[jdev] Question about XMPP authentication

Chris Chen ckchris at echomine.com
Sun Jun 4 12:58:21 CDT 2006

Why not just run an XMPP federated server and have it configured to  
connect and use Server-to-server communication?

You can then have your web conference software create accounts and  
login to your own server.  Then have you server become part of a  
federation with other servers.


On Jun 4, 2006, at 10:27 AM, Nguyen TV wrote:

> Hi all, I'm a XMPP newbie. I have been wondering about this  
> question for days and if you can help me find the solution, that  
> would be so great (^-^).
> I was trying to develope a simple web conference software which  
> provide chat and whiteboard service to users.
> My client connects to my server via TCP/IP. I used XMPP for  
> authentication, register and sending messages. For the whiteboard  
> feature, I used my own protocol.
> My goal is :
> -   Everyone who has the right JID/Password can login then use the  
> services.
> -   Users at my server can still send messages to other users at  
> any XMPP servers while taking part in the conference.
>            JID/password                       JID/password
> myClient    ---->       myserver.org        --->           jabber.org
>                <----                                   <---
>              login result                          login result
> I was wondering if i can do this with my client:
> -  The user try to login by entering JID/Password.
> -  In case the JID belongs to my server, the authentication will be  
> done normally using SASL or Non-SASL.(2 ways to do XMPP  
> authentication that I know - If there's any else, pls give me some  
> information. Thanks in advance)
> -  In case the JID belongs to other server (ex: jabber.org), my  
> server will act as a client with that JID/password to jabber.org  
> server. It will try to do an authentication with jabber.org on  
> behalf of the user (sending the JID/password to jabber.org). In  
> here, my server just want to ask jabber.org if that was the correct  
> JID/Password set at jabber.org.
> -  jabber.org will send the login result back.
> -  If that was the correct JID/Password set at jabber.org. Yes, now  
> my server knows who the user is then let him in and use my services.
>    Else, sorry, you've not been authenticated. I can't let you in.
> Can I do that??
> After the authentication has been done:
> -  In case the JID belongs to my server, sending messages has no  
> problems.
> -  In case the JID belongs to jabber.org, my server now will act  
> like a forward server. It receives messages from myClient then  
> sends to jabber.org on behalf of that user.
>               message                          message
> myClient    ---->       myserver.org        --->           jabber.org
>                 <----                                  <---
>               message                          message
> Is that possible??
> Thanks for being patient, reading this such long mail :">. I'm  
> looking forward to any replies :)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20060604/07ee520c/attachment-0002.htm>

More information about the JDev mailing list