New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature] RFC 8898 support #2669
Comments
Personally I do not work on such extensions, others devs can comment if they plan to work on it. If you want to develop it, the recommended way is to try to make a new module if is going to have dependencies on external libraries. If no external dependencies, and not significant changes to the existing code, then can eventually plugged in the auth module. |
Hi,
Basically all the RFC is here, being the claims and how they apply to the routing logic strictly domain/business logic dependent. |
@grumvalski: thanks for these useful details and good to know it was already possible to implement it. I got a similar feeling that should be doable by blending several modules/functions in native config/kemi when I quickly looked over the specs. Not spending time to look at details, I let it open for further discussions, and as you said it too, if someone wants to add it, it would be nice to have and welcome to do it. |
Closing, being possible with script operations based on the comments above. If someone wants to make a C implementation, then just make a PR. |
Description
Hi, is there anyone working on adding support for RFC 8898 and do you know of any clients that already implement it or are working towards supporting it?
How could I go about starting such effort?
RFC 8898
Third-Party Token-Based Authentication and Authorization for Session
Initiation Protocol (SIP)
Abstract
This document defines the "Bearer" authentication scheme for the
Session Initiation Protocol (SIP) and a mechanism by which user
authentication and SIP registration authorization is delegated to a
third party, using the OAuth 2.0 framework and OpenID Connect Core
1.0. This document updates RFC 3261 to provide guidance on how a SIP
User Agent Client (UAC) responds to a SIP 401/407 response that
contains multiple WWW-Authenticate/Proxy-Authenticate header fields.
...
The text was updated successfully, but these errors were encountered: