[Standards-JIG] JID assigned by the server and SASL authentication

CORVOYSIER David FTRD/DMI/REN david.corvoysier at francetelecom.com
Tue Jun 15 09:53:30 UTC 2004


Hi,

Consider the following use cases:

Example.org is a jabber server that allow wireless users to authenticate
only using their MSIDSN (phone number).
I have two problems to solve:

1. Alice and Bob have each a Jabber account (alice at example.org,
bob at example.org), but own the same wireless phone. When connecting, they
specify their JID, but still authenticate using their MSISDN. How does
the server know what JID to use ? 

2. Charlie has a Jabber account (charlie at example.org) and a wireless
phone. When connecting he doesn't specify his JID because he doesn't
know what a JID is. How does the server know what JID to use ?

I think XMPP-core provides a way to solve UC #1 using the authzid:

Server:

   realm="example.org",nonce="OA6MG9tEQGm2hh",\
   qop="auth",charset=utf-8,algorithm=md5-sess

Client:

   username="0608154236",realm="example.org",\
   nonce="OA6MG9tEQGm2hh",cnonce="OA6MHXh6VqTrRk",\
   nc=00000001,qop=auth,digest-uri="xmpp/example.org",\
   response=d388dad90d4bbd760a152321f2143af7,charset=utf-8,\
   authzid="alice"

Is that correct ?

Now, I don't see how to solve UC #2 (ie how the server can send back the
JID )?

C'mon SASL experts, I need your help ...

David CORVOYSIER

  



More information about the Standards mailing list