[00:03] <sid__> Is there a Oauth framework for U1 in the works?
[00:03] <sid__> or some such?
[00:14] <mkarnicki> sid__: you might wanna lookup ubuntuone-java-storageprotocol
[00:15] <mkarnicki> wait, even not that. in general, it's there.
[00:15] <mkarnicki> or I didn't get your question.
[00:15] <mkarnicki> you can oauthorize against U1 servers
[00:16] <sid__> Oauth for any app to get my files
[00:16] <sid__> as in its a good way
[00:16] <sid__> without giving our paswords
[00:16] <sid__> we can access files
[00:16] <mkarnicki> well.. I'm just playing around with java source that does that
[00:17] <mkarnicki> also, U1 client written in python is open source
[00:17] <mkarnicki> sid__: it actually works that way
[00:17] <mkarnicki> you use the browser to log in. you never enter your password in any app.
[00:18] <sid__> Browser yeah.. But like write a java App for say my android...
[00:18] <sid__> standalone?
[00:18] <sid__> cause thats what Oauth really does
[00:19] <sid__> Liek I have a dropbox app for my android
[00:19] <sid__> Its contacting Dropbox via oauth... no browseer
[00:19] <mkarnicki> sid__: you might not know.. I'm writing U1 client for Android right now.
[00:19] <sid__> Hmm cool!
[00:19] <sid__> it uses REST i presume?>
[00:20] <mkarnicki> sid__: no, actually, you had to give your username/pass in the application. howcome then it be oauth.
[00:20] <sid__> Hmm
[00:20] <sid__> And after you give the p/w its all via HTTP GET and POSTS?
[00:21] <sid__> Or what is the protocol?
[00:21] <sid__> Actually let me explain I was writing a pure javascript client for dropbox...
[00:21] <sid__> It uses Oauth and REST
[00:21] <mkarnicki> it is ubuntuone-storageprotocol
[00:22] <sid__> let me check it out thanks...
[00:22] <mkarnicki> u1 uses it's own protocol based on google's protocol buffers
[00:22] <sid__> Hmmmm
[00:22] <mkarnicki> sid__: see ubuntuone-storageprotocol and experimental ubuntuone-java-storageprotocol
[00:22] <mkarnicki> I see, cool
[00:23] <sid__> Since its all abstracted was wondering if itd work for Ubuntu one too :)
[00:23] <mkarnicki> dropbox would conform 100% to oauth if they executed a browser, instead of showing 2 input fields for username and password
[00:23] <mkarnicki> I don't think so..
[00:23] <mkarnicki> they have their own protocol
[00:23] <mkarnicki> based on protobuf
[00:24] <sid__> Well the username and p/w is not given to the app... the U/N and P/W is just to verify the authorzation tokens and let the app do stuff on your storage...
[00:24] <sid__> Technically
[00:24] <mkarnicki> I would also go the easy way, but I was instructed to stick to that. so the AndroidU1 will show one.ubuntu.com to log-in to the application itself
[00:25] <sid__> Hmm
[00:25] <mkarnicki> sid__: well.. I think I remember entering the username and pass into my dropbox app. am I wrong?
[00:25] <mkarnicki> :)
[00:26] <mkarnicki> oauth bases on the trust established to a particular webservice. you see https, you see the lock, you feel safe. there you enter the credentials.
[00:26] <mkarnicki> so I think dropbox took a little shortcut there :)
[00:26] <mkarnicki> not that I don't like it
[00:26] <mkarnicki> but in theory, that Dropbox app could have also been a huge scam you know ;)
[00:26] <mkarnicki> I also have it on my HTC, anyway.
[00:27] <sid__> Well the whole idea of oauth is not to give u/n p/w to the app.. So teh oauth dance step 2 is when Dropbox asks you "This app is asking me for and access token... What dropbox accout do you ant to give access to?"
