<html>
  <head>
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
  </head>
  <body text="#000000" bgcolor="#FFFFFF">
    <div class="moz-cite-prefix"><tt>Hi Tito,<br>
        <br>
        Instead of consume_credentials() you can simply do
        remove_hf("Proxy-Authorization") - it does the same.<br>
        <br>
        Regarding the second part, I do not get the problem - in branch
        route, if $du or $ru does not point to you, you want to remove
        the credentials - what the is the problem here ?<br>
        <br>
        Regards,<br>
      </tt>
      <pre class="moz-signature" cols="72">Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
<a class="moz-txt-link-freetext" href="http://www.opensips-solutions.com">http://www.opensips-solutions.com</a></pre>
      On 17.09.2014 08:13, Tito Cumpen wrote:<br>
    </div>
    <blockquote
cite="mid:CANZPVB6wx-uCMZV0i24wE+JvZ7FNO_f2=PTx+RgsLqMwoxQwkg@mail.gmail.com"
      type="cite">
      <div dir="ltr">Bogdan,
        <div><br>
        </div>
        <div>the branch route seems pretty limited in functionality. How
          would you compare a $du to allow credentials to traverse when
          they are going to a neighbor proxy? Also noticed you cant use
          consume_credentials(). </div>
        <div><br>
        </div>
        <div>
          <p><span>if(uri !</span><span>=</span> myself ) { </p>
          <p><span>                </span>#consume_credentials();</p>
          <p>                xlog("This is branch is not for me $ru")<span>;</span></p>
          <p><br>
          </p>
          <p>}</p>
          <p><br>
          </p>
          <p>the above will not work since branches are going to aor
            entries along with neighbor proxies set like this:</p>
          <p>                    while loop{</p>
          <p>                                       
            avp_subst("$avp(myloc<span>[$var(i)]</span>)",
            "/(.+)/\sip:\0/")<span>;</span></p>
          <p><br>
          </p>
          <p>                                        xlog("$avp(myloc<span>[$var(i)]</span>)\n")<span>;</span></p>
          <p>                                       
            avp_pushto("$du","$avp(myloc<span>[$var(i)]</span>)")<span>;</span></p>
          <p>                                       
            insert_hf("Subject:traversal\r\n",  "p-hint")<span>;</span></p>
          <p>                                        append_branch()<span>;</span><br>
          </p>
          <p>
          </p>
          <p><br>
          </p>
          <p>}</p>
          <p><br>
          </p>
        </div>
        <div>Much Appreciated,</div>
        <div><br>
        </div>
        <div>Tito</div>
      </div>
      <div class="gmail_extra"><br>
        <div class="gmail_quote">On Fri, Sep 12, 2014 at 5:45 PM, Tito
          Cumpen <span dir="ltr">&lt;<a moz-do-not-send="true"
              href="mailto:tito@xsvoce.com" target="_blank">tito@xsvoce.com</a>&gt;</span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">
            <div dir="ltr">Thanks Bogdan,
              <div><br>
              </div>
              <div>I found this shortly after I am now allowing calls
                from neighbor proxies to enter if the ret code is only 3
                stale. Thanks for your suggestion on handling this in
                branch route I will now check if $du (neighbor) proxy is
                the branch hop in order to allow credentials to linger
                or be removed.</div>
              <div><br>
              </div>
              <div><br>
              </div>
            </div>
            <div class="HOEnZb">
              <div class="h5">
                <div class="gmail_extra"><br>
                  <div class="gmail_quote">On Fri, Sep 12, 2014 at 9:41
                    AM, Bogdan-Andrei Iancu <span dir="ltr">&lt;<a
                        moz-do-not-send="true"
                        href="mailto:bogdan@opensips.org"
                        target="_blank">bogdan@opensips.org</a>&gt;</span>
                    wrote:<br>
                    <blockquote class="gmail_quote" style="margin:0 0 0
                      .8ex;border-left:1px #ccc solid;padding-left:1ex">
                      <div text="#000000" bgcolor="#FFFFFF">
                        <div><tt>Hi Tito,<br>
                            <br>
                            If you do not to "consume credentials" after
                            auth, the credentials will stay in your
                            requests and they will be forwarded to the
                            next hop (this is what you want, right ?).<br>
                            <br>
                            You can use branch_route[] to remove the
                            credentials in a per branch manner .<br>
                            <br>
                            Regards,<br>
                          </tt>
                          <pre cols="72">Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
<a moz-do-not-send="true" href="http://www.opensips-solutions.com" target="_blank">http://www.opensips-solutions.com</a></pre>
                          <div>
                            <div> On 10.09.2014 23:59, Tito Cumpen
                              wrote:<br>
                            </div>
                          </div>
                        </div>
                        <blockquote type="cite">
                          <div>
                            <div>
                              <div dir="ltr">Group,
                                <div><br>
                                </div>
                                <div><br>
                                </div>
                                <div>What is the adequate way to include
                                  or insert nonce response after a proxy
                                  challenge?</div>
                                <div>I am forwarding invites to local
                                  and remote locations by forking. The
                                  remote proxy checks againsts the same
                                  db for authentication. Therefore I
                                  would to include the proxy
                                  authorization header when forwarding
                                  the invite to the remote locations.
                                  Currently I am being sent a 407 by the
                                  remote proxy which consequently kills
                                  ends the branch.</div>
                                <div><br>
                                </div>
                                <div><br>
                                  Thanks,</div>
                                <div>Tito</div>
                              </div>
                              <br>
                              <fieldset></fieldset>
                              <br>
                            </div>
                          </div>
                          <pre>_______________________________________________
Users mailing list
<a moz-do-not-send="true" href="mailto:Users@lists.opensips.org" target="_blank">Users@lists.opensips.org</a>
<a moz-do-not-send="true" href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a>
</pre>
                        </blockquote>
                        <br>
                      </div>
                    </blockquote>
                  </div>
                  <br>
                </div>
              </div>
            </div>
          </blockquote>
        </div>
        <br>
      </div>
    </blockquote>
    <br>
  </body>
</html>