[OpenSIPS-Users] Rest client for auth
Tito Cumpen
tito at xsvoce.com
Fri Jun 23 05:38:39 EDT 2017
Bogdan,
I found the solution to the issue I wasnt setting
modparam("auth", "calculate_ha1", 1)
which allows the password to be in plaintext in the pseudo var. In addition
I had to join the $fU+"@"+$fd since the $fu carries sip:
Thanks,
TIto
On Thu, Jun 22, 2017 at 8:49 PM, Tito Cumpen <tito at xsvoce.com> wrote:
> Hey Bogdan,
>
>
> I see that the module params define the spec variables now and I tried the
> following in my register method block
>
> exec("php /etc/opensips/authenticate.php $var(input)","" , "$var(out)",
> "$var(err)", "$avp(env)");
>
> this returns the text password
>
> $var(username)= $fu;
> $avp(password)= $var(out);
>
>
> if (!pv_www_authorize(""))
> {
> xlog("new challenger
> $tU\n");
>
> # $var(rc) = www_authorize("", "subscriber");
> $var(rc) = pv_www_authorize("");
> xlog("Return code is $var(rc) \n");
>
> switch ( $var(rc) ) {
> case 1 :
> if (!save("location","f"))
> sl_reply_error();
>
> exit;
> # success
> break;
> case -1:
> sl_send_reply("404","User not found");
> exit;
> break;
> case -2:
> sl_send_reply("403","Forbidden (Bad auth)");
> exit;
> break;
> case -3:
> www_challenge("", "0");
> exit;
>
> default:
> www_challenge("", "0");
> exit;
>
> }
> }
>
>
> but I am not able to authenticate I keep getting -1 as if the user didn't
> exist although the script is returning a value and casting it to
>
> On Wed, Jun 21, 2017 at 1:59 PM, Tito Cumpen <tito at xsvoce.com> wrote:
>
>> Bogdan,
>>
>>
>> would I have to use the exec module to cast the into the username and
>> password variables? Also I am not sure how the function expects those
>> variables to be passed to it ? It is based on variables with these two
>> names to be set prior to being called?
>>
>> $var(username)="abc";
>> $avp(password)="xyz";
>>
>> Thanks,
>> Tito
>>
>> On Fri, May 26, 2017 at 7:21 AM, Bogdan-Andrei Iancu <bogdan at opensips.org
>> > wrote:
>>
>>> Hi Tito,
>>>
>>> You can do that by fetching the password via an explicit DB query from
>>> script and pushing it for auth check using pv_www_authorize():
>>> http://www.opensips.org/html/docs/modules/2.3.x/auth.html#idp5590848
>>>
>>> Best regards,
>>>
>>> Bogdan-Andrei Iancu
>>> OpenSIPS Founder and Developer
>>> http://www.opensips-solutions.com
>>>
>>> OpenSIPS Bootcamp 2017, Huston, US
>>> http://opensips.org/training/OpenSIPS_Bootcamp_2017.html
>>>
>>> On 05/25/2017 04:51 PM, Tito Cumpen wrote:
>>>
>>> Group,
>>>
>>> Is it possible to use a rest api for auth_db? Meaning can opensips
>>> authenticate a user based on a rest query against a rest api? I thought
>>> about using db http by fronting the request with a local http server but I
>>> don't see a way to pass a custom headers to the query. This custom header
>>> would contain the auth session token.
>>>
>>>
>>> Thanks,
>>> Tito
>>>
>>>
>>> _______________________________________________
>>> Users mailing listUsers at lists.opensips.orghttp://lists.opensips.org/cgi-bin/mailman/listinfo/users
>>>
>>>
>>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20170623/144f50cb/attachment-0001.html>
More information about the Users
mailing list