←back to thread

Local-first software (2019)

(www.inkandswitch.com)
863 points gasull | 3 comments | | HN request time: 0s | source
Show context
dtkav ◴[] No.44474504[source]
We need a term for a viable business model to pair with local-first tech.

I've been working on Relay [0] (realtime multiplayer for Obsidian) and we're trying to follow tailscale's approach by separating out the compute/document sync from our auth control plane.

This means thats users still subscribe to our service (and help fund development) and do authn/authz through our service, but we can keep their data entirely private (we can't access it).

[0] https://relay.md

replies(2): >>44475534 #>>44475776 #
trinsic2 ◴[] No.44475776[source]
Are you requiring a google account for file/folder based auth on a per user bases for a vault? Not to keen on using a 3rd party for this kind of thing.
replies(1): >>44477816 #
dtkav ◴[] No.44477816[source]
For our free/individual plan we do use OAuth2 providers (currently only Google is enabled, but considering others), and can support other methods for larger teams (like oidc).

Originally the idea was to keep everything within the Obsidian UI so things like username/password didn't make sense (no password managers in Obsidian).

We initiate the OAuth2 login flow from within Obsidian. I guess we could add an extra click that takes you to our website first and then add support more auth methods from there. I don't really want it to feel like a web app though.

I'd love to hear your take. Which login method do you think is both simple and could be coherently used within Obsidian on all platforms?

replies(1): >>44483589 #
1. trinsic2 ◴[] No.44483589[source]
What's that particular auth for again? Is it to distribute permissions to the shared folder user you add?
replies(1): >>44484572 #
2. dtkav ◴[] No.44484572[source]
Yes, it is for shared folder permissions, as well as identity for collaboration.
replies(1): >>44506282 #
3. trinsic2 ◴[] No.44506282[source]
Im more of an obsidian dataview/templater guy so I don't know that much about back end stuff like this but is this helpful: https://geekflare.com/cybersecurity/open-source-oauth-soluti...

My understanding is maybe use an open source provider to mitigate vendor lock in?