fix: Kamailio Auth — HA1-Flag und htable initval korrigiert
- pv_www/proxy_authenticate: Flag "1" statt "0" (HA1 statt Plaintext) - htable: initval=0 entfernt (verhinderte Credential-Ladung) - pv_auth_check durch pv_www/proxy_authenticate ersetzt (5.5.2 Kompatibilität) - Module-Reihenfolge: usrloc vor nathelper - nathelper: sipping_from Parameter hinzugefügt Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Dotty Dotter
parent
39e0052eac
commit
934c832fdf
@ -55,7 +55,7 @@ modparam("nathelper", "received_avp", "$avp(RECEIVED)")
|
|||||||
# --- htable für Credentials ---
|
# --- htable für Credentials ---
|
||||||
# Format: username => ha1_hash
|
# Format: username => ha1_hash
|
||||||
# HA1 = MD5(username:sip.toppyr.de:password)
|
# HA1 = MD5(username:sip.toppyr.de:password)
|
||||||
modparam("htable", "htable", "credentials=>size=4;initval=0;")
|
modparam("htable", "htable", "credentials=>size=4;")
|
||||||
|
|
||||||
# --- Credentials (HA1-Hashes) ---
|
# --- Credentials (HA1-Hashes) ---
|
||||||
# tobias (Linphone iOS): hash von tobias:sip.toppyr.de:8pjd6eskjKmCihsu
|
# tobias (Linphone iOS): hash von tobias:sip.toppyr.de:8pjd6eskjKmCihsu
|
||||||
@ -199,12 +199,12 @@ route[AUTH] {
|
|||||||
exit;
|
exit;
|
||||||
}
|
}
|
||||||
if (is_method("REGISTER")) {
|
if (is_method("REGISTER")) {
|
||||||
if (!pv_www_authenticate("sip.toppyr.de", "$sht(credentials=>$au)", "0")) {
|
if (!pv_www_authenticate("sip.toppyr.de", "$sht(credentials=>$au)", "1")) {
|
||||||
www_challenge("sip.toppyr.de", "0");
|
www_challenge("sip.toppyr.de", "0");
|
||||||
exit;
|
exit;
|
||||||
}
|
}
|
||||||
} else {
|
} else {
|
||||||
if (!pv_proxy_authenticate("sip.toppyr.de", "$sht(credentials=>$au)", "0")) {
|
if (!pv_proxy_authenticate("sip.toppyr.de", "$sht(credentials=>$au)", "1")) {
|
||||||
proxy_challenge("sip.toppyr.de", "0");
|
proxy_challenge("sip.toppyr.de", "0");
|
||||||
exit;
|
exit;
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user