Service Properties

TLS_AES_256_GCM_SHA384,

TLS_AES_128_GCM_SHA256,

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

• true: Tomcat enforces the server's preferred order of cipher suites during SSL/TLS handshakes.
• false: The client’s preferred order of cipher suites is used during SSL/TLS handshakes.

If set to true, the json response for each VGSx API call will be logged at INFO level.

Note: The json body can contain a phone number. Customers may wish to keep this property disabled or mask phone numbers if concerned about this information being present in logs.

http://localhost:5173,

http://localhost:8080,

http://localhost:8081,

https://sentinel-webapp-test.identityx-cloud.com, https://sentinel-vgsx-tester-test.identityx-cloud.com, https://sentinel-vgsx-test.identityx-cloud.com

Determines whether circular references between beans are allowed during application context initialization.

This property must not be altered.

Configures the strategy used for matching URL paths to controller methods.

This property must not be altered.

The format of datetime parameters in the JSON requests and responses.

This property must not be altered.

Configures how Jackson includes properties in JSON serialization. Configured with one of the values in Jackson's JsonInclude.Include enumeration.

The default value of NON_NULL includes only properties with non-null values.

This property must not be altered.

Controls the inclusion of properties during serialization. Configured with one of the values in Jackson's JsonInclude.Include enumeration.

The default value of NON_NULL includes only properties with non-null values.

This property must not be altered.

Configures whether additional details should be included in the response of the health endpoint provided by Spring Boot Actuator.

The default value of ALWAYS includes details in all responses, regardless of authorization.

http://localhost:8081/streamAudio?

recid=%s&chunkSize=%d&delay=%d

&repeat=%d

The streaming callback URL for the default VGSx tester.

This property is linked to the sentinel.vgs.host.name property in the VGSx Tester which has a default value of sentinelVGSTester. The name of this property is orcx.live_streaming_url_{name} where {name} must match the hostname supplied by the VGSx Tester.

An example streaming callback URL for OrkAudio

This property must be replaced when using OrkAudio.

This name of this property is orcx.live_streaming_url_{name} where {name} must match the hostname supplied by an OrkAudio instance. One _orcx.live_streaming_url{name} property must be defined for every OrkAudio instance which communicates with this VGSx instance.__

Determines whether Neustar will be called to authenticate an incoming call.

Integration with Neustar is outside the scope of this document.

The build version reported by the ping API.

This property must not be altered.

The sentinel version reported by the ping API.

This property must not be altered.

The service name reported by the ping API.

By default this property is part of the sentinel.service.name property which identifies this installation of the VGSx service to the VCDx in the cloud when publishing audio metrics.

The service ID reported by the ping API.

By default this property is part of the sentinel.service.name property which identifies this installation of the VGSx service to the VCDx in the cloud when publishing audio metrics.

${sentinel.vgs.service_name}

${sentinel.vgs.server_id}

/tenants/${sentinel.trustx.tenantId}/

audios/${sentinel.service.name}

The path of the VCDx analysis API.

This property must not be altered.

The path of the VCDx health API.

This property must not be altered.

The tenant ID used when calling the VCDx service.

This property must be set. It defines the tenant ID which will be used by the on-premise VCDx when publishing metrics to the VCDx in the cloud. Refer to the section earlier in this document here: Configuring-the-Sentinel-VGSx-TrustX-connection

The API key used to authenticate to VCDx in the cloud.

This property must be set. It will be used to authorise the on-premise VCDx when publishing metrics to the VCDx in the cloud. Refer to the section earlier in this document here: Configuring-the-Sentinel-VGSx-TrustX-connection

Configures whether this is an on-premise or TrustX deployment. The default of value of false indicates that this is an on-premise deployment.

This property must not be altered.

Configures the TrustX region where VCDx is deployed.

This property is only used in TrustX cloud deployments of VGSx and does not need to be set for on-premise deployments.

Defines a directory to which an audio file will be written for each piece of audio which is streamed. The audio file names within the directory are formatted as the call Id + a timestamp:

{callId}_{yyyyMMdd'T'HHmmss.SSSZ}.wav

Sets a default channel on which the audio will be decoded on a stereo stream.

Valid Values: LEFT, RIGHT

Whether the input is stereo and the channel to use can also be set in the call parameters supplied to the /orktrack/command API.

The preferred length, in milliseconds, of speech segments which will be sent to VCDx for analysis.

Speech segments shorter than this will only be sent if there is remaining speech that has not been processed at the end of a call or after a the maximum hold time has expired but speech segments will never be shorter than analysis.absolute.min.speech.duration.

Note: If setting to a value lower than 2000, you must also change the analysis.service.qc.min.speech.durationproperty in VCDx.

By default, VGSx will split the call audio into segments and call VCDx with each segment until either the call ends or an anomaly is detected. The VGSx can be limited to stop call processing after a certain number of successful calls to the Sentinel VGSx. Calls which return a NOT_PROCESSED status are ignored.

This property defines the maximum number of successfully processed audio segments before audio processing completes regardless of whether the call completed.

The default value of -1 results in the call being processed until it ends.

Speech segments will only be sent by VGSx to the VCDx if the call is in one of these states.

This property must not be altered.

If this property is set to true, the VGSx will ignore anomalies and continue to process the file even if they are reported by the VCDx.

This property must not be altered.

Defines the amount of time in milliseconds between potential calls to VCDx to check its availability during the VGSx ping call.

For example, with the default setting of thirty seconds, if ping is called every ten seconds the connection to VCDx will be made once every three calls.

Determines whether VGSx will ignore the action status set using the /gatewayNode/actionStatus API when analysing a call.

If true then the HTTP status defined in the property above will be returned on call analysis if the VGSx has been instructed to stop processing calls using the /gatewayNode/actionStatus API. If false then the call will still be processed.

