[Standards] Domain & JID Aliasing

Tim Brennan tim at zimbra.com
Thu Feb 1 21:18:14 UTC 2007

I think this makes sense.

I agree about the deny-login-to-alias: simplifies a lot of things (avoids a lot of complexity).  The person doing the login owns the account and therefore can easily know what account to log in as -- and there's precedent: E.G. even though I can receive email at an alias, my POP server won't allow me to use the alias to login.


----- "Chris Mullins" <chris.mullins at coversant.net> wrote:
> I think overall the rules will break down to:
> - server needs to track the alias any particular remote address is
> subscribed to.
> - anytime a message/presence/iq is sent to that contact, the server
> stamps the right "aliased from address" onto the packet. 
> - anytime a message/iq/presence comes in to an aliased address, the
> "to" address is swapped out from with the "real" account name.
> - S2S connections would be accepted on either the real domain or an
> aliased domain (coversant.net / coversant.com).
> - Outgoing s2s connections would need to be made from the aliased
> domain that matches the "from" address of the packet being sent.
> ... and the one that's bound to cause controversy: 
> - The server MUST deny login to an alias name (either JID or domain).
> I could "only" log in as "chris.mullins at coversant.com". This makes the
> above rules much more enforceable. The "deny" could be done with an
> XMPP Redirect to the right alias domain & jid though. 

More information about the Standards mailing list