Abstract: | This document specifies an XMPP protocol extension for simple communications blocking. |
Author: | Peter Saint-Andre |
Copyright: | © 1999 - 2012 XMPP Standards Foundation. SEE LEGAL NOTICES. |
Status: | Draft |
Type: | Standards Track |
Version: | 1.1 |
Last Updated: | 2007-02-15 |
NOTICE: The protocol defined herein is a Draft Standard of the XMPP Standards Foundation. Implementations are encouraged and the protocol is appropriate for deployment in production systems, but some changes to the protocol are possible before it becomes a Final Standard.
1. Introduction
2. Requirements
3. Relationship to Privacy Lists
4. JID Matching
5. Use Cases
5.1. User Discovers Support
5.2. User Retrieves Block List
5.3. User Blocks Contact
5.4. User Unblocks Contact
5.5. User Unblocks All Contacts
6. Implementation Notes
7. Security Considerations
8. IANA Considerations
9. XMPP Registrar Considerations
9.1. Protocol Namespaces
10. XML Schema
10.1. blocking
10.2. blocking:errors
11. Acknowledgements
Appendices
A: Document Information
B: Author Information
C: Legal Notices
D: Relation to XMPP
E: Discussion Venue
F: Requirements Conformance
G: Notes
H: Revision History
RFC 3921 [1] includes an XMPP protocol extension for communications blocking, which has since been moved to Privacy Lists [2]. Unfortunately, because the privacy lists extension is quite complex, it has not been widely implemented in servers and has been implemented virtually not at all in clients. This is problematic, since the ability to block communications with selected users is an important feature for an instant messaging system (and is required by RFC 2779 [3]). However, the full power of privacy lists is not needed in order to block communications, so this document proposes a much simpler blocking protocol that meets the requirement specified in RFC 2779 and can be implemented much more easily in Jabber/XMPP clients and servers.
The requirements for simple communications blocking are straightforward:
The simple communications blocking protocol specified herein is intended to be a user-friendly "front end" to a subset of the functionality defined by the privacy lists protocol (XEP-0016). If a service deploys both privacy lists and simple communications blocking, the service MUST use the same back-end data store for both protocols. (Note: Wherever possible, this document attempts to define a protocol that is fully consistent with XEP-0016; if a particular aspect of functionality is not specified herein, the relevant text in XEP-0016 shall be taken to apply.)
A service SHOULD map the blocklist to the default privacy list, where each blocked JID is represented as a privacy list item of type "jid" and action "deny". [4] If this is done and none of the user's clients ever use the privacy lists protocol, then the blocklist will always apply. This mapping has the following implications:
If all of a user's clients always use simple communications blocking, then the default privacy list will be equivalent to the blocklist and the default privacy list will be a kind of "virtual list" (in the sense that it is never modified directly by any of the clients).
If one of a user's clients uses privacy lists instead of blocklists and modifies the default privacy list by removing a blocked JID or blocking a new JID, then that change will be reflected in the blocklist.
If one of a user's clients uses privacy lists and does anything but block or unblock a JID, then that change will not be reflected in the blocklist (since blocklists cannot represent anything except blocked JIDs).
If one of a user's clients removes the default privacy list and substitutes a new list for the old list, the blocked JIDs in the new default privacy list (if any) will become the new blocklist.
If one of a user's clients makes active something other than the default privacy list, the user may receive communications from contacts who are blocked in the default list.
Because of the potential for confusion between block lists and privacy lists, it is NOT RECOMMENDED for a client to request both the block list and privacy lists in the same session.
The priority of blocked (jid+deny) items in the privacy list SHOULD be such that they come first in the privacy list.
