the Openfire BOSH implementation does not include a ‘from’ attribute, which specifies the XMPP domain in its session creation response:
It’s also not included in any further responses.
Despite the spec says it MAY include it, I think it would be helpful to determine the XMPP domain on the client, because it is needed for SASL authentication (DIGEST-MD5).
Most times it probably can be extracted from the URL, but that’s merely a guess of the real domain, because they are not necessarily the same.
Please include the ‘from’ attribute.