From 9a6e3d40f7f6a4afe86b05a3e1bacc3b3943ffab Mon Sep 17 00:00:00 2001 From: Bob Mottram Date: Sat, 30 Oct 2021 21:12:08 +0100 Subject: [PATCH 1/2] Update roadmap --- README_roadmap.md | 3 --- 1 file changed, 3 deletions(-) diff --git a/README_roadmap.md b/README_roadmap.md index b1a6eb428..5f80b83e3 100644 --- a/README_roadmap.md +++ b/README_roadmap.md @@ -7,7 +7,6 @@ ## Groups * Groups can be defined as having particular roles/skills - * Parse posts from Lemmy groups * Think of a way to display groups. Maybe assign a hashtag and display them like hashtag timelines ## Questions @@ -20,7 +19,5 @@ ## Code * More unit test coverage - * Unit test for federated shared items * Break up large functions into smaller ones - * Architecture diagrams * Code documentation? From abe4701bf0ebc8fef832c381465f192a27df00ae Mon Sep 17 00:00:00 2001 From: Bob Mottram Date: Sat, 30 Oct 2021 21:27:26 +0100 Subject: [PATCH 2/2] Web frameworks --- README_architecture.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/README_architecture.md b/README_architecture.md index a7dff92aa..74c996d94 100644 --- a/README_architecture.md +++ b/README_architecture.md @@ -60,6 +60,10 @@ It is usually safe to assume that the federated network beyond your instance is Where Json linked data signatures are supported there should not be arbitrary schema lookups via the web. Instead, recognized contexts should be added to *context.py*. This is in order to follow the principle of *no processing without full recognition*, in which the recognition step is not endlessly extendable by untrusted parties. +### Avoid Web Frameworks + +In general avoid using web frameworks and instead use local modules which are prefixed with *webapp_*. Web frameworks are built for conventional software engineering by large companies who are designing for scale. They typically have database dependencies and contain a lot of hardcoded Google stuff or other things which will leak metadata or be incompatible with onion routing. Keeping up with web frameworks is a constant firefight. They also create a massive attack surface requiring constant vigilance. + ## High Level Architecture