XSF Discussion - 2019-07-28

  1. jonas’ digs into the more ancient parts of aioxmpp

  2. jonas’

    I *think* I implmeneted the RFC 4647 algorithm for language selection

  3. jonas’

    it’s not even that complex

  4. flow

    yep I also believe that the situation is not that hard, be it the xml:lang inheritance or the xml:lang selection

  5. flow

    somebody™ just has to implement it

  6. lovetox

    hm i have a problem with captcha protected rooms

  7. lovetox

    if the captcha verification fails, server returns an error iq which is ok

  8. lovetox

    but afterwards he also sends a presence error: not-authorized

  9. lovetox

    which my client interprets as, please supply a password

  10. lovetox

    but there is none on the room

  11. lovetox

    question is should the server abort my join only because i supplied a wrong captcha?

  12. lovetox

    but at some point he has to abort it, so is not-authorized the correct error here?

  13. lovetox

    its probably undefined

  14. Zash

    What is the error type?

  15. Zash

    In https://xmpp.org/extensions/xep-0045.html#enter-pw the example has type=auth

  16. lovetox

    auth

  17. lovetox

    you mean the server could use something different here?

  18. lovetox

    so we can act on the difference

  19. Zash

    https://xmpp.org/extensions/xep-0158.html#example-3 like that perhaps?

  20. Zash

    Is CAPTCHA a type of authentication?

  21. lovetox

    i guess its not much different to a password

  22. lovetox

    it auths me as human :D

  23. lovetox

    i think it does not matter much was the server does, seems i have to track that im in a captcha auth and ignore the presence error

  24. lovetox

    but much complexity for a feature probably almost nobody ever uses

  25. flow

    lovetox, one could add a feature to xep45 signalling that the muc service will add a captcha specific error condition to the error IQ

  26. lovetox

    but the problem is not the error iq, the problem for me was the error presence that followed the error iq

  27. lovetox

    but i think this has be solved by the client, i just have to track that im in a captcha workflow, and that all error presences mean the captcha workflow was aborted

  28. lovetox

    and not what they usually mean

  29. flow

    add the specific error condition to the presence then

  30. lovetox

    hm yeah would be a solution, but i prefer to handle it in the client

  31. lovetox

    another question, what if i send a message to a bare muc jid, when im not joined

  32. lovetox

    usually i would expect muc denies the message

  33. lovetox

    but what if im owner of the muc?

  34. lovetox

    hm the MUC xep allows to send message to the room from outside

  35. lovetox

    message can not be matched to a user if this is done

  36. lovetox

    even in a non-anonymous room

  37. lovetox

    which i find weird

  38. lovetox

    would be allowed to attach the <addresses> thingy to these messages?

  39. lovetox

    with a ofrom= realjid