Hi Cameron,
with auth avp parameters you are able to use different user names / passwords for the same realm. You can define the AVP's in the failure route before calling the uac_auth() function. By this way you could load the values for the credential from a database for each user or define manual for different situations.
example:
modparam("uac","auth_realm_avp","$avp(s:auth_realm)") modparam("uac","auth_username_avp","$avp(s:auth_username)") modparam("uac","auth_password_avp","$avp(s:auth_password)")
failure_route[3] {
# authentication reply received? if ( t_check_status("401|407") ) { xlog("L_INFO", "authentication reply (401|407) received");
if(expr) # define your different situations here { avp_printf("$avp(s:auth_realm)", "realm"); avp_printf("$avp(s:auth_username)", "user_a"); avp_printf("$avp(s:auth_password)", "password_a"); avp_print(); } else { avp_printf("$avp(s:auth_realm)", "realm"); avp_printf("$avp(s:auth_username)", "user_b"); avp_printf("$avp(s:auth_password)", "password_b"); avp_print(); };
regards, Andreas | |
CB schrieb:
|I am trying to understand the relationship between the various module parameters for the uac module. |
Imagine I want to authenticate on a proxy user different credentials in different situations. The credential module parameter allows specification of the username, realm and password. I think (correct me if I’m wrong) that I can have multiple of these specified for various realms:
modparam("uac","credential","user1:realm1:pw1")
modparam("uac","credential","user2:realm2:pw2")
According to the documentation, “This parameter is required if UAC authentication is used.” What then is the purpose of the |auth_realm_avp, ||auth_username_avp| and |auth_password_avp module parameters? Do they replace the credential parameter or are they for something different?|
| |
|Any help appreciated.|
| |
|Regards|
| |
|Cameron|
| |
Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users