[00:27] <sid__> so that will be your account
[00:27] <mkarnicki> wait.. I'll check that out right now :) I don't remember
[00:27] <sid__> Hmm
[00:27] <sid__> :)
[00:28] <sid__> Well I am neck deep in this so dont think i got that wrong :)
[00:29] <mkarnicki> ok, when you click "I have a dropbox account" you see email and password. that may be the app, that may be an embedded browser. anyhow, this is wrong. I don't feel safe entering my user/pass here. and you wrote "Well the whole idea of oauth is not to give u/n p/w to the app" - so why should I
[00:29] <mkarnicki> you get my point?
[00:29] <sid__> :)
[00:29] <mkarnicki> that may be an embedded browser, but I don't know about that. where's https, wheres the lock :)
[00:29] <sid__> You are sceptic
[00:30] <mkarnicki> I use a clear definition of oauth. why would you call me that :) ?
[00:30] <sid__> Well under the hood the app does a RESTful HTTPS (and it *should*)
[00:30] <sid__> http://code.google.com/apis/accounts/images/accessrequestpage.jpg
[00:30] <sid__> this is how that page looks
[00:31] <sid__> see how this guy is logged in already
[00:31] <sid__> so it asks for just granting access
[00:31] <mkarnicki> wait dude.. what Android version do you use?
[00:31] <sid__> Older
[00:31] <sid__> i think 1.6
[00:32] <mkarnicki> I use 1.5 . what dropbox version?
[00:32] <sid__> let me see
[00:33] <mkarnicki> by the way, why would you show me a google-related website if we're talking about u1/dropbox?
[00:33] <mkarnicki> check the dropbox version, and let me lookup one line
[00:33] <sid__> 0.9.7
[00:34] <mkarnicki> yep. same here. ok, let me say two things
[00:34] <mkarnicki> 1. you may be more proficient in the topic we're talking about right now
[00:35] <mkarnicki> 2. let me show you one site my mentor suggested reading
[00:35] <mkarnicki> http://fireeagle.yahoo.net/developer/documentation/oauth_best_practice
[00:35] <mkarnicki> which says:
[00:35] <mkarnicki> "we insist that you must not use embedded rendering controls to present the OAuth process "
[00:35] <mkarnicki> how about that?
[00:36] <mkarnicki> what did I get wrong about dropbox then?
[00:36] <sid__> one sec
[00:36]  * mkarnicki has a headache
[00:36] <mkarnicki> ok, no prob
[00:38] <mkarnicki> let me hear what you think when you're ready
[00:38] <sid__> Hmm taht day
[00:38] <sid__> I d/l
[00:39] <sid__> a CLI python client
[00:39] <sid__> to connect to drop box
[00:39] <mkarnicki> aha?
[00:39] <sid__> Now here is how it worked
[00:39] <sid__> i fired it up without my user name and password
[00:39] <mkarnicki> well, it's cli, so it won't jump to a browser :D
[00:39] <sid__> It fails at the 2nd step
[00:39] <sid__> No actauallu
[00:39] <sid__> actually
[00:39] <sid__> Python imports a mechanize.browser module
[00:39] <mkarnicki> it will do a REsTful https request, right?
[00:40] <mkarnicki> uu :)
[00:40] <sid__> that parses the emaila and p/w
[00:40] <mkarnicki> aha :) ?
[00:40]  * mkarnicki interested
[00:40] <sid__> and that is your browser page
[00:40] <sid__> technically
[00:40] <mkarnicki> I see
[00:40] <mkarnicki> neat
[00:41] <sid__> Well see the idea is that the keys themselves are given to one app that expire in some time
[00:41] <mkarnicki> what email and password does it parse?
[00:41] <sid__> and only 1 connection is allowed with that key
[00:41] <mkarnicki> (you wrote about parsing)
[00:41] <sid__> My email and p/w
[00:41] <sid__> as in i give that
[00:41] <sid__> AHA
[00:41] <sid__> but
[00:41] <mkarnicki> aha
[00:41] <mkarnicki> ;)
[00:41] <sid__> the page is being
[00:41] <sid__> served
[00:41] <sid__> from the dropbox server
[00:41] <sid__> not any third party
[00:42] <mkarnicki> so you entered that *on* a webpage, right?
