I have two YouTube accounts, jwz and dnalounge, and I'm using the oauth API with both of them to automate uploads and stuff. With the DNA account, I am getting a refresh_token that lasts forever. But with the jwz one, I am getting a refresh_token that can only refresh the access_token for a week, and then I have to log in again. Any ideas what fuckery is afoot?
The DNA token does this:
GET https://www.googleapis.com/oauth2/v1/tokeninfo?access_token=DNA_ACCESS_TOKEN_1 => access_type => "offline", audience => "DNA_PROJECT_ID.apps.googleusercontent.com", expires_in => 3574, issued_to => "DNA_PROJECT_ID.apps.googleusercontent.com", scope => "https://www.googleapis.com/auth/youtube" POST https://accounts.google.com/o/oauth2/token client_id => "DNA_PROJECT_ID.apps.googleusercontent.com", client_secret => "DNA_CLIENT_SECRET", grant_type => "refresh_token", refresh_token => "DNA_REFRESH_TOKEN" result: access_token => "DNA_ACCESS_TOKEN_2", expires_in => 3599, scope => "https://www.googleapis.com/auth/youtube", token_type => "Bearer" token expiration 0:00:59:34 => 0:00:59:59
but the jwz token does this:
GET https://www.googleapis.com/oauth2/v1/tokeninfo?access_token=JWZ_ACCESS_TOKEN_1 => access_type => "offline", audience => "JWZ_PROJECT_ID.apps.googleusercontent.com", expires_in => 3413, issued_to => "JWZ_PROJECT_ID.apps.googleusercontent.com" scope => "https://www.googleapis.com/auth/youtube", POST https://accounts.google.com/o/oauth2/token client_id => "JWZ_CLIENT_ID", client_secret => "JWZ_CLIENT_SECRET", grant_type => "refresh_token", refresh_token => "JWZ_REFRESH_TOKEN" result: access_token => "JWZ_ACCESS_TOKEN_2", expires_in => 3599, refresh_token_expires_in => 201701 scope => "https://www.googleapis.com/auth/youtube", token_type => "Bearer", token expiration 0:00:56:53 => 0:00:59:59 refresh expires in 2:00:01:41
Maybe I'm logging in wrong? I log in with user/pass/TOTP "jwz@jwz.org" which takes me to the channel "@yesthatjwz" then I load:
https://accounts.google.com/o/oauth2/auth?client_id=JWZ_PROJECT_ID.apps.googleusercontent.com&redirect_uri=https://localhost&response_type=code&scope=https://www.googleapis.com/auth/youtube&access_type=offline
and it asks me to choose my "brand" account. There are three listed: "DNA Lounge", "yesthatjwz", and another "jwz" account. The selection that works is the "yestthatjwz" one. The mystery account is @alsojwz1853 and I don't know why it exists but I'm afraid to delete it in case that breaks something.
When I sign in with "jwz@jwz.org", it takes me directly to my real channel, @yesthatjwz.
When I sign in with: "yesthatjwz" or "youtube@jwz.org" or "yesthatjwz@jwz.org", it asks me to select a channel: @yesthatjwz or "also jwz" @alsojwz1853.
Trying to sign in with "alsojwz1853" says "could not find your account".
Another clue: both the "DNA Lounge" and "yesthatjwz" accounts work with or without at-signs, /dnalounge, /@dnalounge, /yesthatjwz and /@yesthatjwz, but the other one only works as /@alsojwz1853, not as /alsojwz1853. Maybe because they are old accounts that pre-date YouTube being purchased by Google? Another difference is that the thing in console.cloud.google.com/auth/clients/*_PROJECT_ID for DNA is an "iOS client" created in 2014, but for "jwz" is a "Desktop client" created in 2024. There don't seem to be any settings.
But I still don't understand why the DNA and jwz accounts have different behavior.
The bully's henchmen have demanded, from various states, databases with a lot of information about each registered voter, and sued some states that would not hand them over. A judge decided one suit in favor of Michigan's refusal.
In 2021, China banned fishing entirely in the Yangtze River. Since then, the quantity of fish in the river has doubled.
* Arizona senator Mark Kelly warned that the Trump administration's failed attempt to secure an indictment against him and five other Democratic lawmakers for a video urging service members to resist unlawful orders was a "master alarm flashing for our democracy."*
Protesters who damaged weapons in an Elbit factory were acquitted of the most serious charges, which were clearly trumped up. On the lesser charges, the jury could not reach agreement so they face a retrial.
