Re: [reSIProcate] Helper::advancedAuthenticateRequest() and old nonces
- From: "Alexander Altshuler" <alt@xxxxxxxxx>
- Date: Wed, 26 Mar 2008 10:34:01 +0300
I agree to make it configurable, and it must be done in consistent way.
So it should be configurable for DigestAuthenticator monkey and
(Repro)ServerAuthManager of dum also.
My point to do make it configurable is the same:
If I definitely know that my proxy will recognize nonces after restart
I will prefer 403, otherwise 401 is OK.
Regards
Alexander Altshuler
http://xeepe.com
-----Original Message-----
From: Byron Campen [mailto:bcampen@xxxxxxxxxxxx]
Sent: Tuesday, March 25, 2008 11:13 PM
To: Bjцrn Andersson
Cc: Alexander Altshuler; 'resiprocate-devel'
Subject: Re: [reSIProcate] Helper::advancedAuthenticateRequest() and old
nonces
Ok, maybe everyone would be happy if we made the behavior
configurable (Alex)? (ie, have a bool that could be set when
launching repro that specified whether we did a 403 or a 401 when a
bad nonce came in)
Best regards,
Byron Campen