Auth Logs
Auth Logs are used for review authorization attempts that were fixed by Yeti.
INFO
There is built-in tool to provide Auth Logs retention, see Data retention <data_retention documentation.
Auth Logs attributes:
- Id
- Unique Auth Logs's id.
- Request Time
- Time when authorization attempt was made.
- Gateway
- Gateway that was associated with authorization attempt.
- Success
- Status of success (Yes) or failure (No) of this Auth Log record.
- Code
- Numeric code with status of authorization attempt.
- Reason
- Textual status of authorization attempt that was sent to the remote host.
- Internal Reason
- Internal Reason of the result of authorization attempt in text format.
- Auth Error
- Internal Reason of authorization failure. See Auth Errors
- Originator
- URI of the host that is initiated authorization attempt. Format of this fields includes information about used network protocol, IP-address and network port.
- Remote Socket
- URI of the remote host (for example URI of Load Balancer) from that the authorization attempt was received. Format of this fields includes information about used network protocol, IP-address and network port.
- Local Socket
- IP-address and network port that were used by Yeti for receiving authorization attempt.
- PoP
- Point of Presence that was associated with authorization attempt.
- Node
- Node that was associated with authorization attempt.
- Username
- Username that was received from remote host during authorization attempt.
- Realm
- Value of the Realm parameter of Authorization SIP header that was received from remote host during authorization attempt.
- Request Method
- SIP request method that was used by remote host during authorization attempt.
- Ruri
- R-URI field of SIP header that was received from remote host during authorization attempt.
- From Uri
- From header of SIP header that was received from remote host during authorization attempt.
- To Uri
- To header of SIP header that was received from remote host during authorization attempt.
- Call
- Value of the Call-Id SIP header that was received from remote host during authorization attempt.
- Nonce
- Value of the Nonce parameter in the SIP Proxy-Authentication header that was received from remote host during authorization attempt.
- Response
- Value of the Response parameter in the SIP Proxy-Authentication header that was received from remote host during authorization attempt.
- X Yeti Auth
- Value of the custom SIP-header X-Yeti-Auth that was received from remote host during authorization attempt.
- Diversion
- Value of SIP Diversion header that is received from remote host during authorization attempt.
- Pai
- P-Asserted-Identity (PAI) privacy field of SIP header that was received from remote host during authorization attempt.
- Ppi
- P-Preferred-Identity (PPI) privacy field of SIP header that was received from remote host during authorization attempt.
- Privacy
- SIP Privacy field of SIP header that was received from remote host during authorization attempt.
- Rpid
- Remote Party ID field of SIP header that was received from remote host during authorization attempt.
- Rpid Privacy
- SIP RPID Privacy field of SIP header that was received from remote host during authorization attempt.
Auth errors
| Code | Auth Error Name | Mechanism | Description |
|---|---|---|---|
| 0 | No Authorization header | No Authorization header present in incoming request | |
| 2 | Missing username attribute | Digest | No username attribute in Authorization header |
| 3 | User not found | Digest | User not found. Username not found in cached credentials |
| 4 | IP not allowed | IP Auth | Rejected by IP auth mechanism. Check if CustomerAuth exists for IP of Originator |
| 5 | JWT Parse error | JWT | Failed to decode base64, split header.payload.signature, parse JSON, validate mandatory claims, unexpeced layout or claims values |
| 6 | JWT Verify error | JWT | Failed to verify signature using public key |
| 7 | JWT Expired | JWT | JWT is expired (has 'exp' claim and it's in the past) |
| 8 | JWT Data error | JWT | Payload format error. Not numeric exp claim. No either gid or id claims or wrong type for them |
| 9 | JWT Not allowed | JWT | JWT auth is not allowed for gateway matched by id or gid claim. Check incoming_auth_allow_jwt Gateway flag |
| 10 | Generic error | Digest | Generic error. Should not occur, indicates bug |
| 11 | Failed to parse Authorization header | Digest | Failed to parse Authorization header |
| 12 | Wrong response length | Digest | Wrong response length. Auth response length mismatch |
| 13 | Realm mismatch | Digest | Realm mismatch |
| 14 | User mismatch | Digest | User mismatch. Should not occur, indicates bug |
| 15 | Incorrect nonce | Digest | Incorrect nonce |
| 16 | Expired nonce | Digest | Expired nonce |
| 17 | Failed to parse nc | Digest | Nonce Count parse error. Failed to parse nc attribute |
| 18 | Response not matched | Digest | Response not matched. Usually means bad password or request tampering |
| 19 | No Authorization header | Digest | No Authorization header. Should not occur, indicates bug |