Recursive Endpoints #2175
Recursive Endpoints #2175
Conversation
|
Deplaning in Lisbon at the moment, so I can't give this a proper review, but the additional endpoints need to be combined into one CSP headers, instead of adding new ones. CSP headers are checked one at a time, and all must pass. So it should be: What's the difference between block height and block count? I'd only have one, if the only difference is one starts at zero and the other at one. |
Ah ok, gotcha. Will change later because I'm heading out now.
Yes, that's basically the difference. We use |
|
I vote use Block Height, like the .bitmap standard. |
|
Personally I prefer "/404.bitmap:" or "/404.bmp:" or even "/h:" (for height) rather than "/blockheight:404" Every bit matters right? Maybe there can be a "shortcuts" update to squash the bits across the board. The whole point of http://bitmap.land is to find the most efficient solution for spatial bitcoin meta and save as many bits and bytes where we can so that's my input as a contributor to that project. |
|
Hey, can we also make available inside inscriptions the inscription number and id? I think those are cool as well to be used as seeds for generative art algos (maybe arguably possible by getting for example from the URL? But better to have this as an API) |
I don't se a benefit for providing an API to retrieve the inscription ID, since it can already be fetched from the URL via JavaScript. Inscription numbers are somewhat problematic, given that cursed inscription numbers are permanently unstable, and bugs in the indexer could make even existing inscription numbers unstable, so I don't think they should be exposed via an API. |
|
If we exclude inscription number of the equation, my suggestion makes even less sense since you can use the id from the URL of the iframe, yes. Okay with it. |
|
What about an endpoint that references a taproot address and return an array of inscription Ids that the address holds? |
|
Can we expose the sat number, name, birthdate, and data about the sat the inscription is on? Perhaps expose output first mapping to the sats in the output and then being able to reference data about the sats inside of the output. Also if we can get more data from ordinals index exposed such as sat info, date it's inscribed, etc, can we have the inscription reference itself and its own data? As of the time of inscribing we don't know the inscriptionID of the inscription at hand. Not sure how this will work but absolutely would love to reference future non-existing inscriptionIDs too somehow (need to think this one through) |
For inscription id, you can get using JS from the URL already. But agree that having sats info is also cool for gen art |
We do not index addresses at the moment so can't add this endpoint easily. We will probably add some more endpoints in the future and if we have a table for addresses by then we could add that. |
Agreed, sats info would be quite nice. |
|
Hi Team, outside of the issues with application layer presentation and security domains for browsers like safari, in contemplation of this upgrade I think there may be a more fundamental concern with regards to scalability: Currently ordinals are self contained entities, roughly equating to a single session to transfer from either ordinals.com or a canonical mirror like magic eden. While other proprietary display sites (ord.io / unisat / ordessy etc) already allow for insecure arbitrary external includes (libs or data exposing viewers to security risks which Recursion aims to minimize) those calls are often being made minimally and assuredly orders of magnitude fewer than once canonically allowed. After delivery of recursion, the simple loading of a PFP or other composite ordinal will hit the hardcoded and allowed recursion locations at a rate multiple orders of magnitude higher than currently. Example a 10K pfp made up of 10 traits each, all of which being pulled from ordinals.com data at each load (10x sessions) Example a generative art design utilizing p5.js pulling from ordinals.com at each load (multiple megs) and possibly other large libraries to create the composition, all of which would necessarily come from the limited bandwidth ordinals site vs properly equipped CDN's used to serve such packages to the global internet audience. It seems this compos-ability, re-introduces very formative web2 issues with scale and performances that may not have been accounted for when considering static or self-contained digitial artifacts as they exist canonically today. Are there plans to fund and amplify infrastructure to account for this to avoid DDoS of the allowed paths? I believe a small increase in implementation of this standard could elsewise DDoS the front end APIs and ordinal content delivery sites. Thanks for your consideration! Happy to chat more on discord / twitter or github if helpful! We'd love to see this implemented successfully, a first step might be allowing only limited size strings or content to be composed. ? |
|
@Xen0ph0n that's a good point. For example one of the recent uses of recursion I saw was a visualizer for a Ordinals NFT collection (100 supply) which would make 100 requests to /content/ |
This is a great point. Most of the data (if not all) is static content. It can all be cached into a CDN and scale wouldn't be much of an issue especially if the team is using something like CloudFront or Cloudflare. However, I have no idea how they architected their tech infra. |
|
Yes, the With recursive inscriptions we are basically serving small websites that request a bunch of static resources. From a load/DoS perspective nothing has changed since those endpoints could've been hit before as well. Please let me know if I have wrong assumptions in my reasoning here, appreciate all feedback! |
|
Now that I understand this better, I think the current namespace is too generic. It's very likely that Even more ideal would be to add This way, if I had an existing infrastructure, I could just target all paths with |
|
I don't think collision will be a problem since the full path would have the form Additionally, we already use the The endpoints/paths should be as short as possible to save bytes but at the same time should be decipherable by humans. This way navigation and viewing of the explorer behaves similar to building recursive inscriptions. The building blocks for recursive inscriptions should be discoverable, if that makes sense. |
| @@ -749,7 +792,7 @@ impl Server { | |||
| ); | |||
| headers.append( | |||
| header::CONTENT_SECURITY_POLICY, | |||
| HeaderValue::from_static("default-src *:*/content/ 'unsafe-eval' 'unsafe-inline' data:"), | |||
| HeaderValue::from_static("default-src *:*/content/ *:*/blockheight *:*/blockhash *:*/blockhash/ *:*/blocktime 'unsafe-eval' 'unsafe-inline' data:"), | |||
There was a problem hiding this comment.
why are there two blockhash entries here?
There was a problem hiding this comment.
also, why is the blockcount endpoint not permitted? Though I guess it can be inferred from blockheight + 1
There was a problem hiding this comment.
nvm regarding first question, I see that one ends in a slash and not the other
|
@raphjaph do you have a plan to add more recursive endpoints: |
|
For the sat recursive endpoint, I think it makes sense to have seperate endpoints for the sat details and the inscriptions associated with a sat. Perhaps |
At the moment (not deployed to ordinals.com yet) you can reference the content of other inscriptions through the
/content/:inscription_idbut it would also be really cool to reference bitcoin internal metrics. So I propose the following as well:/blockhash: current block hash/blockheight: current block height/blocktime: current block time as UTC timestampOf course there are a bunch of others we could add, so I'm open to suggestions. Also it should be possible to get the block hash at a specific height through
/blockhash/:height. Analogous for the other endpoints.@casey We have a
/block-countendpoint. Should I change it to/blockcountto match the others?