-
Ge0rG
pep.: most have set their channels to allow registered users only, making them effectively useless for end user support
-
ralphm
Why?
-
ralphm
Registering your nick is very common for that platform?
-
Wiktor
For irc? It's a measure to combat spam. Last time freenode was attacked they required registered accounts, some channels still do.
-
Ge0rG
ralphm: most OSS projects offer a web chat for support.
-
Ge0rG
If you have some specific problem with a tool, you probably will rather give up in frustration than attempt to register an identity with an obscure 1990s underground network, especially through a web browser that doesn't even properly support identity management for that network
-
ralphm
Hope you realize we are also working on a 1990s technology.
-
lovetox
ietf site is down
-
lovetox
did anyone remember all the standards
-
Andrew Nenakhov
Oh noes
-
Seve
Hopefully they can fix the site now with https://ietf.org/blog/nokia-globalhost/ :D
-
Guus
In XEP-0313 MAM, section 3.5 specifies: "Servers MUST NOT include the <stanza-id/> element in messages addressed to JIDs that do not have permissions to access the archive, such as a usersโs outgoing messages to their contacts."
-
Guus
Why is that a MUST NOT?
-
Guus
(XEP-0359 on the ID value of stanza-id: "The value of the 'id' attribute should not provide any further information besides the opaque ID itself. Entities observing the value MUST NOT be able to infer any information from it, e.g. the size of the message archive. The value of 'id' MUST be considered a non-secret value.")
-
Zash
If you can't query it, what purpose does it serve?
-
Guus
it does serve as a unique identifier. I'm not saying it makes much sense, but the 'MUST NOT' suggests that something horrible will happen if it does go out.
-
MattJ
Guus, it's a combination of two things: 1) it used to be an <archived id='...' by='...' /> 2) sharing info on a need-to-know basis is a sensible default
-
MattJ
Now it's morphed into a generic "stanza-id" element, which just happens to share ids with the MAM archive, I think it does make less sense
-
MattJ
Sometimes I regret the <archived> -> <stanza-id> switch, sometimes I don't
-
Guus
heh
-
Guus
so, why would it be bad for an 'archived by' id?
-
Guus
I agree with it being a sensible default
-
Guus
but still, MUST NOT is quite strict
-
MattJ
Because it can be used to the client as indication that the archive may be queried?
-
MattJ
Why would you have an archive that someone doesn't have permission to access, and then share some of that data with them?
-
Guus
well, you SHOULD NOT. ๐
-
MattJ
But if you do, the client may assume it has permission, and will try to send you queries
-
Guus
which will result in errors.
-
Guus
meh
-
MattJ
So why is this a problem to you?
-
Guus
it's not. I was just wondering.
-
Guus
I thought I was missing an important security aspect, or somesuch
-
MattJ
On the one hand you have this argument. On the other hand you have people complaining about all the wiggle room in XEPs that use "SHOULD (NOT)" for no gain
-
Guus
I understand
-
MattJ
So there's no concrete reason I can think of right now, but that happens to be what I thought best to write at the time
-
Guus
that's fair.
-
MattJ
If we'd been using stanza-id from the start, I doubt I would have written it that way
-
Guus
I've got this annoying bit where carbons are sent off before the archiving takes place ๐
-
Zash
Guus: Sounds like our MUC pre-0.11, where messages are broadcasted before passing through the part where the MAM bits were attached
-
Ge0rG
We need more message ids!
-
Zash
You can never have enough message ids
-
Guus
Zash, that sounds very much like what we have for Openfire now.
-
Guus
it's not very appealing to rewire all that, as it's making use of generic interceptors.
-
Guus
In case of a one-on-one chat between two local users, openfire is storing a message just once (as it stores 'conversations', not per user archives). That means that both virtual 'archives' would contain the exact same identifier.
-
Guus
XEP-313 says: " Thus the IDs defined in this extension MUST be unique and stable within the scope of the generating XMPP entity." which seems to allow it.
