On Fri, Apr 4, 2008 at 5:44 PM, Norman Rasmussen <[EMAIL PROTECTED]> wrote:
> sorry, you mis-read that.. I was talking about the mobile-client to > gateway connection, and not the gateway to master server connection. > (There's no reason to traditionally register with the gateway because > it's a once-off session that could be started with a signed presense) > > as to how each gateway will talk back to the master server, that's a > difference issue. I was thinking you could pre-register the GPG key > in the gateway (to jid/pwd/etc) so that knew which external server to > connect to. No, I got it, but I was thinking that you couldn't register jid/key/password correspondence in the gateway (I believed the server was untrusted). If so it can work, just send the presence with a child containing a the signed jid to the gateway and it can login to your server: <presence to="gateway.guest.org" from="[EMAIL PROTECTED]"> <x xmlns="xmpp:roaming"> <jid>[EMAIL PROTECTED]</jid> <sign>.....</sign> </x> </presence> (You should just be careful to reply attacks, if the connection is encrypted there aren't problems, otherwise it should be better to ask a challenge to the gateway before) bye -- Fabio Forno, Ph.D. Bluendo srl http://www.bluendo.com jabber id: [EMAIL PROTECTED]
