def ksr_route_auth(self, msg):
if not KSR.is_REGISTER():
if KSR.permissions.allow_source_address(1) > 0:
# source IP allowed
return 1
if KSR.is_REGISTER() or KSR.is_myself_furi():
# authenticate requests
if KSR.auth_db.auth_check(KSR.pv.get("$fd"), "subscriber", 1) < 0:
KSR.auth.auth_challenge(KSR.pv.get("$fd"), 0)
return -255
# user authenticated - remove auth header
if not KSR.is_method_in("RP"):
KSR.auth.consume_credentials()
# if caller is not local subscriber, then check if it calls
# a local destination, otherwise deny, not an open relay here
if (not KSR.is_myself_furi()) and (not KSR.is_myself_ruri()):
KSR.sl.sl_send_reply(403, "Not relaying")
return -255
return 1
def ksr_route_auth(self, msg):
if not KSR.is_REGISTER() :
if KSR.permissions.allow_source_address(1)>0 :
# source IP allowed
return 1;
if KSR.is_REGISTER() or KSR.is_myself_furi() :
# authenticate requests
if KSR.auth_db.auth_check(KSR.pv.get("$fd"), "subscriber", 1)<0 :
KSR.auth.auth_challenge(KSR.pv.get("$fd"), 0);
return -255;
# user authenticated - remove auth header
if not KSR.is_method_in("RP") :
KSR.auth.consume_credentials();
# if caller is not local subscriber, then check if it calls
# a local destination, otherwise deny, not an open relay here
if (not KSR.is_myself_furi()) and (not KSR.is_myself_ruri()) :
KSR.sl.sl_send_reply(403,"Not relaying");
return -255;
return 1;