[00:42] <sid__> or some such
[00:42] <sid__> Yeah
[00:42] <sid__> technically
[00:42] <mkarnicki> so what's the point, that's what I was saying :)
[00:42] <mkarnicki> you have that trust context to dropbox
[00:43] <mkarnicki> which you use to ensure you're in a safe environment, not some 3rd party app, didn't you?
[00:43] <sid__> Well I have the trust context in the app whose source i know..
[00:43] <mkarnicki> oh well, you're right here
[00:43] <sid__> yeah that is a problem.. The 3rd party...
[00:43] <sid__> thingy
[00:43] <mkarnicki> but not everybody that uses my app will d/l the source to read it ;)
[00:43] <sid__> So
[00:43] <mkarnicki> so you're saying, if I have an opensource app, I could somewhat jump that browser step?
[00:44] <mkarnicki> like the dropbox app does?
[00:44] <mkarnicki> (which by the way is not OS, so it shouldn't do that ;d )
[00:44] <mkarnicki> (or is it OS ? o_O )
[00:44] <sid__> Well the you need to atleast tell dropbox that hey i am really mkarnicki and i have this app
[00:44] <sid__> other wise anyone will just enter your email and all
[00:45] <sid__> But at no point does a *legit* app try to send your p/w
[00:45] <sid__> to theboogey man
[00:45] <mkarnicki> but on Android I could do that in the browser. you know it can fire a browser intent for you and give you the result back
[00:46] <mkarnicki> yes well, my app will be OS. how do I know the dropbox app doesn't send my pass to theboogey man? (and yes, I did provide it at least twice)
[00:47] <sid__> yeah same thing if dropbox could know the MAC of your Android and say yeah its trusted or a cookie perhaps that it can read off then its ok...
[00:47] <mkarnicki> didn't then they get it wrong? instead of fireing a browser, using an embedded one (or doing a RESTful https request themselve?)
[00:47] <mkarnicki> I'm talking about authorizing user against the server, not the other way :)
[00:48] <mkarnicki> ok, so.. what's you're aiming at?
[00:48] <mkarnicki> what's the conclusion?
[00:49] <mkarnicki> because I lost the motive of our (constructive) talk in the meantime :)
[00:49] <sid__> Hmm... Well i think they screen apps they say are legit and all... I dont know about the hosting and stuff weather its Opensource I am guessing its not...
[00:49] <mkarnicki> sorry, my head aches
[00:49] <mkarnicki> Who screens apps :) For Android Market, you sign it yourself.
[00:49] <sid__> well dropbox made an app themselves
[00:49] <mkarnicki> yep, I also guess it's not.
[00:49] <sid__> for android
[00:50] <mkarnicki> well, yes. we know that, because they had huge publicity :)
[00:50] <sid__> oauth is also for printing services and all i guess which access picasa or some such..
[00:50] <mkarnicki> but if it was my gogole credentials to input on that app (let's forget about those neat google-credential features of the app), I woulnd't type it in ;)
[00:50] <sid__> technically
[00:50] <mkarnicki> I didn't know that :)
[00:51] <sid__> it should always open a browser
[00:51] <sid__> clearly showing
[00:51] <sid__> the URL
[00:51] <mkarnicki> that's what I read, yes
[00:51] <sid__> hmm internally this mechanize.browser thing is hiding but again that was a CLI app
[00:51] <sid__> just to experiment
[00:51] <sid__> I was using its architechture to make a ropbix client in JS
[00:51] <mkarnicki> right, I get it
[00:52] <sid__> you use dropbox app written by the dropbox people right?
[00:52] <sid__> there is a bunch in there
[00:52] <mkarnicki> you should stay up to date to see if I don't f**k things up with AndroidU1 hehe
[00:52] <mkarnicki> well, actually I got it only to "research the market"
[00:53] <sid__> Well this U1 protocole
[00:53] <sid__> is it propritary?
