[reSIProcate] Digest credentials for many different usernames from single realm
- From: Dmitry Semyonov <dsemyonov@xxxxxxx>
- Date: Wed, 27 Sep 2006 17:25:00 +0400 (MSD)
Hello all.
Background.
Sipura phone could be forced to resynchronize with provisioning
server by sending unsolicited NOTIFY request to the phone with
"resync" Event header. Note that Sipura authorizes such request with
its own credentials. I.e. username, auth username and password values
are different for each phone even if all the phones are from the same
realm.
Problem.
There is a limitation in DUM - it allows only single credential per
realm. Therefore, such NOTIFY requests could not be sent to several
phones simultaneously using single UserProfile. A workaround could be
to create separate profile for each new request, but I would like to
avoid such approach on the server side with potentially tenths of
thousands phones.
Proposal.
I propose to extend UserProfile interface to allow setting, getting
and clearing of credentials based not only on realm value but also on
username (don't confuse with auth username!). It will be also
necessary to modify ClientAuthManager to retrieve credentials using
username from To header field of 401/407 response in addition to
realm value.
What do you think? Will you accept a patch for this feature?
--
...Bye..Dmitry.