The Jabber-ID shouldn't contain the telefon number but be a salted hash.
The salt and the salted hash have to be saved in a external database and there have to be an API which handels the search and the number-JID connections.
In this way the registration have to be like this:
App sends telefon-number to the API, the API generates a random salt and return the JID
The Jabber-ID shouldn't contain the telefon number but be a salted hash.
The salt and the salted hash have to be saved in a external database and there have to be an API which handels the search and the number-JID connections.
In this way the registration have to be like this: