1.基本認證 (basic 認證)
- DESCRIBE rtsp://192.168.1.55:554/11
- RTSP/1.0\r\n
- CSeq: 1\r\n
- Accept: application/sdp\r\n
- User-agent: Realplayer\r\n\r\n
2:RTSP服務端認爲沒有通過認證,發出WWW-Authenticate認證響應
CSeq: 1\r\n
WWW-Authenticate: Basic realm="RTSPD"\r\n\r\n
步驟3:客戶端攜帶Authorization串再次發出DESCRIBE請求
RTSP/1.0\r\n
CSeq: 2\r\n
Accept: application/sdp\r\n
User-Agent: RealMedia Player HelixDNAClient/12.0.1.647 (win32)\r\n
Authorization: Basic YWRtaW46YWRtaW4=\r\n\r\n
char sztemp[64] = {0};
sprintf( sztemp, "%s:%s", m_szAuthorName, m_szPwd); //"admin","admin" ); //
string strOutBase64;
BaseEncoder::Base64Encode( (BYTE*)sztemp, strlen(sztemp),&strOutBase64 );
2. 摘要認證 Digest authentication
1.客戶端發送DESCRIBE請求
DESCRIBE rtsp://192.168.123.158:554/11 RTSP/1.0
CSeq: 2
User-Agent: LibVLC/2.0.5(LIVE555 Streaming Media v2012.09.13)
Accept: application/sdp
服務器端返回401錯誤,提示未認證並以nonce質詢:
RTSP/1.0 401 Unauthorized
Server: HiIpcam/V100R003 VodServer/1.0.0
Cseq: 2
WWW-Authenticate:Digest realm="HipcamRealServer", nonce="3b27a446bfa49b0c48c3edb83139543d"
2.客戶端以用戶名,密碼,nonce,HTTP方法,請求的URI等信息爲基礎產生response信息進行反饋
DESCRIBE rtsp://192.168.123.158:554/11 RTSP/1.0
CSeq: 3
Authorization: Digest username="admin",realm="Hipcam RealServer", nonce="3b27a446bfa49b0c48c3edb83139543d",uri="rtsp://192.168.123.158:554/11", response="258af9d739589e615f711838a0ff8c58"
User-Agent: LibVLC/2.0.5(LIVE555 Streaming Media v2016.06.13)
Accept: application/sdp
服務器對客戶端反饋的response進行校驗,通過則返回如下字段:
RTSP/1.0 200 OK
Server: HiIpcam/V100R003 VodServer/1.0.0
Cseq: 3
Content-Type: application/sdp
Cache-Control: must-revalidate
Content-length: 306
Content-Base: rtsp://192.168.123.158:554/11/
v=0
o=StreamingServer 3331435948 1116907222000 IN IP4192.168.123.158
s=\11
c=IN IP4 0.0.0.0
b=AS:1032
t=0 0
a=control:*
m=video 0 RTP/AVP 96
b=AS:1024
a=control:trackID=0
a=rtpmap:96 H264/90000
a=fmtp:96 packetization-mode=1;sprop-parameter-sets=Z0LgHtoCgPRA,aM4wpIA=
a=framesize:96 640-480
說明:
response計算方法如下:
RTSP客戶端應該使用username + password並計算response如下:
(1)當password爲MD5編碼,則
response = md5( password:nonce:md5(public_method:url) );
(2)當password爲ANSI字符串,則
response= md5( md5(username:realm:password):nonce:md5(public_method:url) );
客戶端在每次發起不同的請求方法時都需要計算response字段,同樣在服務器端校驗時也默認採取同樣的計算方法。
本文爲《流媒體開發實戰進階---rtsp視頻播放器》視頻課程,第一章第二節配套講義,
更多內容請收看視頻講解!