module naf-filter-configuration {
yang-version 1.1;
namespace "http://metaswitch.com/yang/tas-vm-build/naf-filter-configuration";
prefix "naf-filter";
import cassandra-configuration {
prefix "cassandra";
revision-date 2019-11-29;
}
import extensions {
prefix "yangdoc";
revision-date 2020-12-02;
}
organization "Metaswitch Networks";
contact "rvt-schemas@metaswitch.com";
description "NAF filter configuration schema.";
revision 2019-11-29 {
description
"Initial revision";
reference
"Metaswitch Deployment Definition Guide";
}
grouping naf-filter-configuration-grouping {
leaf service-type {
type uint8;
default 0;
description "Identifies the type of service the NAF filter is providing.
Recognized values for this setting are defined in Annex B of
3GPP TS 29.109. Affects which settings are selected from the GUSS.";
}
leaf service-id {
type uint16;
default 0;
description "An operator specific identifier that uniquely identifies the service the
NAF filter is providing within the network. Affects which settings
are selected from the GUSS.";
}
leaf naf-group {
type string;
default "";
description "Identifies the group that the NAF filter belongs to. Affects which
settings are selected from the GUSS.";
}
leaf-list force-auth-on-paths {
type string;
default "/rem/auth-check";
description "A list of URL path prefixes for which authentication should always be
enforced, even for requests from trusted entities.";
}
container cassandra-connectivity {
status obsolete;
uses cassandra:cassandra-connectivity-grouping;
description "Obsolete in RVT 4.1 series and later. Cassandra connectivity
configuration for the NAF filter";
}
container nonce-options {
uses nonce-options-grouping;
description "Settings for how the NAF filter handles nonce values";
}
leaf debug-logging-enabled {
type boolean;
default false;
description "Enable extensive logging for verification and issue diagnosis during
acceptance testing. Must not be enabled in production.";
}
leaf intercept-tomcat-errors {
type boolean;
default false;
status obsolete;
description "OBSOLETE in RVT 4.1 series and later.
Whether to let NGINX replace Tomcat errors with default errors.
Use only on advice of your Customer Care Representative.";
yangdoc:change-impact "contact";
}
leaf http-version {
type enumeration {
enum 1.0 {
description "Use HTTP version 1.0.";
}
enum 1.1 {
description "Use HTTP version 1.1.";
}
}
default 1.1;
description "HTTP version to use on the Ub (BSF) and Ua/Ut (NAF) interfaces.";
yangdoc:change-impact "contact";
}
description "The Network Application Functions (NAF) filter configuration.";
}
grouping nonce-options-grouping {
leaf reuse-count {
type uint32;
default 100;
description "The maximum number of times a nonce can be reused by incrementing the
nonce count.";
}
leaf lifetime-milliseconds {
type uint32;
default 180000;
description "The time that a nonce remains valid for after being generated
(in milliseconds).";
}
leaf cache-capacity {
type uint32 {
range "1 .. max";
}
default 100000;
status obsolete;
description "Obsolete in RVT 4.1 series and later. The capacity of the nonce cache.
This setting is only relevant when using the local storage mechanism.";
}
leaf storage-mechanism {
type enumeration {
enum cassandra {
description "Use Cassandra storage.";
}
enum local {
description "Use local storage.";
}
}
default local;
status obsolete;
description "Obsolete in RVT 4.1 series and later. The storage mechanism to use for
the nonce cache.";
}
leaf nonce-cassandra-keyspace {
type string;
default "opencloud_nonce_info";
status obsolete;
description "Obsolete in RVT 4.1 series and later. The Cassandra keyspace for the nonce
cache. This setting is only relevant when using the Cassandra storage
mechanism.";
}
description "Nonce option configuration.";
}
}
