Hi @nick.zincone.1 ,

Ok i have fully integrated rdp logging into our logstream, so the timestamps are captured as well.

Furthermore, I took down all instances but one. So we have only 1 instance run at the same time.

And I incremented the timer to reconnect to 270sec.

We have to unblock again, to see what happens.

Hello @marko.drews

The issue seems relate to the ERT in Cloud authentication-session with RDP Auth Service. I strongly suggest you contact the Elektron Real Time in Cloud support team via my.refinitiv.com web site .

@Wasin Waeosri, case was already at the helpdesk #09019537, client assumes that there getting something wrong within the API when sending the refresh token to RDP as his code only trying reconnecting ~10s when connection lost. but from the logs of the AuthGateway there are more than 1k requests per sec.

@marko.drews

Are you using RDP Library for .NET?

The Authentication controlled by the library, and I never see the case that it send a bulk request like this before. Note that my app has only one Session object and share it among the app/threads.

Have you turned on a trace log from the Library?

For investigation purposes, you can turn on the logger file by setting below value when creating Session.
Log.Level = NLog.LogLevel.Trace;

RDP Library will generate RDPLog_<pid>.log which contains an incoming and outgoing message that the library sends to the server. It can help us verify the messages sent from the library.

@moragodkrit thanks for the advice. I was looking for the logging facility. Although Im not able the reach the crucial part of the code.

04/08/2020 11:21:53:Session is Pending. (State: Pending)04/08/2020 11:21:54:{

"HTTPStatusCode": 403,

"HTTPReason": "Forbidden",

"Contents": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>403 Forbidden</h1></center>\r\n</body>\r\n</html>\r\n"

}. (Event: SessionAuthenticationFailed)04/08/2020 11:21:54:Session is Closed. (State: Closed)

Since our account is blocked again, Ill only get the response that the session authentication failed. There is no massive request generation.

I have a suspicion. My code was trying to open a stream connection, without waiting for the session to be authenticated.

Is it possible that the request flood is produced just then?

I will try to reproduce it, although Im not sure if possible with my blocked account.

Can you guys try this at home pls?

Cheers

here is the extended log:

04/08/2020 11:40:26:Session is Pending. (State: Pending)Application: Debug - Sending HTTP request:

"Method: POST, RequestUri: 'https://api.refinitiv.com/auth/oauth2/v1/token', Version: 1.1, Content: System.Net.Http.FormUrlEncodedContent, Headers:

{

Accept: application/json

Authorization: Basic

Content-Type: application/x-www-form-urlencoded

}"

Application: Debug - HTTP Response: "StatusCode: 403, ReasonPhrase: 'Forbidden', Version: 1.1, Content: System.Net.Http.HttpConnectionResponseContent, Headers:

{

Date: Tue, 04 Aug 2020 09:40:26 GMT

Connection: keep-alive

X-Amzn-Trace-Id: Root=1-5f292d0a-b9e780280cfe0ec8285e4c54

X-Served-By: region=eu-west-1; cid=0079e025-0f01-41ee-b7d1-a382a16438a7

X-Tr-Requestid: 8919cfbe-60c2-43ee-bbac-553738a32a3b

Content-Type: text/html

Content-Length: 134

}"

Application: Warn - RDP Grant Password Authorization failed with Status: "{

"HTTPStatusCode": 403,

"HTTPReason": "Forbidden",

"Contents": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>403 Forbidden</h1></center>\r\n</body>\r\n</html>\r\n"

}"

04/08/2020 11:40:26:{

"HTTPStatusCode": 403,

"HTTPReason": "Forbidden",

"Contents": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>403 Forbidden</h1></center>\r\n</body>\r\n</html>\r\n"

}. (Event: SessionAuthenticationFailed)04/08/2020 11:40:26:Session is Closed. (State: Closed)Application: Debug - Platform Session State is Closed

@marko.drews

It's a very strange behavior. I have a chance to test this scenario previously and found that sending a new item request while the session still not ready does not generate an authenticate problem like this. Not sure can the team re-set your account for now so you test it again? and we can inspect your app behavior from the log file.

@moragodkrit I've requested to unblocked the MachineID. Marko will update you later.

@moragodkrit I have changed my code not to attempt to open a stream, if the session is not authenticated. So far it works fine.

Id suggest to investigate this issue further.

Anyway, thanks for your help!

