[OpenSIPS-Users] Removing Identity hdr

[Alain Bieuzent]

Hi,

 

interesting question, because in future developments of stir/shaken in France, for forwarded calls, it is planned that the identity field received on the incoming call be forwarded to the outgoing leg but also to add a signature (with the local certificate) on the outgoing call (so two identity fields).

 

Regards

 

De : Users <users-bounces at lists.opensips.org> au nom de Srigo Kanapathipillai <ksrigo at gmail.com>
Répondre à : OpenSIPS users mailling list <users at lists.opensips.org>
Date : mardi 18 juin 2024 à 08:34
À : OpenSIPS users mailling list <users at lists.opensips.org>
Objet : [OpenSIPS-Users] Removing Identity hdr

 

Hi,

 

I'm encountering an issue with removing an Identity header in OpenSIPS 3.4. Here’s the situation:

 

1. An incoming call with an Identity header is received.

2. I perform a `stir_shaken_verify()` and remove the Identity header in a request route.

3. The call is forwarded to an upstream server, but it fails.

4. In the `failure_route`, I need to forward the call to a PSTN number. 

 

5. Before sending the call to the PSTN (in compliance with French STIR/SHAKEN regulations), I need to sign it with my certificate.

 

However, when I call `stir_shaken_auth()`, I receive an error -2 indicating that the Identity header already exists. Despite running `remove_hf(identity)` before calling this function, the header isn't removed, and `$hdr(identity)` still returns the initial value of the Identity header.

 

What is the best way to remove the existing Identity header and re-sign the call?

 

Thank you,

Srigo

_______________________________________________ Users mailing list Users at lists.opensips.org http://lists.opensips.org/cgi-bin/mailman/listinfo/users 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20240618/77728943/attachment.html>