jdev - 2023-05-01

  1. pep.

    "lovetox> of course members-only would need to be disabled" yeah that's an issue. So I'd rather not use `;password`. "lovetox> otherwise it would probably be easy to add a <token> element to some join presence, and the server could then do its stuff" This sounds better yeah, and a new URI parameter to go with it probably

  2. pep.

    I wonder if there's a way to combine this to account creation process, but that may be a bit much to ask..

  3. Kev

    In principle there's no reason that password won't work for that.

  4. pep.

    I can have a password-protected room + member-only?

  5. pep.

    Actually it's not what I want.. I just want it member-only

  6. pep.

    But I guess the password parameter can be reused indeed..

  7. pep.

    If a token has been issued, the room should be aware

  8. pep.

    Ah sorry you were talking about account creation

  9. pep.

    Ah no.

  10. pep.

    (Still waking up..)

  11. Zash

    Which kind of backwards compatibility mess do you want? :)

  12. lovetox

    the room is aware of the password, in reality you want exactly what password provides

  13. lovetox

    its just that the server could offer a option to add users as members automatically when they jon

  14. lovetox

    its just that the server could offer a option to add users as members automatically when they join

  15. lovetox

    and maybe that members dont need to provide a password

  16. pep.

    Prosody (only?) already adds users as members when they're invited, and these users don't need a password

  17. pep.

    Prosody (only?) already adds users as members when they're invited, and these users don't need a password/token

  18. lovetox

    your use case is, when you cannot invite because you dont know the jid

  19. pep.

    I can have a mix of both

  20. pep.

    These use-cases don't conflict

  21. pep.

    (or shouldn't)

  22. lovetox

    they do when you use a password

  23. pep.

    That's why I'm not sure I want to use a password

  24. lovetox

    because i think members still need to provide the password, in current muc impl

  25. pep.

    Yes I think so too

  26. lovetox

    but it makes not much sense

  27. lovetox

    why would i add someone to a room as member, and then

  28. pep.

    One could send the password/token in the invite. Dunno how it's done atm

  29. pep.

    But it's weird to require both membership and password then

  30. lovetox

    dont allow to join

  31. lovetox

    password should be only for non-members

  32. pep.

    Yeah so using a password for those is weird

  33. pep.

    I think we agree

  34. MattJ

    I've used tokens in the password slot before (closed system though), it works fine

  35. Kev

    Even if the client then bookmarks including the password, I think a server can cope fine with that by just ignoring the already-consumed token because the user is a member.

  36. pep.

    Do you have a draft spec somewhere for generation? Should I reuse 0050 more or less like it's used in 401 etc.?

  37. pep.

    Kev, yeah

  38. singpolyma

    Combining with signup is something we may want, but I think it would require encoding the while muc jid in a param which is pretty verbose

  39. singpolyma

    And possibly two tokens (one for signup one for the MUC)...

  40. pep.

    "Encoding the while muc jid"? target?

  41. singpolyma

    Well you need the jid of the server to register with as well as the jid of the MUC both to be present somehow. Unless the MUC advertises a server to register with I guess

  42. pep.

    It's just me not understand the english used here

  43. pep.

    It's just me not understanding the english used here

  44. Kev

    I guess s/while/whole/

  45. singpolyma

    Yes