URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=fb71263… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 22:44:27 2010 +0200 auth_db(k): use fixup_var_str_12() for realm param URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=769c79c… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 22:26:14 2010 +0200 auth_db(k): use post_auth() via auth api URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=b12e4cb… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 22:14:12 2010 +0200 auth(k): module removed - use modules/auth insted of this one URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=90763a8… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 22:10:00 2010 +0200 auth(k) and siputils: moved rpid operations - rpid operations moved to siputils module - it is not much relation between authentication and rpid - auth(k) is to be removed, functionality replaced by modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=779bb37… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 22:08:50 2010 +0200 osp(k): use siputils api for rpid operations - rpid operations were moved from auth(k) to siputils module URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=2583bf4… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 21:11:14 2010 +0200 kamailio.cfg: updates due to last auth changes URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=9627196… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 21:06:54 2010 +0200 auth: aaa_avps.h removed - the file was included only by modules_s/auth_db - its content was sync'ed to modules_s/auth_db/aaa_avps.h - this file was no longer needed URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=81b384a… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 21:05:11 2010 +0200 auth_db(s): updated local aaa_avps.h - local aaa_avps.h was not used, instead was modules/auth/aaa_avps.h - aaa_avps.h content is taken from modules/auth/aaa_avps.h and now local file is used URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=fe69840… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:54:24 2010 +0200 osp(s): removed unused auth/api.h URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=2b9ff1a… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:53:55 2010 +0200 auth_radius(s): updated to use modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=a9ca27b… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:53:28 2010 +0200 auth_db(s): updated to use modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=c9ce805… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:52:59 2010 +0200 auth_radius(k): updated to use modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=034d5d4… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:52:30 2010 +0200 auth_diameter(k): updated to use modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=51a5d53… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:52:07 2010 +0200 auth_db(k): updated to use modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=c39e6a5… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 20:26:38 2010 +0200 auth(s): module moved to modules/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=70b087d… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 15:58:14 2010 +0200 osp(s): update Makefile for libosptk URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=e4ee189… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 15:48:43 2010 +0200 auth_db(k): updated to use auth(s) module - aliased {www,proxy}_authorize to {www,proxy}_authenticate since they perform user authentication - use the API provided by modules_s/auth, improved functionality and security protection comparing with modules_k/auth URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=9d78c11… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 15:44:38 2010 +0200 auth(s): documentation updated URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=9c2c336… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 14:45:32 2010 +0200 auth(s): added enum for cfg return codes - useful to detect if user does not exists or password is wrong - pv_{www,proxy}_authenticate() functions updated to use them URL: http://git.sip-router.org/cgi-bin/gitweb.cgi/sip-router/?a=commit;h=b3f0a3f… Author: Daniel-Constantin Mierla <miconda(a)gmail.com> Date: Sun Jul 25 12:47:25 2010 +0200 auth(s): new cfg functions - pv_www_authenticate(real, passwd, flags) - pv_proxy_authenticate(real, passwd, flags) - perform Digest authentication taking password from a parameter (can be cfg var) - username is taken from Auth header - realm and passwd must have values - $td (To URI domain) can be used for REGISTER - $fd (From URI domain) can be used for other SIP requests - flags - bitmask of - 1 - the content of password param is HA1/HA1b - 2 - build challenge header (no qop) and add it in an avp - 4 - build challenge header (qop=auth) and add it in an avp - 8 - build challenge header (qop=auth-int) and add it in an avp - when challenge header is built, append_to_reply() and sl reply functions can be used to send appropriate SIP reply to challenge for authentication - www_challenge(realm, flags) - proxy_challenge(realm, flags) - send Digest authentication challenge (401 or 407 replies) - realm must have value - $td (To URI domain) can be used for REGISTER - $fd (From URI domain) can be used for other SIP requests - flags - bitmask of - 1 - build challenge header (qop=auth) and add it in an avp - 2 - build challenge header (qop=auth-int) and add it in an avp - 4 - do not send '500 Internal Server Error' reply automatically in failure cases (error code is returned to config)