diff --git a/xep-0054.xml b/xep-0054.xml index ff234d52..03925b70 100644 --- a/xep-0054.xml +++ b/xep-0054.xml @@ -56,21 +56,19 @@ -

A user may retrieve his or her own vCard by sending XML of the following form to his or her own JID (the 'to' attibute SHOULD NOT be included):

- +

A user may retrieve his or her own vCard by sending XML of the following form to his or her own JID (the 'to' attibute MUST NOT be included):

+ ]]>

The server should then return the vCard to the user:

- + Peter Saint-Andre @@ -121,25 +119,83 @@ ]]>
- -

A user may update his or her vCard by sending an IQ of type "set" to the server, following the format in the previous use case.

-

If a user attempts to perform an IQ set on another user's vCard, the server MUST return a 403 "Forbidden" error.

+ +

A user may publish or update his or her vCard by sending an IQ of type "set" to the server, following the format in the previous use case.

+ + + Peter Saint-Andre + + Saint-Andre + Peter + + + stpeter + http://www.xmpp.org/xsf/people/stpeter.shtml + 1966-08-06 + + XMPP Standards Foundation + + + Executive Director + Patron Saint + 303-308-3282 + + + + + Suite 600 + 1899 Wynkoop Street + Denver + CO + 80202 + USA + + 303-555-1212 + + + + + + + Denver + CO + 80209 + USA + + stpeter@jabber.org + stpeter@jabber.org + + Check out my blog at https://stpeter.im/ + + + + ]]> +

The server then returns an IQ-result (or an IQ-error).

+ + ]]> +

Notice that the previous IQ-set included only one changed element (the <DESC/> element). Currently there is no method for partial updates of a vCard, and the entire vCard must be sent to the server in order to update any part of the vCard.

+

If a user attempts to perform an IQ set on another user's vCard (i.e., by setting a 'to' address to a JID other than the sending user's bare JID), the server MUST return a 403 "Forbidden" error.

- -

A user may view another user's vCard by sending an IQ of type "get" to the other user's bare JID. A compliant server MUST return the vCard to the requestor and not forward the IQ to the requestee's connected resource.

+ +

A user may view another user's vCard by sending an IQ of type "get" to the other user's bare JID.

+ type='get'> ]]> -

The server should then return the other user's vCard to the requestor:

+

In accordance with &xmppcore;, a compliant server MUST respond on behalf of the requestor and not forward the IQ to the requestee's connected resource.

@@ -155,10 +211,11 @@ ]]> +

Note: The use of vCards is not limited to accounts associated with human users. For example, an XMPP server could itself have a vCard that defines the server's hosting organization, physical location, and relevant contact addresses.

-

There are no security features or concerns related to this proposal.

+

The vCard information published to one's Jabber server is world-readable; therefore, users should exercise due caution when determining what information to include (e.g., street addresses, personal telephone numbers, or email addresses).

This document requires no interaction with &IANA;.