-
Notifications
You must be signed in to change notification settings - Fork 82
Policy extension: Allow servers to advertize clear policy information and require consent #564
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Open
ValwareIRC
wants to merge
3
commits into
ircv3:master
Choose a base branch
from
ValwareIRC:patch-19
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Changes from all commits
Commits
Show all changes
3 commits
Select commit
Hold shift + click to select a range
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,252 @@ | ||
| --- | ||
| title: Policy Consent Extension | ||
| layout: spec | ||
| work-in-progress: true | ||
| copyrights: | ||
| - | ||
| name: "ValwareIRC" | ||
| email: "[email protected]" | ||
| period: "2025" | ||
| --- | ||
|
|
||
| ## Notes for implementing work-in-progress version | ||
|
|
||
| This specification relies on the Standard Replies framework. | ||
|
|
||
| Software implementing this work-in-progress specification MUST NOT use the unprefixed `draft/policy` capability name. Instead, implementations SHOULD use the `draft/policy` capability to ensure interoperability with compatible implementations. | ||
|
|
||
| The final version of the specification will use an unprefixed capability name. | ||
|
|
||
| ## 1. Motivation | ||
|
|
||
| This draft introduces a structured policy consent mechanism for IRC servers and clients. It enables clients to present a policy UI via the `draft/policy` capability and allows users to explicitly agree to the terms using the `/CONSENT` command. Consent MAY be required for specific actions (e.g. account registration) or for general usage, depending on server configuration. | ||
|
|
||
| ## 2. Capability Advertisement | ||
|
|
||
| Servers supporting this specification MUST advertise the following IRCv3 capability with an optional value: | ||
|
|
||
| - `draft/policy` – Consent supported, but not required | ||
| - `draft/policy=consent-required` – Consent is mandatory to use the service | ||
|
|
||
| ### 2.1 Optional Policy Consent | ||
|
|
||
| ``` | ||
| CAP LS | ||
| draft/policy | ||
| ``` | ||
|
|
||
| - Consent is **supported**, but **not required** to connect. | ||
| - The server MAY still restrict specific commands (e.g. `/REGISTER`) until consent is granted. | ||
|
|
||
| ### 2.2 Required Policy Consent | ||
|
|
||
| ``` | ||
| CAP LS | ||
| draft/policy=consent-required | ||
| ``` | ||
|
|
||
| - Consent is **required** before the user may proceed. | ||
| - The user MUST explicitly agree to the policy via `/CONSENT`. | ||
|
|
||
| ## 3. Server Behavior | ||
|
|
||
| ### 3.1 On Connection | ||
|
|
||
| Servers MUST check if the user has previously provided consent. | ||
|
|
||
| - If `draft/policy=consent-required` is advertised and no consent exists, the user MUST be prompted before proceeding. | ||
| - If only `draft/policy` is advertised, prompting MAY be deferred until a restricted action is attempted. | ||
|
|
||
| #### With `draft/policy` (grouped sections): | ||
|
|
||
| ``` | ||
| :irc.example.com NOTE POLICY TOS * :Terms of Service | ||
| :irc.example.com NOTE POLICY TOS 1 :You agree to follow network etiquette. | ||
| :irc.example.com NOTE POLICY TOS 2 :You will not spam or flood. | ||
| :irc.example.com NOTE POLICY TOS * :End of Terms of Service. | ||
|
|
||
| :irc.example.com NOTE POLICY RULES * :Community Rules | ||
| :irc.example.com NOTE POLICY RULES 1 :Be respectful to others. | ||
| :irc.example.com NOTE POLICY RULES 2 :No harassing language. | ||
| :irc.example.com NOTE POLICY RULES * :End of Community Rules. | ||