Bondi told Congress that the Ministry of Justice has a secret list of "domestic terrorist organizations", but did not answer when asked whether the Ministry of Love would try to kill them without a trial.
*The tragic end of CBS News.* It has been converted into a puppet show in which puppets pull each others' strings.
US citizens: call on your state's Secretary of State: No deportation thugs at our polls.
See the instructions for how to sign this letter campaign without running any nonfree JavaScript code--not trivial, but not hard.
US citizens: call on local and state officials to stop cooperating with the deportation thugs.
US citizens: call on Congress to block the corrupter from getting government money for his bogus board of peace.
See the instructions for how to sign this letter campaign without running any nonfree JavaScript code--not trivial, but not hard.
Zelenskyy says he demands a 20-year "security guarantee" from the bullshitter to make a peace deal with Russia reliable.
Under a previous US government, such a 20-year commitment might be a basis to trust the deal, but the bullshitter never respects any commitment except to a billionaire who is paying for that commitment. The bullshitter could make a deal with you this month, and next month tell you that he expects you to pay a fortune for that deal.
One candidate said, "In a criminal trial, I would feel morally obligated to convict, however, in a civil trial I could set those views aside," adding, "I believe it would be to the benefit of the human race for Mr. Musk to be sent to prison." [...]
"I don't believe the loss of several hundreds of millions of dollars in civil trial will be even a drop in the bucket to his wealth," he reportedly said. "So it doesn't really matter."
He did not make it onto the jury, and neither did a woman who said Musk has "no moral compass" and "used his wealth to buy votes." The judge also dismissed a candidate who said they disagree with the "existence of billionaires" and another who noted their dislike for Musk's firing of Twitter content moderators.
Previously, previously, previously, previously, previously, previously, previously, previously, previously, previously.
Previously, previously, previously, previously, previously, previously, previously, previously, previously.
In honor of this important anniversary, I downloaded the original Flash SWF file from Internet Archive, played it using Ruffle in a full-screen window, and replaced the audio with the original MP3 of "Invasion of the Gabber Robots" by The Laziest Men on Mars. So this is probably the highest fidelity encoding possible, without going back to the original forum GIFs.
Make your time.
As described previously, the Linux kernel security team does not identify or mark or announce any sort of security fixes that are made to the Linux kernel tree. So how, if the Linux kernel were to become a CVE Numbering Authority (CNA) and responsible for issuing CVEs, would the identification of security fixes happen in a way that can be done by a volunteer staff? This post goes into the process of how kernel fixes are currently automatically assigned to CVEs, and also the other “out of band” ways a CVE can be issued for the Linux kernel project.
Not mentioned at the hearing: The mayor's teenage daughter, Taya Lurie, was cast in the starring role of Clara at the matinee performance that Sunday.
During stunning testimony before the Board's Public Safety Committee, Supervisor Bilal Mahmood asked PG&E CEO Sumeet Singh why the utility had chosen to help the arts venue while so many other San Francisco sites were without power.
"You prioritized the opera, where no one is living, to restore service, before you prioritized restoring service in communities and seniors living in [single room occupancies]," said Mahmood.
"We did not make that decision on our own accord," Singh replied. "We were requested by the mayor to provide temporary generation to that specific location. And we responded to that."
Singh said 10% of affected PG&E customers were still experiencing blackouts when the mayor made his request.
The mayor's comms team went ballistic and a couple days later, the PG&E CEO recanted and said: Oh, that thing that I quite clearly stated, that was a "misunderstanding". Uh huh.
So the interesting thing here is not that our oligarch mayor is both corrupt and bumbling -- I mean, water is wet -- but that PG&E chose to throw him under the bus like that. Statements like that, from people like that, about people like that, don't happen off the cuff. With the renewed and increasing calls to Eminent Domain PG&E, you'd think that PG&E would want SF's mayor on their side. This suggests that they think they just don't need him.
A booth having a housing enclosing a viewing station opposite an entertainment station; a robotic entertainer disposed within the entertainment station, the robotic entertainer having a humanoid appearance and comprising a plurality of actuators; and a computing system coupled to the plurality of actuators and configured to control the actuators so to move the robotic entertainer in accordance with a performance.
Previously, previously, previously, previously, previously, previously, previously, previously, previously, previously, previously, previously.
Planet Debian upstream is hosted by Branchable.