Ratify Message IDs #377
Ratify Message IDs #377
Conversation
|
Might be worth some further thought around whether we suggest encoding account ids in msgids to allow for eg certain editing proposals #304 (comment) |
|
Definitely an interesting idea. Message editing/deletion is an interesting case in particular (imo seems a lot more suited to server-side checking of those kinds of things than doing it client-side), but in general I'm on the side of preserving the opacity of the message IDs. |
|
IMO the essential features of
Server implementations should be free to use uuidv4s (pure randomness), or stuff trusted data in them protected by an AEAD (as in the editmsg proposal), or whatever --- the client shouldn't care. I think embedding a client-server protocol inside msgid is very much out of scope. |
|
If there's no more objections can we ratify this? |
|
Not really an objection, I just still think it's worth mentioning explicitly that while ids are to always be treated as opaque by clients, servers might wish to encode specific information in them that they can reuse for authenticated actions like edits/deletes. |
There was a problem hiding this comment.
Two simple style/clarity suggestions and something to address recent thread comments.
Change:
The tag value is chosen by the originating server and MUST be unique, meaning any other message transmitted on the entire network at any time MUST NOT share the same value.
to:
The tag value MUST be a unique ID chosen by the originating server. Uniqueness in this context means that any other message transmitted on the entire network at any time MUST NOT share the same value.
Change:
The tag value MUST be treated as a case sensitive opaque identifier. Clients MUST NOT use case folding or normalization when comparing IDs.
to
Clients MUST treat the ID as a case sensitive opaque identifier. Clients MUST NOT use case folding or normalization when comparing IDs.
Add a paragraph at end of non-normative "Choosing an ID format" section:
Servers might wish to encode additional information within the ID, for internal use only. This could allow further actions to be taken on a message. For instance, including account information for the author in an ID could enable authenticated message edits or deletes, without having to maintain and consult a separate message store. Take care not to include private data without appropriate encryption.
|
Have considered other suggested text from @slingamn. While I like the gist of it and that middle sentence feels cool, it feels like it removes a bit too much context on this 'may' at all. I'm leaving that PR as-is since... it works fine, and feels reasonable. Esp for a single-para 'maybe'. No other changes made to it in this PR.
|
|
My proposal for a compromise wording:
|
|
@slingamn yup that works for me |
|
LGTM, happy to merge |
|
Will do so tomorrow if no other comments. I strongly recommend reading the whole spec again, not just this changeset. |
|
This was published to the website in ircv3/ircv3.github.io#252 |
I reckon we've shown this to be stable enough, we have a few server implementations and all. Should be right to ratify as-is it feels like?