Hi @marko.drews,

The recent logs you have provided are related to your account status. Once that status changes, you should be able to successfully open a session.

What I'm interested in is understanding the original logs you provided. You have included logs for a Java application. Can you please confirm what programming language you are using when utilizing the RDP Library for .NET? You also included some details related to grant refreshes. Who provided these logs? Did you open a ticket with the support desk and they reported they observed a burst of requests for grant refresh tokens?

I want to understand what original event happened that generated all this activity. Did your session close? Do you have the actual RDP log file

RDPLog_<pid>.log

related to the event that started all of this? I want to see what is going on in the libraries/your code that could explain the burst of refresh requests. In this version of the library, if the refresh token fails, it will not automatically retry until another ~270 seconds. If you have defined logic to manage recovery when a session fails to refresh a token, you should ensure you are not doing this every 10 ms - you've mentioned 10s but want to ensure your timer isn't in milliseconds (I've made that unintentional mistake in the past). The RDP logs related to these events should provide some kind of clue.

Hi @nick.zincone.1 ,

Im using RDP dotnet library 1.0.0-alpha. you are correct, those logs are Java. They were provided by refinitiv, serverside logs on my clientcode. There is an open ticket: 09019537 EDP-GW authentication Query [ ref:_00D30602X._5001W1huszH:ref ].

Unfortunately I dont have actual client trace logs, since I just activated rdp logging and the issue did not arise again yet.

Im now waiting for authenticated session before I attempt to open a stream.

My timer was 10s, I double checked it as well ;)

As I understand, you should investigate the instantiation of stream objects.

I had quite a long universe list (24 items), which I pass on object instantiation.

I hope this helps

Hi @nick.zincone.1 ,

by instantiation of stream object I mean to create an object of IStreamingPrices, find my factory here:

private IStreamingPrices CreateStreamingPrice(IEnumerable<string> universe, IEnumerable<string> fields = null)

=> Pricing.CreateStreamingPrices(new StreamingPrices.Params()

.Universe(universe)

//.WithFields(fields)

.OnError((o, item, error) => OnError(error))

.OnRefresh((o, item, refresh) => OnRefresh(item, refresh))

.OnUpdate((o, item, update) => OnRefresh(item, update))

.OnStatus((o, item, status) => OnStatus(o, item, status)));

as you can see, Im passing universe, which is a ric list, in my case of length 24.

My guess would be, this triggers the amount of requests.

The Log is turned on, but I had to add a delegate to pass the log output to the app log stream

Log.Output = (loginfo, parms) => Console.WriteLine($"Application: {loginfo.Level} - {loginfo.FormattedMessage}");

Cheers

Hey @nick.zincone.1 ,

We run this app in a cluster. So I had to capture the logs somehow. using the console, the log stream is captured. Please find the log file attached.

logs-from-cnvx-scrapers-reuterselektron-in-cnvx-scrapers-reuterselektron-6c667b5878-x2l4s.txt

You can see there was a disconnect. But the reconnection seems to work now. No blocking encountered yet.

As mentioned earlier, I have changed the code:

private async Task ReconnectAsync()

{

if (_session.OpenState != State.Opened)

await _session.OpenAsync();

if (_session.OpenState != State.Opened)

_logger.LogError("RDP Session was not able to authenticate, last event: {code}\n{event}", _session.LastEventCode, _session.LastEventMessage.Dump());

else

{

if (_streamPricing == null)

_streamPricing = CreateStreamingPrice(_symbolNames, _dataFields);

if (_streamPricing.OpenState == Stream.State.Closed)

await _streamPricing.OpenAsync();

if(_streamPricing.OpenState == Stream.State.Closed)

_logger.LogError("Error opening pricing stream, last event:\n", _session.LastEventMessage.Dump());

}

}

I think its evident now, the streampricing object is responsible for the burst of requests.

Although there was a disconnection and reestablishing of a connection, there was no request burst. I also run multiple instances of the app in the cluster. these instances got killed a few times on purpose to potentially recreate the issue.

The problem for me seems to be solved. I did not experience this issue any more. We are connected.

Please file the log, Im happy to help, if you have further questions.

Hi @nick.zincone.1 ,

ok the trap is placed.

logs-from-cnvx-scrapers-reuterselektron-in-cnvx-scrapers-reuterselektron-8f4b564d8-2r485 (1).txt

pls check the logfile if everything is at place.

Next time the error occurs we can trace it down