I believe that other clients retry the same password at least two times. I
might even believe that it is an asterisk problem but why does jitsi erases
the old password?
On Wed, Jul 23, 2014 at 4:47 PM, Daniel Pocock <firstname.lastname@example.org> wrote:
On 23/07/14 17:11, Ingo Bauersachs wrote:
> We have seen this a couple of times before. As far as I could tell
during my analysis, Asterisk messes the authentication challenges/replies
> I dont't know though why only Jitsi seem to show up with this issue. Do
you know if the other clients ask the user for the password if they receive
an unauthorized reply or do they just go on and retry silently with the
same saved password?
The other clients answer each challenge with the password that they
client sends INVITE
proxy challenges 407 and Proxy-Authenticate header
client sends INVITE with Proxy-Authorization header
PBX challenges 401 and WWW-Authenticate
clients sends INVITE with both Proxy-Authorization and Authorization
proxy validates Proxy-Authorization header again, strips it from the
message, sends to the PBX with just Authorization header
PBX responds 180, 200, ...