🌟WhiteWind Update 20241201🌟

@whtwnd.com

WhiteWind no longer requires you to directly enter your password!

🔐 More Secure Sign-In

Previously, logging in to WhiteWind to write articles or access "Author only" posts required using a Bluesky1 application password.
However, logging in with an application password had drawbacks, such as:

  • Inability to fine-tune permissions, which could lead to significant damage if the application creator had malicious intent.
  • Lack of expiration dates, making it easier to misuse passwords in the event of a leak caused by poor application security.

As a result, users needed to trust that third-party application creators were both well-intentioned and had implemented proper security measures.

OAuth is a widely used authentication and authorization mechanism for app integrations.
By using OAuth, permissions granted to third-party applications can be limited, and short expiration periods can be set, allowing users to trust these applications less while still using them safely.
On September 25, OAuth was officially supported as part of the AT Protocol specifications.

Now, WhiteWind also supports OAuth, making it even safer for you to use!

How to Log In

  1. Click the avatar button in the top right corner of WhiteWind and select "Sign in with Bluesky account."
  2. A login form will appear. Enter your handle or DID, then click "Log in."
  3. You will be redirected to Bluesky's authentication page1. If prompted for a handle and password, use your main account password2.
    • Ensure the displayed URL is bsky.social.
  4. After entering your password, you'll be taken to an Authorization screen. Review the permissions WhiteWind requires and click "Accept."
  5. You'll be redirected back to WhiteWind. Click the avatar menu to see your account.

How to Log Out

  1. From the top right avatar menu in WhiteWind, click "Sign out."
  2. A sign-out confirmation screen will appear. Click "Yes."

We recommend deleting the application password you previously used for WhiteWind

WhiteWind no longer requires an application password.
To reduce the risk of leaks, it is recommended that you delete it.

🦋 Excluding Link Cards to Articles from Reaction Posts

Previously, Bluesky posts displayed in the reaction section rendered link cards for the corresponding article.
This was considered noise when viewing reactions in WhiteWind, so it has been changed to no longer render them.
Links to other sites or different WhiteWind articles will still display as link cards as usual.

A Blog-Like Update

That’s all for this update.
Thank you for reading!

Only one month remains this year.
Recently, I started watching Attack on Titan on Amazon Prime Video, and it’s so good that I’ve been binge-watching it.
Seeing "Season 7" listed reassured me to breeze through Season 4, but I was shocked when the first episode of Season 4 was labeled "Final Season." After counting the episodes, I realized Seasons 4, 5, 6, and 7 together make up about one full season.
If I had known how little was left, I would have paced myself... a bittersweet UX lesson learned.

Footnotes

  1. Specifically, the PDS you are using. 2

  2. Application passwords cannot be used.

whtwnd.com
WhiteWind

@whtwnd.com

WhiteWind is a Markdown blog service (AppView) which uses atproto.
https://whtwnd.com/about

Usage:
https://whtwnd.com/knksm5.final-techblog.com/entries/Basic%20Usage%20of%20WhiteWind

Repo:
https://github.com/whtwnd/whitewind-blog

Post reaction in Bluesky

*To be shown as a reaction, include article link in the post or add link card

Reactions from everyone (0)