To facilitate migration from other fediverse software, we would like to be able to replay AP activities into Pleroma. This will of course be problematic because of the anti-spoofing protection and signature requirements. Thusly, it would be nice to have a mode which turns these security features off.
Insecure mode should be a special invocation of the Pleroma server instead of a config setting. Something like an environment variable should trigger it.
That would allow us to import data through replaying it. We should also have very noticeable warnings when the server is operating in Insecure mode and it should not attempt to federate in Insecure mode.
(in other words the only functionality that should be live is only the functionality needed to import the data. nothing more.)