Hi Günther,
unfortunately the script is not availabel anymore on the site. you can send it as attachment if not too big.
in the flow below, the problem is that the 407 from the remote party must not be fwded to the client but processed by openser : got via failure route and applied uac_auth().
regards, bogadn
Günther Starnberger wrote:
On Tue, Mar 21, 2006 at 07:59:31PM +0100, Günther Starnberger wrote:
i am trying to use uac_auth() on CVS-HEAD but somewhere there is a problem with missing record-route headers.
hmm.. there seems to be a more fundamental problem somewhere (most likely in my configuration).
i've made a packet-dump available at: http://pastebin.com/614719
the ip's in the dump are: 62.163.103.30 - client 62.116.32.102 - openser 194.221.62.206 - remote end
basically there is the following communication: client -> openser: INVITE openser -> client: 407 proxy auth required client -> openser: ACK client -> openser: INVITE with creds openser -> client: trying openser -> remote: INVITE without creds [1] remote -> openser: unauthorized openser -> remote: ACK openser -> client: 407 proxy auth required client -> openser: ACK client -> openser: INVITE with creds openser -> client: trying openser -> remote: INVITE with creds from client (!!!) remote -> openser: unauthorized openser -> remote: ACK openser -> remote: INVITE with right uac auth creds remote -> openser: session progress [... continuing with problem described in last mail]
[1] that's ok as there is a consume_credentials which should remove the credentials send by the client
there are some strange things in the dump. e.g. why does openser forward the credentials from the client to the remote endpoint although they should have been removed by consume_credentials? and of course the missing record-route problem which i described in my first mail.
bye, /gst
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users