... but you’re really hacking kamailio to be an http
api server...
Actually it will be a HTTP Client...kamailio will send requests to an HTTPS
REST Service that requires authentication, returning a JWT token if
authentication is OK. Then, with the Token, Kamailio will make another
HTTPS Request to another endpoint of the REST Service to do some voodoo....
My issue is on how to handle, on Kamailio, the authentication JWT token
returned from the REST Service.
I did consider having a Python script handling HTTP requests...might be the
best solution, as it is (or seems to be....) more flexible in the long
term....
Atenciosamente / Kind Regards / Cordialement / Un saludo,
*Sérgio Charrua*
On Tue, Aug 27, 2024 at 1:08 PM Fred Posner via sr-users <
sr-users(a)lists.kamailio.org> wrote:
On Aug 27, 2024, at 6:58 AM, Sergio Charrua via
sr-users <
sr-users(a)lists.kamailio.org> wrote:
Hi all!
I need to integrate a REST Service with Kamailio. Integration is easy,
not a
problem, but my concern is that the REST Services has a JWT token
authentication required for each request, common to many (it not all) REST
Services.
So, it is required to POST for authentication
(username and password)
and once I get authentication done, and receive a JWT
token, I will need to
use this token in all other requests to the REST Service. The token is
valid for 24h.
My question is:
- how to save the token for use during 24h, on all calls/sessions,
without the
need to authenticate on every call?
- how to detect the token has expired and
re-authenticate?
I looked for some modules, but could not find any that suited me.
I am thinking of executing a Python script for this, but concerned about
latency
and PDD....
Any thoughts? Any suggestions? Any known
best-practice?
Atenciosamente / Kind Regards / Cordialement / Un saludo,
Sérgio Charrua
Have you considered an inbetween service (such as a go/python/node api
listener) to handle the authentication / token issuance part?
In theory I assume you could use the JWT and other modules to help do what
you are looking for, but you’re really hacking kamailio to be an http api
server at that point and although it may be able to do it quite well, it’s
really not the first candidate I’d choose for the job.
Regards,
Fred Posner
https://fredoso.com
__________________________________________________________
Kamailio - Users Mailing List - Non Commercial Discussions
To unsubscribe send an email to sr-users-leave(a)lists.kamailio.org
Important: keep the mailing list in the recipients, do not reply only to
the sender!
Edit mailing list options or unsubscribe: