Implement soap header #209

Gthorsten · 2024-01-25T13:53:42Z

Gthorsten
Jan 25, 2024

Hi, is there a plan to implement soap headers?
On my fb the 2fa is activated.
So, some actions used with tr064 are protected with 2fa.
To work with that it is possible to receive a token. (xauth service).
Further request should sent this token inside the soap header.
Acutally this is not done..

kbr · 2024-01-28T14:52:52Z

kbr
Jan 28, 2024
Maintainer

That's right, currently 2fa is not supported. I have not used it so far for internal use and have to find out the protocol details first to check whether it is easy to implement or not. Do you have any further information?

0 replies

Gthorsten · 2024-01-28T20:36:59Z

Gthorsten
Jan 28, 2024
Author

What I did up to now... I tried to use it directly with curl. So I can start that 2fa process, I received a token in the answer. With further security relevant tr064 calls I sent the token in the header, and they worked. What I can not do. I can not simulate the dtmf call that is needed to finalize the 2fa. There are 2 possibilities. A button press, and the dtmf dial. So even if you could implement the soap header, I take a look into the code, and it looks not to complicated, the finishing of the process (dtmf, button) is not working. 28.01.2024 15:53:03 Klaus Bremer ***@***.***>:

…

That's right, currently 2fa is not supported. I have not used it so far for internal use and have to find out the protocol details first to check whether it is easy to implement or not. Do you have any further information? — Reply to this email directly, view it on GitHub[#209 (comment)], or unsubscribe[https://github.com/notifications/unsubscribe-auth/ATQDVJICABHU7CTTGT6Z35LYQZQ45AVCNFSM6AAAAABCKR7SROVHI2DSMVQWIX3LMV43SRDJONRXK43TNFXW4Q3PNVWWK3TUHM4DENZSGE2TC]. You are receiving this because you authored the thread. [Verfolgungsbild][https://github.com/notifications/beacon/ATQDVJLYRXFHWXCL4TNY5E3YQZQ45A5CNFSM6AAAAABCKR7SROWGG33NNVSW45C7OR4XAZNRIRUXGY3VONZWS33OINXW23LFNZ2KUY3PNVWWK3TUL5UWJTQAPY4RO.gif]

0 replies

kbr · 2024-01-29T07:47:18Z

kbr
Jan 29, 2024
Maintainer

What I can not do. I can not simulate the dtmf call that is needed to finalize the 2fa.

I suppose if you could simulate the verification call, this would violate 2fa.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Implement soap header #209

{{title}}

Replies: 3 comments

{{title}}

{{title}}

{{title}}

Select a reply

Implement soap header #209

Gthorsten Jan 25, 2024

Replies: 3 comments

kbr Jan 28, 2024 Maintainer

Gthorsten Jan 28, 2024 Author

kbr Jan 29, 2024 Maintainer

Gthorsten
Jan 25, 2024

kbr
Jan 28, 2024
Maintainer

Gthorsten
Jan 28, 2024
Author

kbr
Jan 29, 2024
Maintainer