationIt would be nice with integration with [Bitmoji](https://www.bitmoji.com/) since those avatars are very customizable and pretty.
Links that might be of relevance:
* https://github.com/matthewnau/libmoji
* https://kit.snapchat.com/docs/b...It would be nice with integration with [Bitmoji](https://www.bitmoji.com/) since those avatars are very customizable and pretty.
Links that might be of relevance:
* https://github.com/matthewnau/libmoji
* https://kit.snapchat.com/docs/bitmoji-kit-web
* https://kit.snapchat.com/docs/reference-webOliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/67big confusion in login2021-11-22T13:14:06ZGhost Userbig confusion in loginAs described in https://git.linux-kernel.at/oliver/ivatar/-/issues/64 . Since the rewrite in 2018, my avatar wasn't display correctly until yesterday, but I had to fight a lot to discover my problem . with https://www.libravatar.org/tool...As described in https://git.linux-kernel.at/oliver/ivatar/-/issues/64 . Since the rewrite in 2018, my avatar wasn't display correctly until yesterday, but I had to fight a lot to discover my problem . with https://www.libravatar.org/tools/check/ I found that what Fedora sites are looking for http://sergiomb.id.fedoraproject.org/ , and when I logged in with http://sergiomb.id.fedoraproject.org/ I went to my first registered user "sergiomb" but I usually I use just id.fedoraproject.org to login in my main user which is "sergiomb2"
Here in sergiomb2 profile I defined a lot similar openIds https://sergiomb.id.fedoraproject.org/ (with https) and http://id.fedoraproject.org/openid/id/sergiomb/ and https://id.fedoraproject.org/openid/id/sergiomb .
At least iavatar shouldn't allow:
- equal openIds with / or not in end
- with http and https with same URL
this cases allow 4 cases that are exactly the same thing:
```
http://id.fedoraproject.org/openid/id/sergiomb/
http://id.fedoraproject.org/openid/id/sergiomb
https://id.fedoraproject.org/openid/id/sergiomb/
https://id.fedoraproject.org/openid/id/sergiomb
```
but I missed the most important one ! what I needed was http://sergiomb.id.fedoraproject.org/ :(, I even can add just https://id.fedoraproject.org ,I guess.
And at last when we try login, we just need write "id.fedoraproject.org", We don't need specify the user and neither the protocol.
If we specify an openId that is the same in practice , and are different registered, lets says: https://id.fedoraproject.org/openid/id/sergiomb/ and http://sergiomb.id.fedoraproject.org/ the iavatar creates a new login automatically , for example I have sergiomb , sergiomb2 to sergiomb11 already . But all the records have the same email , which makes us not allow to recover the password (because uses the email).
In conclusion I think you shouldn't allow new records if the email associated is the same, and that can be the key point to allow a better service .
ThanksOliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/63Idea for Default Avatar2022-12-30T12:21:21ZGhost UserIdea for Default AvatarI love what you have been working on. I have a suggestion for the default avatars.
I love the professional look of the Mystery Man avatar, but the downside of using it is that everyone has the same exact default avatar.
It would be nic...I love what you have been working on. I have a suggestion for the default avatars.
I love the professional look of the Mystery Man avatar, but the downside of using it is that everyone has the same exact default avatar.
It would be nice if you created a new set of default avatars similar to Mystery Man, except it changes the background color for different emails, and then uses a consistent color for that email address.
For example, someone@example.com would always have a blue background color, while someoneelse@example.com would always have a green background color.
You could probably use some algorithm that spits out the same result for each email so that each email address is always the same color.
This would be useful in forums and blog comments where people don't always have a registered Gravatar or Libravatar. At least their replies would have the same color default avatar, so it is easier to tell them apart from others who are using the default avatar.
