Open Gozala opened 1 year ago
I think this was also in the context of @mikeal saying we could treat attestations by a site that the current session is owned by user with email abc@xyz.com as enough to start the process you describe here. So I guess we might limit access to the PUT api to trusted users?
In the context of user-owned user-paid spaces (like w3ui default flow) maybe we could use the idea of a temporary space to allow users to upload and interact before they click the email link.
I think this was also in the context of @mikeal saying we could treat attestations by a site that the current session is owned by user with email abc@xyz.com as enough to start the process you describe here. So I guess we might limit access to the PUT api to trusted users?
It was in the context, however I was making a case that we don’t need that hurdle. As I mentioned in the call I can already email you a file if I know your address and I don’t anyone’s permission to do so.
Why not make web3.storage just as easy and convenient. That way it could be used in contexts where user doesn’t even need to be logged into anything, suddenly making it perfect fit far all the open source projects out there
This is an idea that came up during the call today:
curl -X PUT https://api.web3.storage/inbox/alice@web.mail -T file.txt
Why do this ?
What not do this ?