this post was submitted on 19 Mar 2025
44 points (94.0% liked)

Voyager

6206 readers
263 users here now

The official lemmy community for Voyager, an open source, mobile-first client for lemmy.

Download on App Store

Download on Play Store

Use as a Web App

Download on F-Droid

Rules

  1. Be nice.
  2. lemmy.world instance policy

Sponsor development! 👇

Number of sponsors badge

💙

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
44
Voyager difficult to start using for existing Lemmy users (sopuli.xyz)
submitted 3 days ago by [email protected] to c/[email protected]
32 comments fedilink hide all child comments
 

I keep hearing of people who have used Lemmy for a few days or a few weeks and want to start using a mobile version – often Voyager.

They open Voyager for the first time, and get a screen with a button for logging in. They get a choice for which Lemmy instance to join, but no place for entering their existing username or password.

I've told them that "in the first screen there is a button that is very difficult to notice, allowing you to use a pre-existing Lemmy username. Find that semi-hidden button, click it, and you can login."

It is of course a working workaround to pre-emptively tell people that the button exists, is just very well hidden, and needs to be clicked by most people who download Voyager. But still, it would be cool if the screen for new users could be altered so that the ability to log in with a pre-existing username was equally visible as the choice to create a new account!

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 2 days ago (1 children)

I validate lemmy servers by asking the server if it's a lemmy server. If the protonmail.com is malicious and says, "sure I'm a lemmy server" then credentials would be sent to it, which is not good

[–] [email protected] 1 points 2 days ago* (last edited 2 days ago) (1 children)

If I typed the wrong domain here and it turned out it’s a malicious server pretending to be a Lemmy server, then what happens?

Also, wouldn’t it be highly unlikely that the users email domain is malicious?

[–] [email protected] 4 points 2 days ago (1 children)

You explicitly select the instance, so there is no question of what domain Voyager will contact. Also, on the next screen where you enter credentials, you see the domain and its icon, and you can click to open in the browser to further confirm that you are connecting to the correct instance (if you accidentally select the wrong one)

[–] [email protected] 1 points 1 day ago (1 children)

I can also enter the instance name myself on that screen and then it checks if it’s a Lemmy server, right?

So if there was a “login with username”, you would type your username@instance, then Voyager would check the domain and show the next page you are talking about, with a pre-filled username.

[–] [email protected] 4 points 1 day ago* (last edited 1 day ago) (1 children)

No, that wouldn't work for aforementioned reasons.

Edit: Also even if you did ignore the security concerns, this approach wouldn't work at all with OAuth flow that is planned. https://github.com/LemmyNet/lemmy/issues/1368

[–] [email protected] 1 points 1 day ago

So I can’t type in a domain manually?