Unlike the other sets, which are more whimsical, it would be nice if there was a more professional option besides the Mystery Man. Ideally, the generated colors would be muted a bit (grays, light blues, light greens, light reds, etc.) so they do not contrast with the sites and are not too overpowering. For example, a bright magenta avatar might not look that appealing. Also, since people can't choose their colors, neutral colors would be the best option. They can always register a Libravatar or a Gravatar if they don't like the color, but we should probably avoid outrageous colors anyway so it appeals to the widest audience.
Thank you for your time.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/62libravatar.org footer covers content in firefox2021-09-06T11:41:31ZGhost Userlibravatar.org footer covers content in firefoxIn Firefox, the page footer covers whatever part of the page it is over when the page loads. Scrolling on the page moves the footer as well as the page content.
The page footer has css of "position: absolute;" in FF, but has "position:...In Firefox, the page footer covers whatever part of the page it is over when the page loads. Scrolling on the page moves the footer as well as the page content.
The page footer has css of "position: absolute;" in FF, but has "position: relative;" in Chrome where it behaves as expected.
Of no real consequence: in FF the footer is just a box but in Chrome it is a fancy curve topped element.![libravatar_home_page_in_FF](/uploads/1f101ffaabe2e72c822e18b2d013374a/libravatar_home_page_in_FF.png)https://git.linux-kernel.at/oliver/ivatar/-/issues/60Avatar boxes are too narrow2021-11-22T13:14:32ZGhost UserAvatar boxes are too narrowHaving several similarly named domains turns avatar management into a nightmare
![image](/uploads/a01170dd3cfb22092292d7c567f4d889/image.png)
Why not use wide list like gravatar does?Having several similarly named domains turns avatar management into a nightmare
![image](/uploads/a01170dd3cfb22092292d7c567f4d889/image.png)
Why not use wide list like gravatar does?Redesign Profile pagehttps://git.linux-kernel.at/oliver/ivatar/-/issues/57Add CORS headers to returned avatars2021-09-06T11:53:49ZGhost UserAdd CORS headers to returned avatarsHello! :wave:
Could you consider adding CORS header (`Access-Control-Allow-Origin: *`) to avatar image responses? Gravatar uses it and it allows fetching avatars without cookies or any other tracking information through `<img src="..."...Hello! :wave:
Could you consider adding CORS header (`Access-Control-Allow-Origin: *`) to avatar image responses? Gravatar uses it and it allows fetching avatars without cookies or any other tracking information through `<img src="..." crossorigin=anonymous>`
More details here: https://developer.mozilla.org/en-US/docs/Web/HTML/CORS_settings_attributes
Reported here: https://photog.social/users/libravatar/statuses/102265339201031638Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/53500 error on trying to upload export in invalid format2021-09-06T11:42:43ZGhost User500 error on trying to upload export in invalid formatHello,
on https://www.libravatar.org/accounts/upload_export/, if i try to upload e.g. a txt file i get 500 error. Instead, the file should be checked for a valid format and only then processed.Hello,
on https://www.libravatar.org/accounts/upload_export/, if i try to upload e.g. a txt file i get 500 error. Instead, the file should be checked for a valid format and only then processed.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/51Libravator logo link in wiki is broken2021-09-06T11:53:18ZGhost UserLibravator logo link in wiki is brokenIn the [wiki](https://wiki.libravatar.org) there was a link to a Libravatar logo, which is currently broken. It points to https://seccdn.libravatar.org/nobody/256.png.In the [wiki](https://wiki.libravatar.org) there was a link to a Libravatar logo, which is currently broken. It points to https://seccdn.libravatar.org/nobody/256.png.https://git.linux-kernel.at/oliver/ivatar/-/issues/50Cache-Control and Expires2021-09-06T11:53:10ZGhost UserCache-Control and ExpiresWhen setting up a localhost caching reverse proxy I noticed that libravatar.org doesn't set the `Cache-Control` (and `Expires`) header.
Gravatar sets
```http
Cache-Control: max-age=300
```
Should libravatar use something similar?
T...When setting up a localhost caching reverse proxy I noticed that libravatar.org doesn't set the `Cache-Control` (and `Expires`) header.
