< Previous by Date Date Index Next by Date >
  Thread Index Next in Thread >

[reSIProcate] Digest credentials for many different usernames from single realm


Hello all.

Background.

Sipura phone could be forced to resynchronize with provisioning 
server by sending unsolicited NOTIFY request to the phone with 
"resync" Event header. Note that Sipura authorizes such request with 
its own credentials. I.e. username, auth username and password values 
are different for each phone even if all the phones are from the same 
realm.


Problem.

There is a limitation in DUM - it allows only single credential per 
realm. Therefore, such NOTIFY requests could not be sent to several 
phones simultaneously using single UserProfile. A workaround could be 
to create separate profile for each new request, but I would like to 
avoid such approach on the server side with potentially tenths of 
thousands phones.


Proposal.

I propose to extend UserProfile interface to allow setting, getting 
and clearing of credentials based not only on realm value but also on 
username (don't confuse with auth username!). It will be also 
necessary to modify ClientAuthManager to retrieve credentials using 
username from To header field of 401/407 response in addition to 
realm value.

What do you think? Will you accept a patch for this feature?

-- 
...Bye..Dmitry.