Authentication of in-dialog requests in SIP is borken - you can not rely
on the From/To headers.
klaus
Iñaki Baz Castillo schrieb:
Hi, I've a multidomain OpenSer and I want to allow REFER (with authenticacion
before) just in calls between users of same domain, but it's quite complex:
- [EMAIL PROTECTED] INVITE's [EMAIL PROTECTED]
- During the call [EMAIL PROTECTED] does an in-dialog REFER.
Because the REFER is in-dialog the message is like:
--------------------
REFER sip:[EMAIL PROTECTED]:5060 SIP/2.0
From: sip:[EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Refer-To: ...
...
--------------------
How can my OpenSer know which domain this REFER goes? of course the "To"
header is not valid at all.
Could be a solution a SQL query to "location" table looking for the URI
(sip:[EMAIL PROTECTED]:5060) and getting the username and domain of this?
Any other option?
Thanks a lot.
_______________________________________________
Users mailing list
Users@openser.org
http://openser.org/cgi-bin/mailman/listinfo/users