[00:53] <sid__> as in looks like not HTTP
[00:53] <mkarnicki> umm.. well, if you can download the implementation, then I don't think so :D I don't know about the rest of the protocol
[00:54] <mkarnicki> but hey, oauth is oauth, don't mix it with storageprotocol
[00:54] <mkarnicki> it's based on OS protobuf
[00:54] <mkarnicki> but it's not me who you should be asking, I'm quite new here :)
[00:54] <sid__> hmm
[00:54] <sid__> thanks
[00:55] <mkarnicki> umm.. my pleasure :)
[00:55] <mkarnicki> thanks for constructive talk
[00:55] <mkarnicki> I hope your 'thanks' wasn't just dismissive ;)
[00:56] <sid__> Nope
[00:56] <mkarnicki> :)
[00:56] <mkarnicki> ok, I gotta go know.. it's 2AM, and I should have played a bit with the code ;)
[00:56] <mkarnicki> till next time
=== cpg is now known as cpg|away
=== cpg|away is now known as cpg
[03:20] <mkarnicki> had some success with storageprotocol fun :) (http://android-u1.blogspot.com). 4:20AM, time for bed. nite all
[06:11] <Exequihell> hello
[06:11] <Exequihell> how r u
[06:11] <Exequihell> ?
[06:43] <wjordan> hey all, i'm putting together a webapp for Google App Engine that would make it possible to create/edit Tomboy/UbuntuOne notes on the iPad through its web browser - including a dynamic-resizing textarea, saving local edits to HTML5 offline storage, etc. if anyone is interested in such an application let me know~
[07:13] <kermiac> wjordan: It would be great if you could add it to the 3rdparty projects page so others that are interested can find out about it :)
[07:13] <kermiac> https://wiki.ubuntu.com/UbuntuOne/ThirdPartyProjects
[07:18] <wjordan> kermiac: thanks for the link! i will add an entry there as soon as i set up a Google Code repository.
[07:18] <kermiac> wjordan: np. thanks for lettings us know of the app you're working on :)
=== cpg is now known as cpg|away
[10:30] <PrebenR> I'm getting: There was a problem completing the download. Try downloading again
[10:30] <PrebenR> but clicking on the link doesn't resolve the issue
[10:30] <PrebenR> where do I go to report the problem so I get the files I have paid for?
[10:40] <kio> hello everybody. I am having a problem with my ubuntu one client on Ubuntu 10.04: i cannot synchronize any file outside the ~/UbuntuOne folder (i click on synchronize to ubuntu one and nothing happens). If I move what i want syncronized in the ~/UbuntuOne folder, everything is very very slow. It took 30 minutes to (only) create 3 folders and it didn't upload any files. Any idea, please?
[11:54] <error> hi all. can you plz tell me how to install ubuntu-one client on kubuntu?
[12:30] <Emry> What command do I issue to get UbuntuOne to do a complete rescan/download of files?  I just got a message on this system saying that synchronization was complete.. And it still has an empty UbuntuOne directory (95mb on the server).
[13:09] <duffydack> Is there an U1 extension to sync bookmarks for chromium?
[14:33] <mkarnicki> duffydack: hmm, I don't think so (yet). but you might want want to try syncing ~/.config/google-chrome/Default/Bookmarks (I don't even know if it has any chance of working ^ ^)
[14:33] <mkarnicki> duffydack: you can also check out http://delicious.com
[14:35] <mkarnicki> Emry: make sure to check out the links from the channel topic. if you won't find an answer there, ask your question here again tomorrow. on sunday, developers are kind of having some rest :)
[14:36] <duffydack> mkarnicki, there must be a plan for one at some point if chromium is to become a default inn ubuntu
[14:37] <mkarnicki> duffydack: no worries :) chromium is open source. integrating that with couchDB shouldn't be a problem
[14:38] <mkarnicki> duffydack: by the way, where do you know from it is to become a default in ubuntu?
[14:39] <duffydack> its not set in stone but..http://www.omgubuntu.co.uk/2010/05/chromium-to-be-default-browser-in.html
[14:40] <duffydack> ok in netbook, but u1 is for netbooks too
[14:41] <mkarnicki> sweet. there are printing issues on chromium?
