< Previous by Date Date Index Next by Date >
< Previous in Thread Thread Index Next in Thread >

Re: [reSIProcate-users] Authorization by Proxy to Gateway

I'm thinking of writing a Lemur-plugin for that.

I will hook a response, check if it has a WWW-Authenticate/Proxy-Authenticate challenge, if it does I dig a password out of UserStore and resend the request with an Authorization header added.

It seems rather simple. What am I missing?

Though I don't know yet how to pick a user/password pair if there are several ones in UserStore for a realm.

Perhaps I will also need another rewriting plugin to fix To/From headers. May be such plugin already exists somewhere?

Roman Rybalko

*From:* Scott Godin
*Sent:*  Tuesday, March 27, 2018 4:31PM +0300
*To:* Roman Rybalko
*Cc:* Resiprocate-users
*Subject:* Re: [reSIProcate-users] Authorization by Proxy to Gateway

repro is a strict SIP Proxy, it will not provide credentials to another
server/UA, it will only pass them along.  I think you have the following
1.  Disable authentication on repro.
2.  Disable authentication on the gateway.
3.  Use an ACL/whitelist on the gateway, so that it will not challenge
any requests from the repro proxy/domain.