|
|
||
| :irc.example.com NOTE POLICY PRIVACY * :Privacy & Data Use | ||
| :irc.example.com NOTE POLICY PRIVACY 1 :Minimal personal data is collected. | ||
| :irc.example.com NOTE POLICY PRIVACY 2 :Data is retained for 30 days. | ||
| :irc.example.com NOTE POLICY PRIVACY * :End of Privacy & Data Use. | ||
|
|
||
| :irc.example.com NOTE POLICY * :To accept, click “Accept” or type /CONSENT | ||
| ``` | ||
|
|
||
| #### Without `draft/policy` support: | ||
|
|
||
| ``` | ||
| :irc.example.com NOTICE <nick> :You must review and accept our policy to continue. Visit https://example.com/policy — type /CONSENT to accept. | ||
| ``` | ||
|
|
||
| ### 3.2 Consent-Gated Actions | ||
|
|
||
| When `draft/policy` is present without `=consent-required`, servers MAY block certain commands until consent is obtained. | ||
|
|
||
| Example: | ||
|
|
||
| ``` | ||
| REGISTER valware hunter2 [email protected] | ||
| :irc.example.com NOTICE valware :You must first accept our policy to register. Type /CONSENT or visit https://example.com/policy. | ||
| ``` | ||
|
|
||
| ## 4. Client Behavior | ||
|
|
||
| Clients SHOULD behave as follows: | ||
|
|
||
| - If `draft/policy` is present: | ||
| - Prepare to show a policy consent flow when prompted. | ||
| - Optionally display a “Review and Accept Policy” button in the UI. | ||
| - Render **TOS**, **RULES**, and **PRIVACY** as separate sections or panels. | ||
|
|
||
| - If `draft/policy=consent-required` is present: | ||
| - Require user interaction with the policy before proceeding. | ||
| - Automatically send `/CONSENT` after user approval. | ||
|
|
||
| ## 5. Commands | ||
|
|
||
| ### 5.1 `CONSENT` | ||
|
|
||
| ``` | ||
| CONSENT | ||
| ``` | ||
|
|
||
| Indicates the user agrees to the server’s policy. | ||
|
|
||
| **Server MUST:** | ||
|
|
||
| - Persistently store the user's consent (by hostmask, account, etc.) | ||
| - Suppress further consent prompts | ||
| - Reply with: | ||
|
|
||
| ``` | ||
| :irc.example.com CONSENT SUCCESS * :Thank you. You may now use the service. | ||
| ``` | ||
|
|
||
| **Server MAY:** | ||
|
|
||
| - Block commands until consent is received | ||
| - Treat multiple `CONSENT` calls as idempotent, replying: | ||
|
|
||
| ``` | ||
| :irc.example.com NOTE CONSENT ALREADY_CONSENTED * :You have already accepted the policy. | ||
| ``` | ||
|
|
||
| ### 5.2 `CONSENT REVOKE` Command | ||
|
|
||
| ``` | ||
| CONSENT REVOKE | ||
| ``` | ||
|
|
||
| Explicitly withdraws prior consent. | ||
|
|
||
| **Server MUST:** | ||
|
|
||
| - Revoke or mark consent as withdrawn | ||
| - Reply: | ||
|
|
||
| ``` | ||
| :irc.example.com CONSENT SUCCESS * :Your consent has been revoked. You will be prompted again when required. | ||
| ``` | ||
|
|
||
| **Server MAY:** | ||
|
|
||
| - Restrict or disconnect the user if consent is mandatory: | ||
|
|
||
| ``` | ||
| :irc.example.com CONSENT ERROR * :Consent is required to use this service. Disconnecting. | ||
| ERROR :Consent revoked | ||
| ``` | ||
|
|
||
| **Clients MAY:** | ||
|
|
||
| - Provide a “Revoke Consent” button | ||
| - Automatically re-prompt as needed | ||
|
|
||
| ### 5.3 Message Types | ||
|
|
||
| - `CONSENT SUCCESS` — for successful operations | ||
| - `NOTE CONSENT` — for consent-related messages | ||
| - `FAIL CONSENT` — for failures | ||
|
|
||
| ### 5.4 `POLICY` Command | ||
| Requests the current structured policy information from the server. | ||
|
|
||
| Server MUST: | ||
|
|
||
| - Send a series of NOTE POLICY messages grouped by type (TOS, RULES, PRIVACY) | ||
|
|
||