Matching of JIDs as specified in the 'jid' attribute of the <item/> element SHOULD proceed in the following order (this is consistent with XEP-0016):
In order for a client to discover whether its server supports the protocol defined herein, it MUST send a Service Discovery [5] information request to the server:
<iq from='juliet@capulet.com/chamber' to='capulet.com' type='get' id='disco1'> <query xmlns='http://jabber.org/protocol/disco#info'/> </iq>
If the server supports the protocol defined herein, it MUST return a feature of "urn:xmpp:blocking":
<iq from='capulet.com' to='juliet@capulet.com/chamber' type='result' id='disco1'> <query xmlns='http://jabber.org/protocol/disco#info'> ... <feature var='urn:xmpp:blocking'/> ... </query> </iq>
In order for a client to request a user's list of blocked contacts (e.g., in order to determine whether to unblock a contact), it shall send an IQ-get with no 'to' address (thus handled by the user's server) containing a <blocklist/> element qualified by the 'urn:xmpp:blocking' namespace:
<iq type='get' id='blocklist1'> <blocklist xmlns='urn:xmpp:blocking'/> </iq>
If the user has any contacts in its blocklist, the server MUST return an IQ-result containing a <blocklist/> element that in turn contains one child <item/> element for each blocked contact:
<iq type='result' id='blocklist1'> <blocklist xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> <item jid='iago@shakespeare.lit'/> </blocklist> </iq>
If the user has no contacts in its blocklist, the server MUST return an IQ-result containing an empty <blocklist/> element:
<iq type='result' id='blocklist1'> <blocklist xmlns='urn:xmpp:blocking'/> </iq>
A client SHOULD retrieve the block list after authenticating with its server and before completing any blocking or unblocking operations.
In order for a user to block communications with a contact, the user's client shall send an IQ-set with no 'to' address (thus handled by the user's server) containing a <block/> element qualified by the 'urn:xmpp:blocking' namespace, where the JID to be blocked is encapsulated as the 'jid' attribute of the <item/> child element:
<iq from='juliet@capulet.com/chamber' type='set' id='block1'> <block xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </block> </iq>
If the server can successfully process the block command, it MUST return an IQ-result:
<iq type='result' id='block1'/>
The server MUST also send an IQ-set to all of the user's resources that have requested the blocklist, containing the blocked item(s):
<iq to='juliet@capulet.com/chamber' type='set' id='push1'> <block xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </block> </iq> <iq to='juliet@capulet.com/balcony' type='set' id='push2'> <block xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </block> </iq>
If the <block/> element does not contain at least one <item/> child element, the server MUST return a <bad-request/> error. The <block/> element MAY contain more than one <item/> child. Other standard XMPP stanza errors also apply; see XMPP Core [6] and Error Condition Mappings [7].
When the user blocks communications with the contact, the user's server MUST send unavailable presence information to the contact (but only if the contact is allowed to receive presence notifications from the user in accordance with the rules defined in RFC 3921).
Once the user has blocked communications with the contact, the user's server MUST NOT deliver any XML stanzas from the contact to the user. The block remains in force until the user subsequently unblocks commmunications with the contact (i.e., the duration of the block is potentially unlimited and applies across sessions).
If the contact attempts to send a stanza to the user (i.e., an inbound stanza from the user's perspective), the user's server shall handle the stanza according to the following rules:
If the foregoing suggestions are followed, the user will appear offline to the contact.
If the user attempts to send an outbound stanza to the contact, the user's server MUST NOT route the stanza to the contact but instead MUST return a <not-acceptable/> error containing an application-specific error condition of <blocked/> qualified by the 'urn:xmpp:blocking:errors' namespace:
<message type='error' from='romeo@montague.net' to='juliet@capulet.com'> <body>Can you hear me now?</body> <error type='cancel'> <not-acceptable xmlns='urn:ietf:params:xml:ns:xmpp-stanzas'/> <blocked xmlns='urn:xmpp:blocking:errors'/> </error> </message>
In order for a user to unblock communications with a contact, the user's client shall send an IQ-set with no 'to' address (thus handled by the user's server) containing an <unblock/> element qualified by the 'urn:xmpp:blocking' namespace, where the JID to be unblocked is encapsulated as the 'jid' attribute of the <item/> child element:
<iq type='set' id='unblock1'> <unblock xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </unblock> </iq>
If the server can successfully process the unblock command, it MUST return an IQ-result:
<iq type='result' id='unblock1'/>
The server MUST also send an IQ-set to all of the user's resources that have requested the blocklist, containing the unblocked item(s):
<iq to='juliet@capulet.com/chamber' type='set' id='push3'> <unblock xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </unblock> </iq> <iq to='juliet@capulet.com/balcony' type='set' id='push4'> <unblock xmlns='urn:xmpp:blocking'> <item jid='romeo@montague.net'/> </unblock> </iq>
When the user unblocks communications with the contact, the user's server MUST send the user's current presence information to the contact (but only if the contact is allowed to receive presence notifications from the user in accordance with the rules defined in RFC 3921).
