shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

245
active users

#ap

0 posts0 participants0 posts today

Air Canada suspends restart plans after union defies return to work order

from #NPR
August 17, 2025. 2:38 PM ET
By The #AssociatedPress #AP

The Canada Industrial Relations Board ordered airline staff back to work by 2 p.m. Sunday after the government intervened and Air Canada said it planned to resume flights Sunday evening.

#Canada's largest #airline now says it will resume flights Monday evening. #AirCanada said in a statement that the union "illegally directed its flight attendant members to defy a direction from the Canadian Industrial Relations Board."

"Our members are not going back to work," #CanadianUnionOfPublicEmployees national president Mark Hancock said outside Toronto's Pearson International Airport. "We are saying no."

npr.org/2025/08/17/nx-s1-55054

#WorkersFightBack
#SolidarityWithFlightAttendants
#news #press #workers #union #labor #strike #politics

Kids, this is how framing works.

The law is not a football game. She is not a "Trump foe." She is a prosecutor who successfully executed her duty to prosecute a criminal under the laws of her state. However, she is not Aryan, and all who aren't are subjected to racist casting by mass media, whether deliberate or not.

Trump is a convicted felon, a foe of the Constitution of the United States, and AP is shilling for him when they write crap like this.

"Convicted felon Donald Trump abuses power to attack a prosecutor who dared challenge a fascist dictator."

flipboard.com/@associatedpress

Associated Press - By BEN FINLEY · Justice Department targets New York attorney general, a Trump foe. Here's what to knowBy Associated Press - By BEN FINLEY
Continued thread

The full US Court of Appeals for DC Circuit kept in place a June 6 decision by a divided 3-judge panel that the #Trump admin could legally restrict access to the #AP to news events in the Oval Office & other locations controlled by the White House including Air Force One.

The D.C. Circuit order denied the AP's request that it review the matter, setting up a possible appeal to the #SCOTUS.

WTF

US appeals court won't lift limits on #AssociatedPress #access to White House

A US appeals court on Tuesday declined to lift restrictions imposed by #Trump's admin on White House access by #AP #journalists after the #news organization declined to refer to the body of water long called the Gulf of Mexico as the Gulf of America as he inanely prefers.

#law #democracy #Constitution #FreeSpeech #FreePress #WHCA #WhiteHouseCorrespondentsAssociation
reuters.com/legal/government/u

Concept for discussion: Replacing HTTP Signatures with Bearer Tokens for ActivityPub Federation

Curious what other people think about this idea. What if federation security was re-worked to use target-assigned
bearer tokens to authenticate GET/POST requests? This would remove the need for complicated signing schemes and reduce system load under heavy traffic bursts (as no cryptography is required).

A basic implementation could look like this:
1. When instance A (
a.example.com) first attempts to federate with instance B (b.example.com), a POST request is made to a dedicated registration endpoint. (for discussion, we'll say it's https://b.example.com/activity-pub/register-instance). This request includes fields necessary for verification, including the source domain name, target domain name, and a securely-generated verification token. Other metadata could be included to allow instance B to selectively allow/prohibit federation based on other criteria, but this is optional.
2. Instance B makes a POST request back to a dedicated verification endpoint on instance A (for discussion, we'll say it's
https://a.example.com/activity-pub/verify-registration). This request must include the target domain name and verification token provided in step 2.
3. Instance A checks the verification token (and verify that it matches the target domain name) and return a successful value.
The verification code must be invalidated after this call!
4. Instance B, after verifying instance A's request, returns a securely-generated
federation key back to instance A. This federation key is a bearer token used to authenticate all requests from instance A to instance B. This key must be unique to instance A!
5. Instance A completes the original request with the
Authorization header set to Bearer {federation_key}.
6. Instance B receives the request, detects the federation key, and checks it against the list of registered instances.
7. If the key does not exist or A has been defederated, then a
403 Forbidden error is returned.
8. If the key is expired or revoked, then
401 Unauthorized error is returned. Upon receiving a 401 error, instance A should start over from step 1 to re-authenticate and complete the request with a new token. This process should not be repeated for recursive failures!
9. If the key is approved, then a
200 OK response or 202 Accepted response is returned, and A can consider the request as successful.

Advantages versus HTTP Signatures:
- No cryptography requirements.
- Simple logic, no edge cases around HTTP query parameters or header order.
- Equally effective for all request types.
- Keys can be easily revoked or rotated.
- Supports authorized fetch and defederation use cases "by default".

Disadvantages versus HTTP Signatures:
- Breaks the actor model - instances are required as a first-class concept. (but really, the actor model is basically dead already. you can't even federate reliably without a WebFinger server, at minimum.)
- Requires multi-request "handshake" before communication. (but this is already required in practice, since a signature can't be validated without first requesting the signing actor.)
- Out-of-band protocol - communication can't happen over ActivityPub / ActivityStreams because this is a prerequisite to authenticate any request. (but again, we already require WebFinger and some software requires NodeInfo for full support.)

So, what are your thoughts? Good idea? Bad idea? Did I miss something? Please let me know, I welcome replies here!

#ActivityPub #AP #Federation

MDN Web DocsHTTP authentication - HTTP | MDNHTTP provides a general framework for access control and authentication. This page is an introduction to the HTTP framework for authentication, and shows how to restrict access to your server using the HTTP "Basic" scheme.

UK, France and 23 other countries say the war in Gaza ‘must end now’

[now let's see if they do something]

from #AssociatedPress #AP #APNews
By SYLVIA HUI and JILL LAWLESS
Updated 1:05 PM EDT, July 21, 2025

LONDON (AP) — Twenty-five countries including #Britain, #France and a host of #European nations issued a joint statement on Monday that puts more pressure on #Israel, saying the war in #Gaza “must end now” and Israel must comply with international law.

The foreign ministers of countries including #Australia, #Canada and #Japan said “the suffering of civilians in Gaza has reached new depths.” They condemned “the drip feeding of aid and the inhumane killing of civilians, including children, seeking to meet their most basic needs of water and food.”

The statement described as “horrifying” the deaths of over 800 #Palestinians who were seeking aid...

apnews.com/article/europe-isra

#StopStarvingGaza
#Palestine #MiddleEast #WestAsia #EU
#news #press #politics @palestine

Summer in the UK usually involves a visit to the pub 🍻

At the Newsmast Foundation, we're spending our summer at a different kind of pub - Activity Pub (but yeah, we'll probably be at the other kind once or twice too)!

The structure of the AP protocol means social is in its DNA, just like it is at your local! Our hope is that, just like your local, AP can provide a hub for your community too 🏡

Good still exists in America...

"A diverse group — faith leaders, college students, grandmothers, retired lawyers and professors — has been showing up at immigration courts across the nation to escort immigrants at risk of being detained for deportation by masked ICE officials."

apnews.com/article/immigration

#Immigration #News @apnews @apnews_bot #AP #APNewsroom #Politics #USPolitics #USPol #Project2025 @apnews

The latest version of Elon Musk’s artificial intelligence chatbot Grok is echoing the views of its billionaire creator, so much so that it will sometimes search online for Musk’s stance on an issue before offering up an opinion.

The unusual behavior of Grok 4, the AI model that Musk’s company xAI released late Wednesday, has surprised some experts. #ap #tenessee jed