[Question] Does it make sense to add UUID support to the mail bot?

[Daenges]

Prerequisites

• [X] I have read and understood the user manual
• [X] I made sure I am running the latest development build
• [X] I tried to look for similar feature requests before opening a new one

Console Client Version

Latest

Description of the Question

I was considering to add UUID support for the mail script, to avoid exploitation through nick plugins ( #1142 ). Well, jokes on me, I found out about a very popular nick plugin, which is based on this API. The API advertises, that it can change Playername, Playerskin and UUID independend from each other. Well, this breaks the whole system, since the client has no way anymore to identify a player properly. Therefore I do not see any benefits of adding UUID support, since it will not fix any problem.

The only part where the bot might profit from this is that users would also receive messages after a name change. But I do not think that this edge case is worth adding this feature especially if you consider that this could break compatability with offline servers.

Do you have any good justification for the implementation? Because mine got blown away.

Solutions you've already considered

No response

Attach screenshot here (If applicable)

No response

Anythings that could help us answering the question

No response

Minecraft Version

No response

Device

No response

Operating System

No response

Server Address (If applicable)

No response

[ORelio]

I don't think you'll be ever 100% sure player names are not spoofed. See #1142

[Daenges]

I don't think you'll be ever 100% sure player names are not spoofed. See #1142

Well, this is the reason I referred to it. The question is:

• Why should I implement UUID support, if it would fail on literally the same plugin, as the current "name-only" version especially if there are only benefits in rare edge cases. On top of that, we can just add the UUID support on top of the current system to keep compatibility with offline servers. ( This will bloat the code unnecessary, especially if I do not even fix a real problem with it. )

As I said, if you have any argument on why to add it let me know. This "Question" is more or less an information, on why this feature might not get implemented by me.

[ORelio]

Woops, replied too fast. Well, the UUID support in chat messages is 1.16+ only and is still at the discretion of server admins, so a server can send spoofed UUIDs to access the desired mailbox. As a result, there is not much added security.