Iñaki Baz Castillo wrote:
El Jueves, 11 de Diciembre de 2008, ingdavidcespedes@cable.net.co escribió:
SORRYYYYYYY, you were right. What i'm trying to say is that if the UA insert the p-p-i and privacy headers, the proxy should understand this and do what I say above.
The user sends the request with: From: Anonymous sip:anonymous@XXXXXx P-Preferred-Identity: sip:alice@domain.com Privacy: id
If the user has only one identity, then the PPI header is not necessary as the user's identity will be know by the proxy, and the user for example bill be identified by its authentication username. But this again may cause problem with multidomain configurations and the auth user does not include domain.
Thus, maybe adding the PPI header always is a good idea.
regards klaus
Then the proxy knows who is by checking PPI header and could ask for credentiales. After it, the proxy would remove PPI before routing the request.
If the proxy sends the request to a trusted node, it could add PAI header: P-Asserted-Identity: sip:alice@domain.com Privacy: id
And the next element would remove it if it routes to an untrusted node/endpoint.