| - Ensure message order allows clients to render sections properly | ||
|
|
||
| - End each group with a final * line indicating the section is complete | ||
|
|
||
| - If the policy has already been shown recently, MAY still resend it on request | ||
|
|
||
| Example Response: | ||
| ``` | ||
| :irc.example.com NOTE POLICY TOS * :Terms of Service | ||
| :irc.example.com NOTE POLICY TOS 1 :You agree to follow network etiquette. | ||
| :irc.example.com NOTE POLICY TOS 2 :No spam or flooding allowed. | ||
| :irc.example.com NOTE POLICY TOS :Other text. | ||
|
|
||
| :irc.example.com NOTE POLICY RULES * :Network Rules | ||
| :irc.example.com NOTE POLICY RULES 1 :Be kind to others. | ||
| :irc.example.com NOTE POLICY RULES 2 :No illegal activity. | ||
| :irc.example.com NOTE POLICY RULES :Other text. | ||
|
|
||
| :irc.example.com NOTE POLICY PRIVACY * :Privacy Policy | ||
| :irc.example.com NOTE POLICY PRIVACY 1 :We collect minimal connection data. | ||
| :irc.example.com NOTE POLICY PRIVACY 2 :Logs are retained for abuse prevention. | ||
| :irc.example.com NOTE POLICY PRIVACY :Other text. | ||
|
|
||
| :irc.example.com NOTE POLICY * :To accept the policy, type /CONSENT | ||
| ``` | ||
| Client MAY: | ||
|
|
||
| - Trigger /POLICY when the user presses a “Review Policy” button | ||
| - Automatically call /POLICY during login flows if draft/policy=consent-required | ||
|
|
||
| Notes: | ||
|
|
||
| - The /POLICY command has no parameters | ||
| - Servers SHOULD send all three sections: TOS, RULES, and PRIVACY, even if some are empty | ||
| - A delayed or partial policy response MAY lead to invalid or rejected consent | ||
|
|
||
| ## 6. Storage and Revocation | ||
|
|
||
| - Consent SHOULD be stored persistently. | ||
| - If the policy changes significantly, servers MAY revoke prior consent. | ||
| - Consent SHOULD be tied to authenticated accounts where possible. | ||
|
|
||
| ## 7. Security and Policy Considerations | ||
|
|
||
| - Clients MUST NOT auto-send `/CONSENT` without user input. | ||
| - Servers MUST provide an accessible and accurate policy URL. | ||
| - Consent requirements MUST be clearly communicated to the user. | ||
|
|
||
| ## 8. Example Flows | ||
|
|
||
| ### A. With `draft/policy=consent-required` and UI rendering: | ||
|
|
||
| ``` | ||
| :irc.example.com NOTE POLICY TOS * :Terms of Service... | ||
| ... | ||
| :irc.example.com NOTE POLICY PRIVACY * :Privacy & Data Use... | ||
| CONSENT | ||
| :irc.example.com CONSENT SUCCESS valware :Thank you. You may now use the service. | ||
| ``` | ||
|
|
||
| ### B. With `draft/policy` (optional), blocking `/REGISTER`: | ||
|
|
||
| ``` | ||
| REGISTER valware hunter2 [email protected] | ||
| :irc.example.com NOTE REGISTER CONSENT_REQUIRED * :Consent is required to register. | ||
| :irc.example.com NOTE REGISTER CONSENT_REQUIRED :Please review the policy by typing /POLICY. | ||
| CONSENT | ||
| :irc.example.com CONSENT SUCCESS valware :Thank you. You may now register an account. | ||
| ``` | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
click “Accept”may be making a few assumptions about the interface the client presents, which the server won't know (client may use different wording, be CLI without ability to "click" or have localisation).Perhaps this line should be omitted and clients are encouraged to provide a clear way to accept the policies.
For example, a GUI application may present a modal view which displays the text and has an button to agree or disagree. They may not have an input bar to type "
/CONSENT. At-least that is how I'd likely have designed this as a client developer