17 Jan
2017
17 Jan
'17
5:42 p.m.
On 17/01/2017 14:58, Carsten Bock wrote:
Hi,
I don't know, who's responsible for approving bigger messages - if
present, please approve my message for completeness of this thread...
:-)
Done!
Cheers,
Daniel
You are right - except that it doesn't really decrypt the secret, it
only creates a hash identical to the one create by the Webservice and
compares the hash.
Thanks,
Carsten
2017-01-17 14:38 GMT+01:00 Steve Davies
<steve-lists-srusers(a)connection-telecom.com>om>:
--
Daniel-Constantin Mierla
www.twitter.com/miconda -- www.linkedin.com/in/miconda
Kamailio World Conference - May 8-10, 2017 - www.kamailioworld.com
Hi Daniel,
On 17 January 2017 at 14:15, Daniel-Constantin Mierla <miconda(a)gmail.com>
wrote:
I guess you can use other modules such as
http_client to interact with the
web service. The jansson module can be used to parse the result.
Also, it should be possible to do it without interacting with the web
service, because you can compute the password using the shared secret key.
So, in this case, Kamailio doesn't need to interact with the web service.
Thanks for that, and to Carsten who also sent explanation.
It seems like all that documentation about the web service is indeed a
red-herring since the module is neither a client nor a provider of such a
service. There is no obligation to implement such a service as documented -
since in any event auth_ephemeral neither implements nor consumes this web
service.
All auth_ephemeral does it to authenticate clients using a secret (password)
that is encrypted using a shared key. auth_ephemeral I guess decrypts the
secret which is structured so that auth_ephemeral can tell that it is legit
and unexpired.
Do I have this right?
Gotta say that the docs really don't make this clear.
Thanks,
Steve
_______________________________________________
SIP Express Router (SER) and Kamailio (OpenSER) - sr-users mailing list
sr-users(a)lists.sip-router.org
http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-users