Example: HTTP correlation ID - PingDataGovernance

Example: HTTP correlation ID - PingDataGovernance - 8.2

PingDataGovernance

bundle

pingdatagovernance-82

ft:publication_title

PingDataGovernance

Product_Version_ce

PingDataGovernance 8.2

category

Product

pdg-82

pingdatagovernance

ContentType_ce

Page created: 22 Jul 2020 |

Page updated: 9 Feb 2021

| 4 min read

8.2 PingDataGovernance Product Product documentation Content Type Data Governance Capability

This example shows a SCIM 2 request with a correlation ID assigned in the response. Then the example uses that ID to locate entries in the debug trace log and the policy decision log.

First, make a SCIM 2 GET request.

The response includes a Correlation-Id header with the value c52af735-788d-4798-be3b-8d1f3c8f9d64. The ellipsis (...) in the response indicates lines removed to keep the example brief. Because the request does not include a correlation ID, the server generates the header and value.

GET https://localhost:8443/scim/v2/Me HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
Authorization: Bearer ...
Connection: keep-alive
Host: localhost:1443
User-Agent: HTTPie/0.9.9
  
 
HTTP/1.1 200 OK
Content-Length: 903
Content-Type: application/scim+json
Correlation-Id: c52af735-788d-4798-be3b-8d1f3c8f9d64
Date: Thu, 30 Jul 2020 15:23:06 GMT
Request-Id: 371

{
    "mail": [
        "user.0@example.com"
    ],
    "initials": [
        "AOR"
    ],
    "homePhone": [
        "+1 295 940 2750"
    ],
    "pager": [
        "+1 604 109 3407"
    ],
    "givenName": [
        "Anett"
    ],  
   ...
}

Use the correlation ID to search the HTTP debug trace log for matching log records.

