my db http returns the password in plain string by the way.
On Mon, Jun 1, 2015 at 6:57 PM, Tito Cumpen <[email protected]
<mailto:[email protected]>> wrote:
Hello group,
I am attempting to add memcache auth validation in opensips
2.1. I was using http db which returns a string of the user
password password. This was working prior to utilizing
pv_www_authorize. I used this document as a guideline
http://www.opensips.org/Documentation/Tutorials-MemoryCaching
Here is my auth mod param config
loadmodule "cachedb_local.so"
loadmodule "auth.so"
loadmodule "auth_db.so"
modparam("auth","username_spec","$avp(i:54)")
modparam("auth","password_spec","$avp(i:55)")
modparam("auth","calculate_ha1",1)
modparam("auth_db", "calculate_ha1", yes)
modparam("auth_db", "password_column", "password")
#modparam("auth_db", "db_url",
modparam("auth_db", "db_url",
"http://mysubscriberdatabase.com";)
modparam("auth_db", "load_credentials", "$avp(i:55)=password")
if (is_method("REGISTER")) {
# indicate that the client supports DTLS
# so we know when he is called
if (isflagset(SRC_WS))
setbflag(DST_WS);
if ( isflagset(uac_ws) ) {
xlog("setting avp attribute in register for websocket
\n");
$avp(attr)="websocket";
}
if(cache_fetch("local","passwd_$tu",$avp(i:55))) {
xlog("$tU 's credentials are stored in local cache using it
for this register request \n");
$avp(i:54) = $tU;
xlog("SCRIPT: stored password is $avp(i:55)\n");
# perform auth from variables
# $avp(i:54) contains the username
# $avp(i:55) contains the password
if (!pv_www_authorize("")) {
$var(rc2) = pv_www_authorize("");
# $var(rc2) = www_authorize("", "subscriber");
xlog("Return code is $var(rc2) \n");
switch ( $var(rc2) ) {
case 1 :
# if ( proto==TCP || 0 ) {
# setflag(TCP_PERSISTENT);
# setflag(6);
# }
if (!save("location","f"))
sl_reply_error();
exit;
# success
break;
case -1:
sl_send_reply("404","User not found");
exit;
break;
case -2:
sl_send_reply("403","Forbidden (Bad auth)");
exit;
break;
case -3:
www_challenge("", "0");
exit;
#sl_send_reply("403","Forbidden auth ID");
#break;
default:
www_challenge("", "0");
exit;
}
};
if (!save("location","f"))
sl_reply_error();
exit;
}else{
xlog("could not find the auth info in local cache for $tU\n");
xlog("accessing the external db for auth info");
# authenticate the REGISTER requests
if (!www_authorize("", "subscriber"))
{
xlog("new challenger $tU\n");
# www_challenge("", "0");
$var(rc) = www_authorize("", "subscriber");
xlog("Return code is $var(rc) \n");
switch ( $var(rc) ) {
case 1 :
# if ( proto==TCP || 0 ) {
# setflag(TCP_PERSISTENT);
# setflag(6);
# }
# $avp(me) = $(tU{s.tolower});
cache_store("local","passwd_$tu","$avp(i:55)",1200);
if (!save("location","f"))
sl_reply_error();
exit;
# success
break;
case -1:
sl_send_reply("404","User not found");
exit;
break;
case -2:
sl_send_reply("403","Forbidden (Bad auth)");
exit;
break;
case -3:
www_challenge("", "0");
exit;
#sl_send_reply("403","Forbidden auth ID");
#break;
default:
www_challenge("", "0");
exit;
}
}
xlog("should be storing local now that it has been
authorized\n");
cache_store("local","passwd_$tu","$avp(i:55)",1200);
}
if (!save("location","f"))
sl_reply_error();
exit;
}
The issue is the pv__www_authorize method after the
verification wether the password is stored locally always
returns -2 which means the password is incorrect. Can anyone
provide any guidence as to why this is ?
Thanks,
Tito
_______________________________________________
Users mailing list
[email protected] <mailto:[email protected]>
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
