Hi, >-----Original Message----- >From: ext Pekka Pessi [mailto:[EMAIL PROTECTED] >Sent: Monday, March 19, 2007 2:09 PM >To: Zabaluev Mikhail (Nokia-M/Helsinki) >Cc: sofia-sip-devel@lists.sourceforge.net >Subject: Re: [Sofia-sip-devel] Authentication state machinery > >> May it be that nua_authenticate() (possibly with no >NUTAG_AUTH parameters?) is mandatory to handle the >authentication responses? > >That would be one option. > >Currently, I believe, the stack does not try to send same credentials >twice if they have been rejected (without stale parameter). I'm afraid >it is up to the application to avoid supplying same credentials.
Note also it's a MUST NOT in the RFC, so the stack might better detect such resubmission from the app (for the same realm and nonce) and synthesize a 403 error right away without going to the wire, which does not seem to be the case with 1.12.5. Regards, Mikhail ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Sofia-sip-devel mailing list Sofia-sip-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sofia-sip-devel
