1 Dec
2004
1 Dec
'04
2:30 p.m.
Well, what I really want is something like:
if (method=="INVITE") {
# check if from_user 'caller' are successfully registered in my proxy
if (!lookup('%from_user% in location table')) {
sl_send_reply(404,"Not authorized - You must bu registered to use
this proxy");
break;
}
# accept call
route(3);
}
Well 'ALL CALLS' in my proxy, must to be authenticated...
I don't if this test must to be done on 'invite' or maybe in route(3)
subroutine.
Regards.
On Wed, 01 Dec 2004 08:14:42 -0500, Jamey Hicks <jamey.hicks(a)hp.com> wrote:
sendman wrote:
Hi folks!
I have setup my ser.cfg to request www_authentication on INVITE
messages, well, I'm not sure if this is the best solution for allow
ONLY registered users to make calls on my proxy.
Does anybody knows the right way to do this configuration?
This is the right way to make sure that only authenticated users make
calls on your proxy. I'm guessing that you want to allow
unauthenticated inbound calls unless you have a way to assign
username/passwords to anyone who might want to call one of your
registered users.
I do not think that there are adequate mechanisms implemented for
interdomain authentication of callers. If you do want to authenticate
callers who are not registered on your proxy (to prevent SIP spam) these
two internet drafts might be of interest:
http://www.ietf.org/internet-drafts/draft-ietf-sip-identity-03.txt
http://www.ietf.org/internet-drafts/draft-peterson-message-identity-00.txt
Hope this helps,
Jamey