Closed Bug 1157643 Opened 9 years ago Closed 8 years ago

Stop sending the roomOwner or always send it as guest

Categories

(Hello (Loop) :: Server, defect)

Product:
Hello (Loop)
Component:
Server
Type:
defect
Priority:
Not set
Severity:
minor

Tracking

(Not tracked)

Status:
RESOLVED INCOMPLETE

People

(Reporter: standard8, Unassigned)

References

Details

(Keywords: privacy, Whiteboard: [change for next API version bump]) 

We're not currently using the roomOwner field, and the way it is currently set up in desktop/fxos clients leads to a possible privacy leak of the FxA id to other people when the user didn't necessarily intend on it.

Whilst we may want to bring it back later (e.g. when we do multi-party), I think we'll want it in a different form, i.e. a user-confirmed name/field that they wish to share.

The standalone doesn't currently display the roomOwner, although the FFOS client does.

I'm going to file a separate bug on the desktop client to stop sending the FxA id when creating the room, and only send "Guest" for now.

For this bug, I think we should consider either removing roomOwner completely, or making it optional - maybe just always sending it to clients as "Guest" even if it supplied (although that would 'break' l10n).

If we stop sending it, that would likely break the FFOS client, although I haven't tested that scenario.

Adam: any opinions on how we should handle this?
Flags: needinfo?(adam)
See Also: → 1157645
Depends on: 1157646
(In reply to Mark Banner (:standard8) from comment #0)
> Adam: any opinions on how we should handle this?

Let me summarize what I think you said:

* Desktop sets but does not read roomOwner
* Standalone sets but does not read roomOwner
* FFxOS sets and reads roomOwner

If this is correct, then I think we need to hold any server changes on an update to the FFxOS client.

However, in reading through the FFxOS client just now, they appear to use this field for purposes substantially more important than simply displaying the owner of a room. It looks like they have a cache of all the rooms a user has ever joined, and use the roomOwner field as a means of determining whether they own the room or someone else does.

I'm tagging Fernando, Borja, and Jose Antonio for their input.
Flags: needinfo?(jaoo)
Flags: needinfo?(ferjmoreno)
Flags: needinfo?(borja.bugzilla)
Flags: needinfo?(adam)
Sorry, I am not familiar with the rooms implementation. Maybe Cristian knows.
Flags: needinfo?(ferjmoreno) → needinfo?(crdlc)
Clearing the ni? request as Cristian provided the answer. Sorry for the lag.
Flags: needinfo?(jaoo)
Flags: needinfo?(borja.bugzilla)
I'm not sure what we should do here. Can you provide higlights of changes we need to do on the server side?
Flags: needinfo?(standard8)
The desktop side is going to change to show "-" as the owner (bug 1157645). This will get rid of the minor leak for desktop. AFAICT doing that won't affect the FxOS client.

For this bug, I think we should drop the roomOwner field at some stage. That either depends on changing the FxOS client and/or we could file it under a list of things to do for a v2 protocol when we need one.

It doesn't feel like we need to fix this bug in the short term, more a long term improvement.
Flags: needinfo?(standard8)
Okay. I'll then consider this bug blocked by changes on the mobile client.
Severity: normal → minor
Whiteboard: [change for next API version bump]
Depends on: 1245478
Support for Hello/Loop has been discontinued.

https://support.mozilla.org/kb/hello-status

Hence closing the old bugs. Thank you for your support.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.