[14:53] <mkarnicki> duffydack: cool site, that omg ubuntu :)
[15:10] <duffydack> yup :0
[16:05] <ZeroEnna> Hi @ all
[18:09] <marcosroriz> hello guys my ubuntu one doest sync, it's keeps going on and on.. no sync
[18:12] <mkarnicki> marcosroriz: Hi :) I feel like an automated machine. They could use a bot here. It's Sunday evening, come back tomorrow and ask your question :)
[18:12] <marcosroriz> sure :D
[18:12] <marcosroriz> ó/
[18:12] <mkarnicki> I can tell you
[18:13] <mkarnicki> that they are working on it.
[18:13] <mkarnicki> but as you can see, I have no more details. they're about to scale-up the system.
[18:13] <marcosroriz> cool ^_^
[18:13] <marcosroriz> I'm liking u1 more and more
[18:14] <marcosroriz> I'm thinking on helping out (after the gsoc) with syncing apps
[18:14] <mkarnicki> you're taking part in gsoc too :D ?
[18:14] <marcosroriz> it's really cool, and we could use this feature (like syncing xchat (which is just the .folder))
[18:14] <marcosroriz> :)
[18:15] <mkarnicki> i'm writing U1 client for Android during gsoc ;D
[18:16] <marcosroriz> cool ;)
[18:16] <marcosroriz> I'm working for the gnu classpath (gsoc)
[18:17] <mkarnicki> cool =)
[18:17] <marcosroriz> refactoring escher (Impl of a java x11 client) which is used to render graphics and by decoupling with other backends (like directfb)
[18:17] <marcosroriz> ;)
[18:17] <mkarnicki> sounds cool ;)
[18:18] <marcosroriz> it's hard
[18:18] <marcosroriz> :'(
[18:18] <marcosroriz> but cool
[18:18] <marcosroriz> yours too
[18:18] <marcosroriz> I'm learning alot about x11 (which was so ahead of it's time)
[18:18] <marcosroriz> IMO
[18:18] <mkarnicki> it was really?
[18:19] <marcosroriz> yep
[18:19] <marcosroriz> very scalable
[18:19] <mkarnicki> I had tons of docs to read. now I'm about to dig my mind and convert that into code
[18:19] <marcosroriz> well-design architecture
[18:19] <mkarnicki> great =)
[18:19] <marcosroriz> :) /me same
[18:19] <marcosroriz> br
[18:19] <marcosroriz> *brb
[18:38] <trev_> Anybody else have issues downloading from Ubuntu 1 through rhythmbox?
=== cpg|away is now known as cpg
[18:55] <mkarnicki> any hints where I can find Ubuntu (cloud version) icon, svg prefferably ?
[18:55] <mkarnicki> wait.. i didn't check on my PC xD
[18:58] <mkarnicki> didn't find a suitable svg..
[18:58] <mkarnicki> nvm, it's not very important.
[18:58] <trevjs> Anybody have a work-around for the sync problem when purchasing new music through rhythmbox?
[19:02] <mkarnicki> trevjs: such issues are often dealt on one-by-one basis. you might wanna ask that question tomorrow (it's sunday evening ;) )
[19:02] <mkarnicki> trevjs: not that I know the answer. guys might just see that tomorrow :)
[19:07] <trevjs> mkarnicki: ok
[20:47] <duffydack> are the servers bogged down again ?  its very slow to do anything.  Im waiting more than 5mins for a public url for a file.
[20:51] <apachelogger> whom should one be talking to about implemenation of u1 music store into amarok?
[20:52] <beuno> duffydack, yeah, some of the database servers started acting up last week, we're working out what configs they like to eat
[21:06] <maccam94> one of my clients is having an issue with the ubuntu one music store. she gets an error about the gnome keyring. is this a known issue?
