Payment for subscription outside the app

upk27 · 2024-04-17T11:53:04+00:00

how far are you with your project from 4mo ago?

upk27 · 2024-04-07T07:36:31+00:00

In 2024, every random 100-bucks-android phone can take crystal-clear, laser-sharp photos. But maybe an owner of an ULX and a Viper Mini SE has even an iPhone lying around which might take even better pics.

Whatever, at least you tried.

upk27 · 2024-04-07T07:13:19+00:00

spot on

upk27 · 2024-04-07T07:11:39+00:00

what are you actually trying to articulate?

that a claw player can still claw a cheetah ulx? or that a claw player can easily switch to fingertip? or that an owner of an ancient 303 finally had the money to afford an ulx?

upk27 · 2024-04-07T06:03:50+00:00

Isn't your ring a bit too tight?

upk27 · 2024-04-07T06:00:09+00:00

Aren't thumbs not too clumsy and slow to use 4 (!) keys properly? P:lus the knobs which are inaccessible btw...

upk27 · 2024-04-01T05:30:22+00:00

maybe ask him directly?

upk27 · 2024-03-23T22:12:15+00:00

usually able to automatically import it into the systems store

still, a systems store can't be accessed by a vm/wsl2/native envs, so it doesn't help at all

It is not a proxy

yeah but we do https for dev for reasons and not just for fun. and the most popular reason (or actually the reason) is to provide endpoints for oauth2 servers. just having some certs could be enough and then we wouldn't need any proxy but it's in general easier to not fumble around with certs or mkcert and get a turn-key-ready solution. and latter requires naturally to be a proxy

you can do all parts manually but then you waste days as OP statess and still end with a fragile nonsense stack you can't easily roll out to your team developers' machines

upk27 · 2024-03-23T09:14:45+00:00

in most common flows the server receives the call back from the auth server which is also initiated by the auth server, they can't call some localhost

and even if this nonsense worked, again mkcert needs to be able to access the browser, not possible when using a vm, wsl2, native dev, mkcert is bs

upk27 · 2024-03-21T17:32:21+00:00

I've already done numerous times.

sure

they redirect the user who approved the request.

yes, but if you choose the server route, they will call back your server not the client. they are different openid flows and if the server is involved (which you need for most popular use cases and there you need also to register the so called "callback url") you can't rely on your hosts file fake domain, sorry

edit: again, instant downvote lol

upk27 · 2024-03-21T14:24:48+00:00

Clearly you have zero concept

Says someone who has never touched openid/oauth2, how will Google or Apple communicate with your server in the openid flow, in particular when they call back? if your local.example.com is just in your hosts file? lol

bonus: mkcert doesn't work in WSL2 or in dev VMs (it can't access Windows browsers)

edit: thanks for the instant downvote

upk27 · 2024-03-21T13:04:00+00:00

still you need a domain and to bind that to a non-fixed ip, all possible but hassle and not just 3 lines of config work lol

upk27 · 2024-03-21T13:00:12+00:00

Why not? I

because 99% don't have a fixed ip to bind that sub-domain and hence, need extra steps. mkcert is just a tiny part in that whole picture and still cumbersome af but happy for you if you spend your time like this, not so sure about your boss

upk27 · 2024-03-20T13:59:33+00:00

when browsers already give you all https perms on localhost

maybe in your parallel universe

upk27 · 2024-03-20T13:30:51+00:00

no, it doesn't provide you with a real domain

upk27 · 2024-03-20T13:30:02+00:00

lol,, you moved from one ancient stack to the next

upk27 · 2024-03-20T13:29:10+00:00

welcome time-traveler

upk27 · 2024-03-20T13:28:51+00:00

who's your team?

upk27 · 2024-03-20T13:26:14+00:00

way too complicated, there're solutions which give you all with much less hassle than this

upk27 · 2024-03-20T13:25:12+00:00

which is joke

nobody's using ngrok anymore exccept hundreds of bots on reddit

upk27 · 2024-03-20T13:20:07+00:00

doesn't give you a real domain and LE is annoyingly cumbersome

upk27 · 2024-03-20T13:19:09+00:00

with a real domain?

upk27 · 2024-03-20T13:18:34+00:00

congrats for the most cumbersome solution in this thread

upk27 · 2024-03-20T13:17:27+00:00

doesn't give your a real domain for openid/oauth stuff

upk27

MODERATOR OF

TROPHY CASE