Hi Bela,
I just did a backport from master to 9.3.2 for the SHA support, see
https://github.com/OpenSIPS/opensips-cp/commit/de1e45838eacc8272357f0fb9f8758deaee3
Regards,
Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
https://www.opensips-solutions.com
OpenSIPS Summit 27-30 Sept
Hi,
Some more info on this: the challenge function allows you to specify a
list of algorithms, not only one, so you can try "MD5,SHA-256" -> this
will allow the client to pick the one it supports.
But in order to have this multi-algs working, be sure you do NOT set the
"password_column"
Correction on my comments. It is a client side issue. Thank you!
On Thu, Sep 15, 2022 at 3:40 PM jacky z wrote:
> After checking the log in the client side, here are some interesting
> findings:
>
> Here is the what the client side received:
>
> WWW-Authenticate: Digest realm="sip.domain.com",
After checking the log in the client side, here are some interesting
findings:
Here is the what the client side received:
WWW-Authenticate: Digest realm="sip.domain.com",
nonce="3mKlesEwotxnM5nLMMLgQA63E6VTKsTFpEkK7OkoE4QA", qop="auth,auth-int",
algorithm=SHA-256
Then the client side logs show:
Hi Bogdan-Andrei,
I tried either specifying it or not. Neither worked. Here is the script
when I tried:
www_challenge("","auth,auth-int","SHA-256");
I also tried specifying the realm in the above code. When the above is
used, there is no such error, but always returns 401. I checked the column
Hi,
In your opensips.cfg, when doing auth challenge to the end points, do
you specify the SHA256 alg?
https://opensips.org/html/docs/modules/3.2.x/auth.html#func_www_challenge
Regards,
Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
https://www.opensips-solutions.com
OpenSIPS Summit
Hi Team,
Does ha1_sha256 work in general opensips config settings? I have the
following in the scripts:
modparam("auth_db", "calculate_ha1", 0)
modparam("auth_db", "password_column", "ha1_sha256")
but got the following error in the log:
/usr/sbin/opensips[28261]: ERROR:auth:auth_calc_HA1:
Hi Bela,
The OCP does not support ha1_sha256 AFAIK. Consider opening a feature
request here https://github.com/OpenSIPS/opensips-cp/issues
Regards,
Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
https://www.opensips-solutions.com
OpenSIPS Summit 27-30 Sept 2022, Athens
Hi all,
Is there any way to add new subscriber from OpenSIPS CP 9.3.2 using password
mode ha1_sha256?
The ha1 (MD5(username:realm:password)) works fine but I had no luck with the
value generation for the ha1_sha256 field in “subscriber” table.
I have this setting:
modparam("auth_db",