$ grep 'correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64"' PingDataGovernance/logs/debug-trace
[30/Jul/2020:10:23:06.641 -0500] HTTP REQUEST requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" product="Ping Identity Data Governance Server" instanceName="dg1" startupID="XyBwfQ==" threadID=27543 from=[0:0:0:0:0:0:0:1]:53978 method=GET url="https://0:0:0:0:0:0:0:1:8443/scim/v2/Me"
[30/Jul/2020:10:23:06.642 -0500] DEBUG ACCESS-TOKEN-VALIDATOR-PROCESSING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenValidator="Mock Access Token Validator" msg="Validating access token"
[30/Jul/2020:10:23:06.642 -0500] DEBUG ACCESS-TOKEN-VALIDATOR-PROCESSING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenValidator="Mock Access Token Validator" msg="Looking up token resource owner"
[30/Jul/2020:10:23:06.642 -0500] SCIM INTERNAL-REQUEST requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" op="search" opPath="Users" filter="uid eq 'user.0'"
[30/Jul/2020:10:23:06.643 -0500] DEBUG STORE-ADAPTER-MAPPING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" msg="
[30/Jul/2020:10:23:06.643 -0500] DEBUG STORE-ADAPTER-MAPPING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" msg="
[30/Jul/2020:10:23:06.650 -0500] DEBUG LDAP-EXTERNAL-SERVER-REQUEST requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" targetAddress="localhost" targetPort="1636" operation="SEARCH" base="ou=People,dc=example,dc=com" scope="wholeSubtree" filter="(&(uid=user.0)(objectClass=inetOrgPerson))" sizeLimit="501" attrs="entryUUID,*,createTimestamp,modifyTimestamp" entriesReturned="1" resultCode="0" msg="
[30/Jul/2020:10:23:06.651 -0500] DEBUG STORE-ADAPTER-MAPPING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" msg="
[30/Jul/2020:10:23:06.651 -0500] DEBUG STORE-ADAPTER-MAPPING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" msg="
[30/Jul/2020:10:23:06.652 -0500] DEBUG STORE-ADAPTER-PROCESSING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" adapter="UserStoreAdapter" op="search" filter="uid eq 'user.0'"
[30/Jul/2020:10:23:06.652 -0500] SCIM INTERNAL-RESULT requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" scimOpID="6" op="search" opPath="Users" status="2XX" numResults="1"
[30/Jul/2020:10:23:06.652 -0500] ACCESSTOKENVALIDATOR SUBJECT-LOOKUP requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenValidator="Mock Access Token Validator" lookupMethod="User by uid" status="success" tokenOwner="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4"
[30/Jul/2020:10:23:06.652 -0500] DEBUG ACCESS-TOKEN-VALIDATOR-PROCESSING requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" accessTokenValidator="Mock Access Token Validator" msg="Access token validated"
[30/Jul/2020:10:23:06.652 -0500] ACCESSTOKENVALIDATOR VALIDATION requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" accessTokenValidator="Mock Access Token Validator" status="success" subject="user.0" tokenOwner="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4" clientId="" scopes="" expirationTime="none" notBefore="none"
[30/Jul/2020:10:23:06.653 -0500] SCIM REQUEST requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" scimOpID="7" op="retrieve" opPath="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4"
[30/Jul/2020:10:23:06.656 -0500] POLICY REQUEST requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" scimOpID="7" trustFrameworkVersion="V2" domain="" service="SCIM2.Users" identityProvider="Mock Access Token Validator" action="retrieve" attributeKeys="HttpRequest.CorrelationId,TokenOwner,HttpRequest.RequestURI,HttpRequest.IPAddress,HttpRequest.ResourcePath,HttpRequest.RequestHeaders,HttpRequest.ResponseHeaders,HttpRequest.AccessToken,SCIM2"
[30/Jul/2020:10:23:06.931 -0500] DEBUG POLICY-REQUEST-AND-RESPONSE requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" scimOpID="7" method=POST url="https://localhost:9443/api/governance-engine?decision-node=e51688ff-1dc9-4b6c-bb36-8af64d02e9d1&branch=Default+Policies" statusCode=200 responseContentLength=288 msg="
[30/Jul/2020:10:23:06.931 -0500] POLICY RESULT requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" scimOpID="7" decisionId="db47a098-197d-45a4-8bdb-0fe9db4ece75" authorized="true" decision="PERMIT"
[30/Jul/2020:10:23:06.932 -0500] SCIM RESULT requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" scimOpID="7" op="retrieve" opPath="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4" status="2XX"
[30/Jul/2020:10:23:06.933 -0500] HTTP RESPONSE requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" product="Ping Identity Data Governance Server" instanceName="dg1" startupID="XyBwfQ==" threadID=27543 statusCode=200 etime=291.298 responseContentLength=903
[30/Jul/2020:10:23:06.933 -0500] DEBUG HTTP-FULL-REQUEST-AND-RESPONSE requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" accessTokenId="" product="Ping Identity Data Governance Server" instanceName="dg1" startupID="XyBwfQ==" threadID=27543 from=[0:0:0:0:0:0:0:1]:53978 method=GET url="https://0:0:0:0:0:0:0:1:8443/scim/v2/Me" statusCode=200 etime=291.298 responseContentLength=903 msg="

Also, use the correlation ID to search the policy decision log for matching log records.

$ grep 'correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64"' PingDataGovernance/logs/policy-decision
[30/Jul/2020:10:23:06.931 -0500] DECISION requestID=120 correlationID="c52af735-788d-4798-be3b-8d1f3c8f9d64" product="Ping Identity Data Governance Server" instanceName="dg1" clusterName="Data Governance Server" startupID="XyBwfQ==" threadID=27543 from=[0:0:0:0:0:0:0:1]:53978 method=GET url="https://0:0:0:0:0:0:0:1:8443/scim/v2/Me" clientId="" tokenOwner="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4" action="retrieve" service="SCIM2.Users" domain="" identityProvider="Mock Access Token Validator" resourcePath="Users/ad55a34a-763f-358f-93f9-da86f9ecd9e4" deploymentPackageId="9a84b1a0-a972-42e5-8d2d-4827f74bda1d" decisionId="db47a098-197d-45a4-8bdb-0fe9db4ece75" authorized="true" decision="PERMIT" decisionStatusCode="OKAY" adviceIds="" adviceNames=""