SimpleAI.FluxAIO: 强大的Flux控图工具开放公测/ Public beta: Comprehensive control images tools base on Fluxdev #94
Replies: 7 comments 3 replies
-
Well this is exciting! You've been busy! 🙂👍 |
Beta Was this translation helpful? Give feedback.
-
I had no problems with the installation. The two archives to update the SimpleModels folder installed over top of the old SimpleSDXL2 SimpleModels folder without affecting the operation of SimpleSDXL2, so that was good. The problem came when I wanted to acquire an administrative identity. The first problem is that the Identity Centre information should be available in English. I made an online translation but it was still not obvious what to do. I eventually realized that the title "IdentityCenter" was actually a button that you needed to click. So I entered a name and number but I have no idea what to type in the "Verify Identity" box. The name and/or number did not work. There was a step that called for a QrCode that I thought was probably optional. I have no idea what QrCode I would put in there. Lots of mysteries with this procedure! I could see where this whole security feature would be useful in a multi-user environment like a school or college but I do not see what benefit it would be for the average user. My house is secure and my computer is secure - any further layers of security have no value to me. |
Beta Was this translation helpful? Give feedback.
-
OK, so I entered a QR Code, the URL of the Facebook Pure Fooocus group, https://www.facebook.com/groups/fooocus, and noticed that SimpleAI wanted to "call home", i.e. access the Internet. Perhaps foolishly, I actually allowed it to do so. In any event no verification code appeared in the box. I do not know what is going on here, but I am not impressed! The founders of Fooocus made sure that Fooocus did not need to connect to the Internet while in use, in part so that users with controlled Internet access, such as in China, were always able to use the program. Perhaps there is some simple explanation why this branch of Fooocus now needs to do so, but from what I know at this point it seems suspicious and unethical to me that this open source program is now partially locked unless one is prepared to surrender one's identity. And if this is the new policy for SimpleAI, it needs to be very clearly stated. When I read about new security in the announcement, I assumed that it was at the local level only. Why would it be otherwise? This level of global security should be on an "opt-in" basis, meaning that it only should be available by user request. I am only creating images, not doing online banking! There is one last thing, of course I entered a fake phone number. I am certainly not giving out my phone number to random people on the Internet. But that would not matter anyway because I do not have a cell phone - I use landline only (believe it or not, the whole world does not have cellphones). So if the security code was going to be sent as a text, that is obviously not going to work. |
Beta Was this translation helpful? Give feedback.
-
Well that is interesting! I cannot even run the basic Flux features that were available in the latest versions of SimpleSDXL2. Unless these security problems can be resolved, SimpleAI is essentially useless to me. I will be letting the folks at Pure Fooocus know not to bother upgrading at this point. |
Beta Was this translation helpful? Give feedback.
-
The addition of identity infrastructure in this version is to implement the subsequent community sharing plan: P2P based model sharing and computing power sharing. Fluxdev's demand for computing power has significantly increased, and through community sharing programs, it hopes to eliminate dependence on large computing power. SimpleAI.FluxAIO will not only be an application for personal use, but also a node that can be serviced. |
Beta Was this translation helpful? Give feedback.
-
This still leaves me out in the cold because I do not have a cellphone. It is not that unusual. My forty year old son who lives in another city is highly technological but for several years chose to have neither a landline nor a cellphone. My daughter who lives in the USA only uses her cellphone for travelling. We all communicate with each other through the Internet. I understand your concerns about robots, that make perfect sense. And really I am not familiar with any country where I have not lived, which is my loss. But those who do not obtain keys should not be permitted to enter into community sharing. I am familiar with key control, I used to work for the government of Canada as an electronics and informatics (computer) technologist. What I do not understand is why the security system cannot be turned off for local use only. Well in effect it is turned off in the case of SimpleAI, but for some reason that blocks out the use of Flux and the other platforms that were available in SimpleSDXL2. That does not make sense to me. BTW, when I referred to the "reputation that the government of China has for security exploits in the west", personally I do not trust my own government concerning security exploits either. Having been responsible for security in a portion of that government, I am very aware that I need to protect my own personal security. My wife, who is an American Canadian, is even more sensitive to that threat - with good reason. |
Beta Was this translation helpful? Give feedback.
-
Well I have followed up on my assignment! The exchange of a token through a mobile device does seem to be the most practical and lowest cost method of authentication. As a non-mobile using family, the most common alternative available for me is automated voice callback, from which I enter a one-time authentication code. In the case of the provincial medical service they actually issue a physical token device that produces codes - a ridiculously clunky solution! Both of these methods involve a costly system that would not be practical for you. Many corporate services use email callback as an alternative. They send you an email, then you simply confirm the email or enter a code online. This usually ties in to credit card use which of course locks out robots, so again not practical for SimpleAI. Then there is "CAPTCHA" with a free Python plugin available: http://www.captcha.net/ That could be a possibility but I think you would need to operate a website, so again there are costs involved (although there are websites that are more or less free, paid for by advertising). Actually you can operate CAPTCHA on the localhost but I do not know if that would be effective. As an aside, I was looking at household mobile usage in North America. 98% in the USA, but 94% in Canada. There is starting to be a movement towards dumbphones, which do only text and voice - no Internet. Service providers are resisting this because they would make less money from it. There is a Lightphone that does not do text either, but it is not available in Canada yet. This movement reflects a growing rebellion against over-connectedness, online addiction, corporate and government control, physical tracking and general invasion of privacy. But I do have an idea rolling around in my head - I do not know if it is practical but I will share it anyway (we call it "spitballing"). Could there be a way of making each download somehow unique? So that only the downloader could use that particular copy? Perhaps that does mean logging on to another site besides Github, at least for that one little file that creates the uniqueness. What I mean is, I think it would an unlikely exploit for the bad guys to run multiple copies of the 9GB SimpleAI application so they could abuse community sharing. In effect you could create a token system by doing so. However, security is a rabbit hole! You could easily spend more time and effort on security than on your actual application! But the basic question is, are you trying to make usage of community sharing compulsory? Because otherwise it should be "relatively easy" (I am enough of a programmer to say that there is no such thing!) to compartmentalize the code so that all features are available locally, but if the user wants to participate in community sharing then of course they need to be authenticated. |
Beta Was this translation helpful? Give feedback.
-
基于SimpleSDXL2双引擎架构的SimpleAI.FluxAIO最新版已开放公测。本次新版在沿袭Fooocus的快捷操控下,利用内置Comfyd引擎实现了Flux全面控图,并做了非常多的创新,具体看点包括:
SimpleAI based on SimpleSDXL2 dual engine architecture The latest version of FluxAIO has been open for public testing. This new version, following the UI of Fooocus, utilizes the built-in Comfyd engine to achieve comprehensive control images base on Fluxdev and has made many innovations, including:
由于本次加入身份系统的基础设施,需要提醒注意的是:
Due to the infrastructure of the identity system being added this time, it should be noted that:
下载安装方式和以前的版本一样,地址为:
The download and installation method is the same as the previous version, and the address is:
Beta Was this translation helpful? Give feedback.
All reactions