I disagree to your conclusion on Q1. It is impossible for a proxy to copy the credentials which a UAC has sent. By doing so, the proxy assumes responsibility for the credentials, which is wrong. What if the credentials present in the ACK is expired? Moreover the ACK for a non-2xx response may only be symbolic. It also complicates the behaviour for proxies if the response code is 401 / 407.
For Q2, may be the RFC can mandate the duplication of the Authentication information in ACK for 2xx responses. -Prasanna -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Arunachalam Venkatraman Sent: Thursday, January 09, 2003 1:38 AM To: [EMAIL PROTECTED] Subject: [Sip-implementors] Credentials in ACK In section 22.1 (page 194) of RFC3261, it is stated -- UACs creating an ACK message will duplicate all of the Authorization and Proxy-Authorization header field values that appeared in the INVITE to which the ACK corresponds. Q1: When a proxy sends an ACK to a non-2xx final response from a UAS, is it required for it to duplicate the mentioned headers from the INVITE? Since the proxy is playing the role of a UAC when sending an ACK, I would say yes. Q2: Why is the language here not normative? Should it say "MUST duplicate" rather than "will duplicate"? _______________________________________________ Sip-implementors mailing list [EMAIL PROTECTED] http://lists.cs.columbia.edu/mailman/listinfo/sip-implementors
