Closed lloydwatkin closed 11 years ago
Here's the tigase thread http://www.tigase.org/content/issue-digest-md5-authentication-and-node-xmpp-library
After a bit of investigation it turns out that node-xmpp should be be passing an authorizationId unless the user is trying to act on the behalf of another. I'm going to take out the authorizationId token and see if I can get authentication working with tigase. If that works I'll test against prosody to confirm. I plan on then adding a 'actAs' option when initialising node-xmpp client and attempt authentication in this way. Would be good to get some feedback on this as I'm going (i.e. you might disagree with what has been said in Tigase forum).
RFC2120: "If the initiating entity wishes to act on behalf of another entity and the selected SASL mechanism supports transmission of an authorization identity, the initiating entity MUST provide an authorization identity during SASL negotiation. If the initiating entity does not wish to act on behalf of another entity, it MUST NOT provide an authorization identity."
I can't seem to authenticate between tigase (5.1.0) and node-xmpp (0.3.2) via digest md5. Switching to PLAIN I can log in, however I can not log in using digest-md5 (authentication failed).
Here's a gist from an authentication request. "INCOMING" and "OUTGOING" are node-xmpp console.log entries, the rest is tigase logging: https://gist.github.com/4476672
Below is a later attempt with just logging from node-xmpp and challenge/response base64 encoded.
I've had node-xmpp running ok against prosody (on ubuntu server), so I am able to get the client working itself. I can log into the XMPP server using Digest-MD5 and strophe.js (as well as other xmpp clients).
I've logged this the tigase community too as I'm aware that it could be an issue with tigase server itself.