Comment #2 on issue 2173 by jean.deruelle: Handle Header
[Authentication-Info: nextnonce="xyz"] in sip authorization responses
http://code.google.com/p/mobicents/issues/detail?id=2173
Actually to do this we would need to cache the user's credentials passed
for a given realm to be able to recompute the Digest Authentication based
on the new nonce.
This could have memory and performance impact, since we would need to
somehow "uncache" them (I guess it could be done if a header is received
with STALE="false" or anything other than true is received)
Not to negatively impact, those not needing this feature, I would propose
to add 2 methods to a SipServletRequestExt interface
void addAuthHeader(SipServletResponse challengeResponse, AuthInfo authInfo,
boolean cache)
And
void addAuthHeader(SipServletResponse challengeResponse, String username,
String password, boolean cache)
the default methods defined by the spec would not cache the credentials.
What do you think ?
