barredo
commented
1 year ago Thank you!!
I will carefully check about the Tor stuff
Also, definitely will add a privacy policy, internal stuff, what's stored in the database, what's not, user terms and more. You're right.
Tor .onion service domains which some instances like masto.social offer do not work. Some people have also reported their instances, like phpc.social, not being recognized. I've seen you suggest to try later/reload etc. but none of it helps.
In the future it would also be nice if you offered an .onion address yourself. Since this is primarily a client-side web-app, it wouldn't take up too many resources or be a concern.
Lastly, you should be more upfront about what exactly goes through or is sent to the server - even if it's just the OAuth process, and add a privacy policy.