[Serusers] How to always remove auth credentials?
Federico Giannici
giannici at neomedia.it
Sat Nov 5 19:06:04 CET 2005
brett-ser-list wrote:
> I;m not entirely sure, but consume_credentials might take care of this..
No, it deletes only "used" credentials.
Anyway, I solved simply removing the Proxy-Authorization header fileds
with a simple replace() function from every ACK, CANCEL and BYE messages
(they shouldn't have it, anyway).
Bye.
> ---------- Original Message ----------------------------------
> From: Federico Giannici <giannici at neomedia.it>
> Date: Sat, 05 Nov 2005 16:50:29 +0100
>
>
>>I have found that some UAs (e.g Grandstream's ones) send the
>>Proxy-Authorization header even in ACKs messages.
>>
>>As we don't explicitly try to authenticate ACKs, we cannot use the
>>consume_credentials() function. In fact, it seems that we have to call
>>proxy_authorize() before we can use the consume_credentials(). But it's
>>contrary to RFC to call proxy_authorize() for ACKs and CANCELs methods!
>>
>>So, how can we prevent the Proxy-Authorization information to be
>>forwarded to subsequent hops?
>>
>>
>>Thanks.
>>
--
___________________________________________________
__
|- giannici at neomedia.it
|ederico Giannici http://www.neomedia.it
___________________________________________________
More information about the sr-users
mailing list