<div dir="ltr">Here you go, Yes we are storing password in clear text, Everything works! authentication, calling etc.. Only issue is if i check on siptrace it is sending 500 Error, Don't know who is generating it. <div><br></div><div><div>if (is_method("REGISTER"))</div><div> {</div><div> </div><div> $var(auth_code) = www_authorize("", "subscriber");</div><div> if ( $var(auth_code) == -1 || $var(auth_code) == -2 ) {</div><div> xlog("L_NOTICE","Auth error for $fU@$fd from $si cause $var(auth_code)");</div><div> }</div><div> if ( $var(auth_code) < 0 ) {</div><div> www_challenge("", "0");</div><div> exit;</div><div> }</div><div><br></div><div> if (!db_check_to())</div><div> {</div><div> xlog("L_INFO", "Spoofed To-URI detected - M=$rm RURI=$ru F=$fu T=$tu IP=$si ID=$ci\n");</div><div> sl_send_reply("403","Forbidden auth ID");</div><div> exit;</div><div> }</div><div><br></div><div> if ( 0 ) setflag(TCP_PERSISTENT);</div><div><br></div><div> if (!save("location"))</div><div> xlog("L_ERR", "Saving contact failed - M=$rm RURI=$ru F=$fu T=$tu IP=$si ID=$ci\n");</div><div> sl_reply_error();</div><div><br></div><div> exit;</div><div> }</div></div><div><br></div><div><br></div><div><br></div><div>Here is the subscriber table entry:</div><div><br></div><div><div>mysql> select * from subscriber;</div><div>+----+----------+-------------------+----------+---------------+----------------------------------+----------------------------------+------+-------+</div><div>| id | username | domain | password | email_address | ha1 | ha1b | rpid | quota |</div><div>+----+----------+-------------------+----------+---------------+----------------------------------+----------------------------------+------+-------+</div><div>| 53 | 1001 | <a href="http://sip.example.com">sip.example.com</a> | ty%^#Fg8 | | 7a38833eb31f51e2596aeb1e2fb7d94d | 2f39eaec251f1fab847a4ff7ee01765d | | 1 |</div></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Mar 17, 2015 at 11:08 AM, Terrance Devor <span dir="ltr"><<a href="mailto:ter.devor@gmail.com" target="_blank">ter.devor@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hello Satish,<div><br></div><div>I'm not a developer, but could you post your is_method("REGISTER") for the</div><div>authentication block? Also post one of the entries in the Subscriber table. Are</div><div>you using clear text password or encrypted?</div><div><br></div><div>Please look at: <a href="http://www.techsupportalert.com/content/how-ask-question-when-you-want-technical-help.htm" target="_blank">http://www.techsupportalert.com/content/how-ask-question-when-you-want-technical-help.htm</a></div><div><br></div><div>Terrance.</div></div>
<br>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div>