[Serusers] How to always remove auth credentials?

Federico Giannici giannici at neomedia.it
Sat Nov 5 19:06:04 CET 2005


brett-ser-list wrote:
> I;m not entirely sure, but consume_credentials might take care of this.. 

No, it deletes only "used" credentials.

Anyway, I solved simply removing the Proxy-Authorization header fileds 
with a simple replace() function from every ACK, CANCEL and BYE messages 
(they shouldn't have it, anyway).

Bye.



> ---------- Original Message ----------------------------------
> From: Federico Giannici <giannici at neomedia.it>
> Date:  Sat, 05 Nov 2005 16:50:29 +0100
> 
> 
>>I have found that some UAs (e.g Grandstream's ones) send the 
>>Proxy-Authorization header even in ACKs messages.
>>
>>As we don't explicitly try to authenticate ACKs, we cannot use the 
>>consume_credentials() function. In fact, it seems that we have to call 
>>proxy_authorize() before we can use the consume_credentials(). But it's 
>>contrary to RFC to call proxy_authorize() for ACKs and CANCELs methods!
>>
>>So, how can we prevent the Proxy-Authorization information to be 
>>forwarded to subsequent hops?
>>
>>
>>Thanks.
>>


-- 
___________________________________________________
     __
    |-                      giannici at neomedia.it
    |ederico Giannici      http://www.neomedia.it
___________________________________________________




More information about the sr-users mailing list