Gravatar sets
```http
Cache-Control: max-age=300
```
Should libravatar use something similar?
The [libravatar API](https://wiki.libravatar.org/api/) only mentioned caching in relation to SRV records (1 day = 24 hour?). Should avatars itself be allowed to be cached for 24 hours?
In @tastytea's [libravatarserv](https://schlomp.space/tastytea/libravatarserv) example config for nginx the `Expires` and `Cache-Control` are set to 86400 (24 hours) (+ `Cache-Control` adds `public`):
<https://schlomp.space/tastytea/libravatarserv/src/commit/de7e61a2fed91c0be3ab787907ff39f7f72b4043/doc/nginx-example.conf#L12-L14>
Since the libravatar api very much rely on query string it's affected by <https://httpd.apache.org/docs/trunk/caching.html#http-caching>, under "What Can be Cached?":
> If the URL included a query string (e.g. from a HTML form GET
> method) it will not be cached unless the response specifies an
> explicit expiration by including an "Expires:" header or the
> max-age or s-maxage directive of the "Cache-Control:" header, as
> per RFC2616 sections 13.9 and 13.2.1.
I suppose this might affect caching in clients? I haven't checked that.
Using [mod_expires](https://httpd.apache.org/docs/2.4/mod/mod_expires.html) I used something like:
```apache
ExpiresActive On
ExpiresDefault "A86400"
Header merge "Cache-Control" "public"
```
(Maybe
```apache
ExpiresDefault "access plus 24 hours"`
```
is a bit more readable.)https://git.linux-kernel.at/oliver/ivatar/-/issues/40Style for check_domain2019-02-23T21:44:48ZOliver Falkoliver@linux-kernel.atStyle for check_domainThe current style of check_domain has been taken over (mostly) from the old site and is using tables to style the result.
Would be cool, if we can restyle this.
Example:
https://libravatar-stg.fedorainfracloud.org/tools/check_domain/
Can...The current style of check_domain has been taken over (mostly) from the old site and is using tables to style the result.
Would be cool, if we can restyle this.
Example:
https://libravatar-stg.fedorainfracloud.org/tools/check_domain/
Can I assign this to you @nipos ?https://git.linux-kernel.at/oliver/ivatar/-/issues/30ivatar uses gravatar way too often?2021-09-06T11:49:56ZGhost Userivatar uses gravatar way too often?If I make up some random hash and use it, I get:
http://libravatar-stg.fedorainfracloud.org/avatar/40f8d096a3777232204cb3f796c577b7?s=500
vs.
http://cdn.libravatar.org/avatar/40f8d096a3777232204cb3f796c577b7?s=500
In the first case, ...If I make up some random hash and use it, I get:
http://libravatar-stg.fedorainfracloud.org/avatar/40f8d096a3777232204cb3f796c577b7?s=500
vs.
http://cdn.libravatar.org/avatar/40f8d096a3777232204cb3f796c577b7?s=500
In the first case, gravatar is used as a source to get avatar. In the second case, libravatar's default avatar is used. I wonder what are the rules when gravatar should be used and when not.
This is more a question than a bug report.https://git.linux-kernel.at/oliver/ivatar/-/issues/25libravatar's export/import scripts don't account for password2021-09-06T11:49:13ZGhost Userlibravatar's export/import scripts don't account for passwordHello,
https://git.linux-kernel.at/oliver/ivatar/blob/libravatar_export/exportaccounts.py
nor
https://git.linux-kernel.at/oliver/ivatar/blob/master/import_libravatar.py
account for user password. I think we might want to transfer those...Hello,
https://git.linux-kernel.at/oliver/ivatar/blob/libravatar_export/exportaccounts.py
nor
https://git.linux-kernel.at/oliver/ivatar/blob/master/import_libravatar.py
account for user password. I think we might want to transfer those as well.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/15Exception on avatar importing2021-09-06T11:48:12ZGhost UserException on avatar importingHello Oliver,
I got the following exception when I tried to import avatar from gravatar (this was automatically offered to me after email confirmation).
