New UI Alternatives
After looking at our UI for a while I thought, someone will have created something special for Lemmy already. So I opened our development server, told it to get the bag rolling and investigated all the apps people have created.
Have a play around, all should be up and working. If there are other apps, ideas, or ways you think reddthat could be better please let me know!
Enjoy 😃
P.S. External UIs are a security issue
I would like to let everyone know that if you are using an external non-reddthat hosted UI (such as wefwef.app for example) you have given them access to full use of your account.
This happens because Lemmy checks for new notifications by performing GET requests via the api with the cookie in the URL field. https://instance/api/v3/user/unread_count?auth=your-authentication-cookie-here. This URL shows up in the logs of the third-party user interface. So if the third party was nefarious, they could look at their logs and get your cookie. Then they can login to your account or perform any requests.
So please only use the Reddthat user-interfaces as listed here & the main sidebar.
(If you are worried, you can log out of the thirdparty website, which will invalidate your cookie).
Tiff
https://old.reddthat.com
https://alexandrite.reddthat.com
https://photon.reddthat.com
https://voyager.reddthat.com
PS. I really like alexandrite.
😱
Well I am glad you are still here. I’d certainly never change the default UI unless the third party was better in every way.
At this time, none of them allow me to administrate Reddthat effectively either. Alexandrite doesn’t have image uploads, Photon doesn’t have an easy way to ban users and voyager is pretty much mobile only.
On that note I know exactly what happened and I’ll be able to fix it within the hour.
Edit: Fixed www.reddthat.com -> reddthat.com :)
To ban users in Photon, go to the user’s user page, and click the moderation button.
Xylight! Thanks for the hard work on Photon!
By no means is it a criticism, as it works exactly like the regular UI. If I could Ban (and include reason) and Remove Content directly without having to go to the users’ profile that would be icing on the top.
Example from Alexandrite: (The most tame report in the past couple weeks…)