-
Guus
sorry, that's XEP-359
-
Guus
ah, 5.2 for XEP-313 also allows it
-
Guus
nevermind
-
Guus
... I now wonder if Openfire is, in effect, maintaining a message archive for non-local users.
-
Zash
It would be ... interesting ... if you could query your friends archives for messages to yourself
-
Guus
we don't keep "per user" archives.
-
Guus
we keep records of conversations
-
Guus
if a user queries for it's archive, that's retrieved from all conversations that the user was part of.
-
Zash
I mean from eg a remote server
-
Guus
That might be possible with Openfire...
-
Guus
I'm unsure what the retrieval query would look like, but I think we could answer the query, for all messages that you've sent on the local domain.
-
Guus
ah, we're explicitly not answering the query if sent by a non-local user.
-
Guus
Do we expect the archive ID to be added to <sent><forwarded> carbons, or only in <received><forwarded> ?
-
Guus
(the original sender doesn't get an echo of a server-generated stanza-id either, I think?)
-
Holger
No echo, but it must be added to <sent/> as well.
-
flow
FWIW i aggree with Guus that the MUST NOT feels not well placed. I think we should simply remove the sentence if possible.
-
MattJ
PRs welcome, I don't think it needs a namespace bump
-
flow
I also don't think it needs one. And every little bit we can remove without "downgrading" the spec reduces the noise and makes it easier to understand and implement
-
Guus
I wasn't making much of a statement other than that I'm trying to determine if I understood the details right.
-
flow
Ahh, Guus so you don't want to send a PR?
-
Guus
I'm not _against_ making one
-
Guus
but for now, my wife is giving me the stare ๐
-
Guus
afk
-
MattJ
I know that stare
-
flow
And I always thought the stare was an uncommon phenomenom only happening to me
-
pep.
https://xmpp.org/extensions/xep-0277.html TIL this is not draft
-
Zash
!
-
Zash
Oh
-
Zash
That number is way too easy to confuse with https://xmpp.org/extensions/xep-0227.html
-
pep.
heh
-
pep.
Can we bring back bunneh to life?
-
Zash
Necromancy?
-
pep.
https://xmpp.org/extensions/xep-0277.html#receive can somebody explain what the Note means. I have a PR with a few typos in that XEP, I'd like to fix that as well. "Note: these alternate links were not posted by client because client can't compute them itself. These things SHOULD be inserted at server side though."
-
pep.
Ah I get it now
-
Zash
s/posted/generated/ or somesuch
-
pep.
I guess posted works as well
-
Zash
Odd wording IMO
-
pep.
"These alternate links were not posted by the original client because clients can't compute them themselves. [..]", at least
-
Zash
included, generated, computed
-
pep.
https://xmpp.org/extensions/xep-0277.html#metadata Do I understand correctly that this <item id='0'> MUST exist? :x
-
pep.
Or is it just if I want to provide metadata about my microblog
-
pep.
I think there should be a language review step before publishing :/
-
Zash
Huh
-
Zash
Yet another vcard?
-
pep.
Seems like it
-
pep.
Though, it is not impossible that people have access to your microblog but not your vcard right
-
pep.
(vcard4)
-
Zash
If you (the user) made one public but not the other then maybe you had a reason for that and it seems silly to bypass that and publish your personal info in more places
-
pep.
I'm not especially arguing for this metadata entry, but you might want to have a lesser version of your vcard to show for people looking at your (public) microblog, and a more complete version for your contacts
-
pep.
I mean I'm not arguing for implementing this in 277. That could be 292 with a different set of ACLs :-ยฐ
-
pep.
But anyway, we're going astray from my original question
-
Zash
... you want Bunneh secret sause?
-
pep.
I assume it's not a MUST then. it's an "if then MUST".
-
Zash
Is the goal to not require explicit server support?
-
pep.
hmm?
-
Zash
There is no "discovering support" section, I think those were mandatory?
-
Zash
Problematic to expect the server to maybe do stuff without any way to know that.
-
Zash
Personally I wish you could just post Atom to a node and be happy, but like every federated social feed protocol, the pain begins with replies and comments.