After the user has unblocked communications with the contact, the user's server MUST deliver any subsequent XML stanzas from the contact to the user.
In order for a user to unblock communications with all contacts, the user's client shall send an IQ-set with no 'to' address (thus handled by the user's server) containing an empty <unblock/> element qualified by the 'urn:xmpp:blocking' namespace:
<iq type='set' id='unblock2'> <unblock xmlns='urn:xmpp:blocking'/> </iq>
If the server can successfully process the unblock command, it MUST return an IQ-result:
<iq type='result' id='unblock2'/>
The server MUST also send an IQ-set to all of the user's resources that have requested the blocklist, containing notification of global unblocking:
<iq to='juliet@capulet.com/chamber' type='set' id='push5'> <unblock xmlns='urn:xmpp:blocking'/> </iq> <iq to='juliet@capulet.com/balcony' type='set' id='push6'> <unblock xmlns='urn:xmpp:blocking'/> </iq>
Once the user has unblocked communications with all contacts, the user's server MUST deliver any XML stanzas from those contacts to the user.
When a server receives a block command from a user, it MAY cancel any existing presence subscriptions between the user and the blocked user and MAY send a message to the blocked user; however, it is RECOMMENDED to deploy so-called "polite blocking" instead (i.e., to not cancel the presence subscriptions or send a notification). Which approach to follow is a matter of local service policy.
A service MAY also filter blocking users out of searches performed on user directories (see, for example, Jabber Search [8]); however, that functionality is out of scope for this specification.
If properly implemented, this protocol extension does not introduce any new security concerns above and beyond those defined in RFC 3920 and RFC 3921.
No interaction with the Internet Assigned Numbers Authority (IANA) [9] is required as a result of this specification.
The XMPP Registrar [10] includes 'urn:xmpp:blocking' and 'urn:xmpp:blocking:errors' in its registry of protocol namespaces (see <http://xmpp.org/registrar/namespaces.html>).
<?xml version='1.0' encoding='UTF-8'?> <xs:schema xmlns:xs='http://www.w3.org/2001/XMLSchema' targetNamespace='urn:xmpp:blocking' xmlns='urn:xmpp:blocking' elementFormDefault='qualified'> <xs:annotation> <xs:documentation> The protocol documented by this schema is defined in XEP-0191: http://www.xmpp.org/extensions/xep-0191.html </xs:documentation> </xs:annotation> <xs:element name='block'> <xs:complexType> <xs:sequence> <xs:element ref='item' minOccurs='1' maxOccurs='unbounded'/> </xs:sequence> </xs:complexType> </xs:element> <xs:element name='unblock'> <xs:complexType> <xs:sequence> <xs:element ref='item' minOccurs='0' maxOccurs='unbounded'/> </xs:sequence> </xs:complexType> </xs:element> <xs:element name='blocklist'> <xs:complexType> <xs:sequence> <xs:element ref='item' minOccurs='0' maxOccurs='unbounded'/> </xs:sequence> </xs:complexType> </xs:element> <xs:element name='item'> <xs:complexType> <xs:simpleContent> <xs:extension base='empty'> <xs:attribute name='jid' type='xs:string' use='required'/> </xs:extension> </xs:simpleContent> </xs:complexType> </xs:element> <xs:simpleType name='empty'> <xs:restriction base='xs:string'> <xs:enumeration value=''/> </xs:restriction> </xs:simpleType> </xs:schema>
<?xml version='1.0' encoding='UTF-8'?> <xs:schema xmlns:xs='http://www.w3.org/2001/XMLSchema' targetNamespace='urn:xmpp:blocking:errors' xmlns='urn:xmpp:blocking:errors' elementFormDefault='qualified'> <xs:annotation> <xs:documentation> The protocol documented by this schema is defined in XEP-0191: http://www.xmpp.org/extensions/xep-0191.html </xs:documentation> </xs:annotation> <xs:element name='blocked' type='empty'/> <xs:simpleType name='empty'> <xs:restriction base='xs:string'> <xs:enumeration value=''/> </xs:restriction> </xs:simpleType> </xs:schema>
Thanks to Valerie Mercier, Maciek Niedzielski, Kevin Smith, and Remko Tronçon for their feedback.