```
DataError at /accounts/import_photo/1
invalid input syntax for type inet: "('2...Hello Oliver,
I got the following exception when I tried to import avatar from gravatar (this was automatically offered to me after email confirmation).
```
DataError at /accounts/import_photo/1
invalid input syntax for type inet: "('213.175.37.10', True)"
LINE 1: ... '2018-11-13T15:37:48.762539+00:00'::timestamptz, '(''213.17...
^
Request Method: POST
Request URL: http://libravatar-stg.fedorainfracloud.org/accounts/import_photo/1
Django Version: 2.1.2
Exception Type: DataError
Exception Value:
invalid input syntax for type inet: "('213.175.37.10', True)"
LINE 1: ... '2018-11-13T15:37:48.762539+00:00'::timestamptz, '(''213.17...
^
Exception Location: /mnt/data/.virtualenv/lib/python3.6/site-packages/django/db/backends/utils.py in _execute, line 85
Python Executable: /usr/bin/python3
Python Version: 3.6.6
Python Path:
['/srv/libravatar',
'/mnt/data/.virtualenv/lib64/python36.zip',
'/mnt/data/.virtualenv/lib64/python3.6',
'/mnt/data/.virtualenv/lib64/python3.6/lib-dynload',
'/usr/lib64/python3.6',
'/usr/lib/python3.6',
'/mnt/data/.virtualenv/lib/python3.6/site-packages']
Server time: Tue, 13 Nov 2018 15:37:49 +0000
```Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/8It's not possible to switch the theme now2021-09-06T11:47:41ZGhost UserIt's not possible to switch the theme nowWith the new default theme, there is no option to switch to alternative themes as there was before.With the new default theme, there is no option to switch to alternative themes as there was before.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.athttps://git.linux-kernel.at/oliver/ivatar/-/issues/3gitlab: no ssh-based access to git repository2021-09-06T11:46:41ZGhost Usergitlab: no ssh-based access to git repositoryAn infrastructure wish: please enable the ssh transport for git. Thank you!An infrastructure wish: please enable the ssh transport for git. Thank you!https://git.linux-kernel.at/oliver/ivatar/-/issues/95Logout leading to HTTP error 4052024-01-16T14:00:42ZOliver Falkoliver@linux-kernel.atLogout leading to HTTP error 405Django 5 deprecated logout via GET request - only POST is allowed.
Reference: https://docs.djangoproject.com/en/5.0/releases/5.0/#features-removed-in-5-0
Also partially outlined here: https://codereviewdoctor.medium.com/3-awesome-django...Django 5 deprecated logout via GET request - only POST is allowed.
Reference: https://docs.djangoproject.com/en/5.0/releases/5.0/#features-removed-in-5-0
Also partially outlined here: https://codereviewdoctor.medium.com/3-awesome-django-4-1-changes-1-is-a-logout-deprecation-you-need-to-know-about-1d8166ccbdb2
This needs to be fixed in navigation and home pages.https://git.linux-kernel.at/oliver/ivatar/-/issues/92Dicebear implementation needs update2023-02-01T16:17:39ZOliver Falkoliver@linux-kernel.atDicebear implementation needs updateAllowed URLs need an update: https://git.linux-kernel.at/oliver/ivatar/-/blob/master/config.py#L213
Dicebear API docs: https://dicebear.com/how-to-use/http-api
Maybe keep the 'avatars' subdomain and just add the 'api' subdomain in case...Allowed URLs need an update: https://git.linux-kernel.at/oliver/ivatar/-/blob/master/config.py#L213
Dicebear API docs: https://dicebear.com/how-to-use/http-api
Maybe keep the 'avatars' subdomain and just add the 'api' subdomain in case it would break some implementation.Oliver Falkoliver@linux-kernel.atOliver Falkoliver@linux-kernel.at