XDMS authentication problem

[Bossiel thioriguel]

Hi all, We are developing an open source RCS/IMS client (http://code.google.com/p/boghe/) and we have authentication problems with mobicents server. The problem is that the "WWW-Authenticate" header returned by mobicents is invalid according rfc 2617 because the value of the qop parameter is not quoted as required by this rfc (see below). Our client send: === GET /mobicents/xcap-caps/global/index HTTP/1.1 Host: x.x.x.x:8080 Connection: Keep-Alive User-Agent: XDM-client/OMA1.1 X-3GPP-Intended-Identity: sip:xx...@xxxx.com === mobicents send back: === HTTP/1.1 401 Unauthorized Server: Apache-Coyote/1.1 X-Powered-By: Servlet 2.4; JBoss-4.2.3.GA (build: SVNTag=JBoss_4_2_3_GA date=200807181417)/JBossWeb-2.0 WWW-Authenticate: Digest nonce="8e0e44826ecbee2f2b014320d089badb", realm="xxxxx", opaque="c8a8e35d", qop=auth Content-Length: 0 Date: Fri, 07 Jan 2011 17:01:42 GMT === According to RFC 2617 section 3.2.1: qop-options This directive is optional, but is made so only for backward compatibility with RFC 2069 [6]; it SHOULD be used by all implementations compliant with this version of the Digest scheme. If present, it is a quoted string of one or more tokens indicating the "quality of protection" values supported by the server. The value "auth" indicates authentication; the value "auth-int" indicates authentication with integrity protection; see the Also from the ABNF: qop-options = "qop" "=" <"> 1#qop-value <"> qop-value = "auth" | "auth-int" | token Any suggestion? Thanks

[aayush]

The value of qop=auth is valid as its one of the options. In case integrity protection is needed..the value is auth-int.

[Bossiel thioriguel]

According to the RFC it's not valid. MUST be qop="auth" (quoted) --- En date de : Lun 10.1.11, aayush <abhatnag...@gmail.com> a écrit :

[aayush]

Ah..good catch!

On Jan 11, 2011 2:18 AM, "Bossiel thioriguel" <bos...@yahoo.fr> wrote:

According to the RFC it's not valid. MUST be qop="auth" (quoted) --- En date de : Lun 10.1.11, aayush <abhatnag...@gmail.com> a écrit :

De: aayush <abhatnag...@gmail.com> Objet: Re: [mobicents-public] XDMS authentication problem À: mobicent...@googlegroups.com Date: Lundi 10 janvier 2011, 20h40

> > The value of qop=auth is valid as its one of the options. In case integrity protection is neede...

[Eduardo Martins]

Tks for the report, I will fix it and point you to a snapshot build which includes the fix.

-- Eduardo
..............................................
http://emmartins.blogspot.com
http://redhat.com/solutions/telco

[Bossiel thioriguel]

Thanks for the quick response. --- En date de : Mar 11.1.11, Eduardo Martins <emma...@gmail.com> a écrit :

De: Eduardo Martins <emma...@gmail.com> Objet: Re: [mobicents-public] XDMS authentication problem À: mobicent...@googlegroups.com

[emma...@gmail.com]

The issue is fixed: http://code.google.com/p/mobicents/issues/detail?id=2279

May take a day to have a binary snapshot including it, will let you
know when it's available for download.

-- Eduardo

On Jan 11, 6:28 pm, Bossiel thioriguel <boss...@yahoo.fr> wrote:
> Thanks for the quick response.
>

> --- En date de : Mar 11.1.11, Eduardo Martins <emmart...@gmail.com> a écrit :

>
> De: Eduardo Martins <emmart...@gmail.com>
> Objet: Re: [mobicents-public] XDMS authentication problem
> À: mobicent...@googlegroups.com
> Date: Mardi 11 janvier 2011, 9h17
>
> Tks for the report, I will fix it and point you to a snapshot build which includes the fix.
> -- Eduardo

> ..............................................http://emmartins.blogspot.com
>
> http://redhat.com/solutions/telco

>
> On Mon, Jan 10, 2011 at 5:26 PM, Bossiel thioriguel <boss...@yahoo.fr> wrote:
>
> Hi all,
> We are developing an open source RCS/IMS client (http://code.google.com/p/boghe/) and we have authentication problems with mobicents server. The problem is that the "WWW-Authenticate" header returned by mobicents is invalid according rfc 2617 because the value of the qop parameter is not quoted as required by this rfc (see below).
>
> Our client send:
> ===
> GET /mobicents/xcap-caps/global/index HTTP/1.1
> Host: x.x.x.x:8080
> Connection: Keep-Alive
> User-Agent: XDM-client/OMA1.1

> X-3GPP-Intended-Identity: sip:x...@xxxx.com

[Eduardo Martins]

Binaries with issue 2279 fixed can be found at
http://hudson.jboss.org/hudson/view/Mobicents/job/Mobicents-SipPresence-1.x-Release/

-- Eduardo
..............................................
http://emmartins.blogspot.com
http://redhat.com/solutions/telco

[Bossiel thioriguel]

Thanks --- En date de : Jeu 20.1.11, Eduardo Martins <emma...@gmail.com> a écrit :