Examples of javax.sip.header.ProxyAuthorizationHeader

• javax.sip.header.ProxyAuthorizationHeader
  The Proxy-Authorization header field allows the client to identify itself (or its user) to a proxy that requires authentication. A Proxy-Authorization field value consists of credentials containing the authentication information of the user agent for the proxy and/or realm of the resource being requested.

  This header field, along with Authorization, breaks the general rules about multiple header field names. Although not a comma-separated list, this header field name may be present multiple times, and MUST NOT be combined into a single header line.

  An UAC sends a request to a proxy server containing a Proxy-Authorization header field, so that the proxy can authenticate the UAC before processing the request. A proxy can challenge for credentials by rejecting a request with a 407 (Proxy Authentication Required) status code upon which a UAC may provide credentials for the requested resource in the Proxy-Authorization header.

  A Proxy-Authorization header field value applies only to the proxy whose realm is identified in the "realm" parameter. When multiple proxies are used in a chain, a Proxy-Authorization header field value MUST NOT be consumed by any proxy whose realm does not match the "realm" parameter specified in that value. Note that if an authentication scheme that does not support realms is used in the Proxy-Authorization header field, a proxy server MUST attempt to parse all Proxy-Authorization header field values to determine whether one of them has what the proxy server considers to be valid credentials.

  Example:
  Proxy-Authorization: Digest username="Alice", realm="atlanta.com", nonce="c60f3082ee1212b402a21831ae", response="245f23415f11432b3434341c022" @see Parameters @see ProxyAuthenticateHeader @author BEA Systems, NIST @version 1.2

     * @param pass -- the plain text password.
     *
     * @return true if authentication succeded and false otherwise.
     */
    public boolean doAuthenticatePlainTextPassword(Request request, String pass) {
        ProxyAuthorizationHeader authHeader = (ProxyAuthorizationHeader) request.getHeader(ProxyAuthorizationHeader.NAME);

        if ( authHeader == null ) return false;
        String realm = authHeader.getRealm();
        String username = authHeader.getUsername();


        if ( username == null || realm == null ) {
            return false;
        }


        String nonce = authHeader.getNonce();
        URI uri = authHeader.getURI();
        if (uri == null) {
           return false;
        }


        String A1 = username + ":" + realm + ":" + pass;
        String A2 = request.getMethod().toUpperCase() + ":" + uri.toString();
        byte mdbytes[] = messageDigest.digest(A1.getBytes());
        String HA1 = toHexString(mdbytes);


        mdbytes = messageDigest.digest(A2.getBytes());
        String HA2 = toHexString(mdbytes);

        String cnonce = authHeader.getCNonce();
        String KD = HA1 + ":" + nonce;
        if (cnonce != null) {
            KD += ":" + cnonce;
        }
        KD += ":" + HA2;
        mdbytes = messageDigest.digest(KD.getBytes());
        String mdString = toHexString(mdbytes);
        String response = authHeader.getResponse();
        return mdString.equals(response);

    }

        } catch (ParseException e) {
          // TODO Auto-generated catch block
          e.printStackTrace();
        }
      } else { // if Proxy Authentication
        ProxyAuthorizationHeader pah = null;
        try {
          pah = headerFactory
              .createProxyAuthorizationHeader("Digest");
          pah.setUsername(fromUser);
          pah.setRealm(realm);
          pah.setAlgorithm("MD5");
          pah.setURI(uri);
          pah.setNonce(nonce);
          pah.setResponse(toHexString(mdbytes));

          newRequest.setHeader(pah);
        } catch (ParseException e) {
          // TODO Auto-generated catch block
          e.printStackTrace();