this.$gun.get('myfiles').get(item.name).put(code)and decode it locally......
**1.** If you want to build a forum, and any user can post to the forum, but you don't want any of the data to be public in GUN how would you go about storing it? Like you want to be able to let users query their own posts but also want to be able to return all posts to someone just browsing, and users should only be able to edit their own posts, and only the application itself should be able to read ALL the posts. Based on the security stuff earlier mentioned, I actually think this could lead to some pretty bad vulnerabilities. In order to associate all the posts belonging to a specific forum you would have to store that association, but if so that means that any peer who can write to the forum would have to be able to know the id/key of the forum to add or remove from it, so theoretically you could just overwrite the whole thing, unless the server has some protections against that. And even if the server has protections, someone could insert a malicious server that could find the key of the forum and remove it or alter the data. Recapulating, like I just want to know how you would go about having shared data that can only be readable by the application where pieces of it can only be editable by individual users. **2.** How do you prevent a malicious peer/server from removing or editing stored data by replacing the reference. My impression of GUN based on the docs is that it is great if you want to store data specific to individual users, but building a shared state that is private that the app can read I really don't understand how that can be done.
user.trust()api is broken/ not working with the current gun release (0.2020.520). I'm wondering if there is any workaround to replicate this functionality ? i.e to give write access to a private user's graph. thanks in advance
520broke the Todo Tutorial :( extremely embarrassing and I need to get that fixed. If you launch a local peer or your own peer I think it should work tho. Thank you for reporting.
user.trust(alternatives with SEA directly ( https://gun.eco/docs/SEA ) , they're mostly on discord now tho so would you mind joining there & I'll tag them for you?
user(pubkey)the data on their graph will by default be cryptographically signed but not encrypted (unless you encrypt it) so anyone can read but not edit/tamper.
user()could be any shared org, room, entity, institution, etc. ... but note!
unset(isn't even an official API :laughing: I don't know how it works, maybe somebody else in community does tho. What I do is just
gun.get('list').get(key).put(null)as all set does is a
gun.get('list').get(key = randomID()).put(item)underneath anyways.
trustway below the CPU scheduler, JSON parser, DHT, and base User API improvements & bug fixes. So yeah :P unless you want to contribute <3 <3 based off my spec/API design, assume its gonna be a long time.
@cuterajat26_gitlab @deztopia @schicks are you able to join the http://chat.gun.eco discord? Most of the community switched there months ago, but I've always been worried about forcing people to use X or Y platform and not wanting fragmentation to happen.
Long time everyone @amark just continuing research (now into first-order logic languages)
Is there some kind of identification protocol you'd like to see for identifiers or locators in any language for a gun call?
e.g. HTTP:// <locator>
e.g. gun:// <ip?> | <identifier?> | <pool?>
(hoping we can get some kind of browser-default WS call to any gun database that way)
soulnever a domain or specific server, as the soul is the lookup for it, the servers shouldn't matter at the end of day.