[21:09] <beuno> maccam94, it is not
[21:20] <maccam94> here is the error she sent me: http://pastebin.com/uSSHnpK6
[21:20] <maccam94> it looks like there's a problem with ubuntu one accessing the gnome keyring
[21:42] <rotten777> I still can't delete folders from u1 :\... u1sdtool --delete-folder=<id> just sits there and doesn't effect anything
[21:47] <duffydack> just received this error when viewing a public shared url http://pastebin.org/272250
[21:51] <beuno> duffydack, wow, please file a bug about that
[21:51] <duffydack> beuno, it took like 5-7 mins to get the url as well but thats the servers I guess
[21:53] <duffydack> I`m not very good at filing bug reports..  whats the link?
[22:03] <clausen> Firefox can't establish a connection to the server at localhost:51151
[22:04] <clausen> I suppose this means I disabled a daemon somewhere...
[22:04] <clausen> any ideas?
[22:04] <clausen> (I get this while trying to sign into ubuntu one)
[22:17] <donpdonp>  'Connecting you to the Ubuntu One Music Store...'  sits there forever. no 'back' button either. sigh.
[22:19] <clausen> yeah, me too
[22:19] <donpdonp> im trying to support ubuntu and at the same time save $1 from the amazon mp3 store :)
[22:20] <clausen> have you got an ubuntu one account?
[22:21] <donpdonp> yup
[22:22] <donpdonp> rebooted rhythmbox, and the purchase step is working now
[22:23] <rotten777> 2010-05-23 17:22:35,850 - ubuntuone.SyncDaemon.sync - INFO - -:-:- - ['-'::'-'] ''/home/matthew/.config/gpodder/database.sqlite-journal'' | Called delete_on_server (In: T:NONE:F)
[22:23] <clausen> ah, you got it?
[22:23] <rotten777> Why do I keep getting that over and over and over and over in my syncdaemon log?
[22:23] <donpdonp> select payment says to use paypal to avoid the fee of a US card buying from a UK merchant, but paypal is not a listed option.
=== cpg is now known as cpg|brb
=== n is now known as Guest93095
[23:19] <qhdevon43> hey guys
[23:19] <qhdevon43> so the ubuntu one is down right?
[23:27] <mkarnicki> anybody here to know the oauth u1 authorize URL? is it one.ubuntu.com? or one.ubuntu.com/auth ? (.com/auth/login ? )
[23:30] <rotten777> mkarnicki, https://one.ubuntu.com/account/ ?
[23:31] <mkarnicki> rotten777: you know what I'm asking about, right? :) I mean, if you're just guessing you rather got it wrong.
[23:31] <mkarnicki> it doesn't look like oauth url ;)
[23:33] <rotten777> https://login.ubuntu.com/+login
[23:35] <mkarnicki> rotten777: really :D ? how did you know that!? :)
[23:35] <mkarnicki> ouu.. wait
[23:36] <mkarnicki> rotten777: I think it's still not the address I'm looking for. I suspect https://one.ubuntu.com/auth or https://one.ubuntu.com/auth/login
[23:36] <mkarnicki> I'll check that out, when I have the functionality implemented.
[23:36] <rotten777> what are you looking for
[23:36] <mkarnicki> if it's wrong, I'll pop the question again
[23:36] <rotten777> the machine adding url?
[23:36] <mkarnicki> rotten777: you know what is OAuth, right?
[23:36] <mkarnicki> rotten777: no ;)
[23:37] <rotten777> yes no clue haha
[23:37] <mkarnicki> I'm looking for a URL to make a RESTful HTTPs request to authorize against U1 server with OAuth ;)
[23:37] <mkarnicki> :)
[23:38] <mkarnicki> I'm guessing it may be one.ubuntu.com/auth . we'll see. it won't work, if I'll get it wrong :D
[23:38] <rotten777> gl
[23:38] <mkarnicki> rotten777: I'm looking for a ubuntuone URL similar to the twitter one (which isn't visibile here anyway), but that's the example: http://www.youtube.com/watch?v=25o0b2aEw0E
[23:38] <mkarnicki> rotten777: thanks :)
=== cpg|brb is now known as cpg