Re: [OpenSER-Users] Multidomain and in-dialog REFER auth issue

15 Oct 2007

      Authentication of in-dialog requests in SIP is borken - you can not rely 
on the From/To headers.
klaus
Iñaki Baz Castillo schrieb:
...
Hi, I've a multidomain OpenSer and I want to allow REFER (with authenticacion 
before) just in calls between users of same domain, but it's quite complex:

userA@domainA.com INVITE's userB@domainB.com.
During the call userA@domainA.com does an in-dialog REFER.

Because the REFER is in-dialog the message is like:

REFER sip:userB@80.98.123.23:5060 SIP/2.0
From: sip:userA@domainA.com
To: userB@domainB.com
Refer-To: ...
...

How can my OpenSer know which domain this REFER goes? of course the "To" 
header is not valid at all.
Could be a solution a SQL query to "location" table looking for the URI 
(sip:userB@80.98.123.23:5060) and getting the username and domain of this?
Any other option?
Thanks a lot.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [OpenSER-Users] Multidomain and in-dialog REFER auth issue