[OpenSIPS-Users] pv_proxy_authorize cache

Bogdan-Andrei Iancu bogdan at opensips.org
Tue Jul 25 09:06:38 EDT 2017


The difference between www_ and proxy_ comes to what SIP headers they 
are looking for (in the SIP message) for reading the auth answer 
(Proxy-Authorize versus Authorize). Otherwise, in terms of auth 
algorithm, they are the same.

Regards,

Bogdan-Andrei Iancu
   OpenSIPS Founder and Developer
   http://www.opensips-solutions.com

OpenSIPS Bootcamp 2017, Houston, US
   http://opensips.org/training/OpenSIPS_Bootcamp_2017.html

On 07/25/2017 04:01 PM, Mike Tesliuk wrote:
>
> Hello Bogdan,  the $avp(usuario) is populated with the $fU as you 
> think, the password is using the calculate parameter , but my question 
> was if the pv_proxy_authorize is supposed to work, because on the 
> example was used the www_ , and on my tests  do not work, but i will 
> double check my configuration an try again.
>
>
> thank you very much
>
>
> Em 25/07/17 09:45, Bogdan-Andrei Iancu escreveu:
>> Hi Mike,
>>
>> depending on your SIP flow, you can use either www_ (if a REGISTER) 
>> or proxy_ (if a non-REGISTER) functions.
>>
>> In your script snip, you must populate both auth username and 
>> password before the calling the auth function. I do not see the 
>> $avp(usuario) set (probably with $fU ??) . Also, if the password is 
>> plain/text, be use you properly set the calculate_ha1 parameter.
>>
>> Best regards,
>> Bogdan-Andrei Iancu
>>    OpenSIPS Founder and Developer
>>    http://www.opensips-solutions.com
>>
>> OpenSIPS Bootcamp 2017, Houston, US
>>    http://opensips.org/training/OpenSIPS_Bootcamp_2017.html
>> On 07/24/2017 11:21 PM, Mike Tesliuk wrote:
>>>
>>> Hello there,
>>>
>>>
>>> Im trying to implement a proxy_authorize using cache without success.
>>>
>>>
>>> is that possible to perform the cache using proxy_authorize ? on the 
>>> example [1] i see the www_challenge() no proxy_challenge, is that 
>>> correct ?
>>>
>>>
>>> on my test im doing this (below):
>>>
>>>
>>> modparam("auth","username_spec", "$avp(usuario)")
>>> modparam("auth","password_spec", "$avp(senha)")
>>> modparam("auth_db", "load_credentials", "$avp(senha)=password")
>>>
>>>
>>> $avp(usuario) = $fU;
>>>
>>> if(cache_fetch("redis","passwd_$fU",$avp(senha))) {
>>> 	if(!pv_proxy_authorize("")){
>>> 		proxy_challenge("","0");
>>> 		exit;
>>> 	}
>>> }else{
>>> 	if(!proxy_authorize("")){
>>> 		proxy_challenge("","0");
>>> 		exit;
>>> 	}
>>>
>>> 	
>>> 	cache_store("redis","passwd_$fU","$avp(senha)",3600);
>>>
>>> }
>>>
>>> But with this rule i do not get the user authenticated.
>>>
>>> what im doing wrong ? :)
>>>
>>>
>>> Thanks in advice
>>>
>>>
>>>
>>>
>>> [1] - 
>>> https://www.opensips.org/Documentation/Tutorials-MemoryCaching#toc3
>>>
>>> -- 
>>>
>>>
>>> ‚ÄčAtenciosamente,
>>> WSU TECNOLOGIA
>>> Mike Tesliuk
>>> Rua Visconde do Rio Branco 1630 . Sala 1302 . Curitiba . PR
>>> 12387 SW 125th ter, Miami, Florida 33186 - USA
>>> tel +55 (41) 3941.0650   +1 (786) 719.6253
>>> *website <http://www.wsu.com.br/>  | mapa 
>>> <https://www.google.com.br/maps/place/WSU+Tecnologia/@-25.4354389,-49.2779048,17z/data=%213m1%214b1%214m2%213m1%211s0x94dce473a24cf705:0x369fdf05247b568b?hl=pt-BR>  | 
>>> email <mailto:contato at wsu.com.br> *
>>> .
>>>
>>>
>>>
>>> _______________________________________________
>>> Users mailing list
>>> Users at lists.opensips.org
>>> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>
>
> -- 
>
>
> ‚ÄčAtenciosamente,
> WSU TECNOLOGIA
> Mike Tesliuk
> Rua Visconde do Rio Branco 1630 . Sala 1302 . Curitiba . PR
> 12387 SW 125th ter, Miami, Florida 33186 - USA
> tel +55 (41) 3941.0650   +1 (786) 719.6253
> *website <http://www.wsu.com.br/>  | mapa 
> <https://www.google.com.br/maps/place/WSU+Tecnologia/@-25.4354389,-49.2779048,17z/data=%213m1%214b1%214m2%213m1%211s0x94dce473a24cf705:0x369fdf05247b568b?hl=pt-BR>  | 
> email <mailto:contato at wsu.com.br> *
> .
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20170725/fdb8cca3/attachment.html>


More information about the Users mailing list