Series: XEP
Number: 0191
Publisher: XMPP Standards Foundation
Status:
Draft
Type:
Standards Track
Version: 1.1
Last Updated: 2007-02-15
Approving Body: XMPP Council
Dependencies: XMPP Core, XMPP IM, XEP-0030
Supersedes: None
Superseded By: None
Short Name: blocking
Source Control:
HTML
This document in other formats:
XML
PDF
Email:
stpeter@jabber.org
JabberID:
stpeter@jabber.org
URI:
https://stpeter.im/
The Extensible Messaging and Presence Protocol (XMPP) is defined in the XMPP Core (RFC 3920) and XMPP IM (RFC 3921) specifications contributed by the XMPP Standards Foundation to the Internet Standards Process, which is managed by the Internet Engineering Task Force in accordance with RFC 2026. Any protocol defined in this document has been developed outside the Internet Standards Process and is to be understood as an extension to XMPP rather than as an evolution, development, or modification of XMPP itself.
The primary venue for discussion of XMPP Extension Protocols is the <standards@xmpp.org> discussion list.
Discussion on other xmpp.org discussion lists might also be appropriate; see <http://xmpp.org/about/discuss.shtml> for a complete list.
Errata can be sent to <editor@xmpp.org>.
The following requirements keywords as used in this document are to be interpreted as described in RFC 2119: "MUST", "SHALL", "REQUIRED"; "MUST NOT", "SHALL NOT"; "SHOULD", "RECOMMENDED"; "SHOULD NOT", "NOT RECOMMENDED"; "MAY", "OPTIONAL".
1. RFC 3921: Extensible Messaging and Presence Protocol (XMPP): Instant Messaging and Presence <http://tools.ietf.org/html/rfc3921>.
2. XEP-0016: Privacy Lists <http://xmpp.org/extensions/xep-0016.html>.
3. RFC 2779: A Model for Presence and Instant Messaging <http://tools.ietf.org/html/rfc2779>.
4. An implementation MUST NOT block communications from one of a user's resources to another, even if the user happens to define a rule that would otherwise result in that behavior.
5. XEP-0030: Service Discovery <http://xmpp.org/extensions/xep-0030.html>.
6. RFC 6120: Extensible Messaging and Presence Protocol (XMPP): Core <http://tools.ietf.org/html/rfc6120>.
7. XEP-0086: Error Condition Mappings <http://xmpp.org/extensions/xep-0086.html>.
8. XEP-0055: Jabber Search <http://xmpp.org/extensions/xep-0055.html>.
9. The Internet Assigned Numbers Authority (IANA) is the central coordinator for the assignment of unique parameter values for Internet protocols, such as port numbers and URI schemes. For further information, see <http://www.iana.org/>.
10. The XMPP Registrar maintains a list of reserved protocol namespaces as well as registries of parameters used in the context of XMPP extension protocols approved by the XMPP Standards Foundation. For further information, see <http://xmpp.org/registrar/>.
Note: Older versions of this specification might be available at http://xmpp.org/extensions/attic/
Further clarified relationship to privacy lists.
(psa)Per a vote of the XMPP Council, advanced status to Draft; also modified namespace to use XMPP URN.
(psa)Modified message handling to recommend returning service-unavailable error.
(psa)Added push notifications (a la roster pushes).
(psa)Specified relationship to privacy lists, JID matching rules, server handling of outbound presence on block and unblock, handling of directed presence, syntax of block element.
(psa)Added implementation notes regarding polite blocking and filtering of search results; recommended retrieval of block list after authentication; defined protocol flow for unblocking all contacts.
(psa)Initial version.
(psa)Added block list retrieval use case; modified block and unblock syntax to use item child element.
(psa)First draft.
(psa)END