TLS_AES_256_GCM_SHA384,

TLS_AES_128_GCM_SHA256,

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

• true: Tomcat enforces the server's preferred order of cipher suites during SSL/TLS handshakes.
• false: The client’s preferred order of cipher suites is used during SSL/TLS handshakes.

management.endpoints.jmx.exposure

.include

management.endpoints.web.exposure

.include

Configures the severity order for health indicators. By default, it contains the following statuses:

1. DOWN: Indicates a critical failure.
2. OUT_OF_SERVICE: Indicates that the component is temporarily out of service.
3. UNKNOWN: Used when no specific status is returned by any health indicator.
4. UP: Indicates that the component is healthy and operational.

Configures whether additional details should be included in the response of the health endpoint provided by Spring Boot Actuator.

The default value of ALWAYS includes details in all responses, regardless of authorization.

Configures whether this is an on-premise or TrustX deployment. The default of value of false indicates that this is an on-premise deployment.

This property must not be altered.

Defines the domain of the TrustX services. The %s parts of the string are place-holders for text.

Refer above for more detail: Configuring-the-Sentinel-VCDx-TrustX-connection

When using VCDx in non-production environment, the trustx part of the domain must be re-configured, for example to trustx-dev for the development environment.

The region where the TrustX deployment of xDeTECH resides.

Refer above for more detail: Configuring-the-Sentinel-VCDx-TrustX-connection

The location of the cache configuration.

This property must not be altered.

Specifies the hostname or IP address of the Redis server to which VCDx should connect.

See above here: Configuring-Redis

Specifies the port number of the Redis server to which VCDx should connect.

See here: Configuring Redis

Specifies whether transport layer security is configured.

See here: Configuring Redis

Path to the Redis script used to cache algorithm probabilities with no averaging.

This property must not be altered.

sentinel.redis.snapins.results.lua.script

.path

Path to the Redis script used to cache algorithm probabilities for whole call mode.

This property must not be altered.

sentinel.redis.snapins.results.lua.script

.path

Path to the Redis script used to cache algorithm probabilities for averaging mode.

This property must not be altered.

sentinel.redis.eval.lua.script.number.of

.retries

Defines how the VCDx calculates the analysis probability scores across the audio.

See here: Configuring-Sentinel-VCDx-Averaging-Modes

snapins.averaging.lastnsamples.window

.size

If VCDx is configured in LAST_N_SAMPLES mode, defines the number of audio samples the probabilities will be averaged over.

See above here: Configuring-Sentinel-VCDx-Averaging-Modes

snapins.averaging.wholecall.min

.processing.requests

If VCDx is configured in WHOLE_CALL mode, defines the earliest request for which an average will be calculated on a particular call.

See above here:Configuring-Sentinel-VCDx-Averaging-Modes

Defines how the three analysis processors (aka snap-ins) in VCDx are executed.

• PARALLEL: All three analysis processors are executed concurrently.
• PARALLEL_QC_FIRST: The quality control snap-in is executed first and if it passes the replay and clone snap-ins are executed concurrently.
• SEQUENTIAL: The quality control snap-in is executed first and if it passes the replay and clone snap-ins are executed sequentially.

The number of worker threads available to analyse audio using the snap-ins. How many threads are used per call depends on the sentinel.snapin.execution.mode.

• PARALLEL: 3.
• PARALLEL_QC_FIRST: 2.
• SEQUENTIAL: 1.

This value must not be set to lower than sentinel.snapin.minimum.pool.size

A list of models used internally by VCDx for which confidence score to BPCER mappings files exist.

This property must not be altered.

sentinel.confidence.indicator.light.upper

.bound.percentage

Defines the threshold which controls the confidence indicator value returned when no anomaly is detected by VCDx.

If an analysis result of NO_ANOMALY_DETECTED is returned by VCDx and the BPCER associated with the lowest algorithm confidence score is lower than this threshold then a confidenceIndicator of MEDIUM is returned, otherwise a confidenceIndicator of HIGH is returned.

The number of calls made to each of the three analysis processors (aka snap-ins) when the VCDx service is started.

A short audio sample is sent to each snap-in this number of times in order to increase the efficiency of the snap-ins.

The audio sample sent to initialize the snap-ins.

This property must not be altered.

The API path for the TrustX VCDx health check

This property must not be altered.

A grace period in milliseconds used when refreshing the JWT used to authenticate to the Sentinel TrustX Cloud Services.

The token may be refreshed this number of milliseconds earlier than it actually expires.

The frequency with which the Sentinel TrustX Cloud Services are checked to see if they are back up after they go down when the service is idle.

The cloud service availability is checked whenever the on-premise VCDx is called to analyse audio.

The AWS region used when a cloud-based deployment of VCDx publishes audio processing statistics to Kinesis.

This property is not used by on-premise deployments of VCDx.

The stream name used when a cloud-based deployment of VCDx publishes audio processing statistics to Kinesis.

This property is not used by on-premise deployments of VCDx.

The location of the file containing the input data template for the Voice Clone snap-in.

This property must not be altered.

The location of the file containing the input data template for initialising the Voice Clone snap-in.

This property must not be altered.

Defines the maximum number of CPUs in a deployment that the Voice Clone snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the inter.thread property for the snap-in must be set to the same value.

Defines the maximum number of CPUs in a deployment that the Voice Clone snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the intra.thread property for the snap-in must be set to the same value.

The list of algorithm models supported by the Voice Clone snap-in.

This property must not be altered.

The location of the file containing the input data template for the Quality Control snap-in.

This property must not be altered.

The location of the file containing the input data template for the Quality Control snap-in.

This property must not be altered.

Defines the maximum number of CPUs in a deployment that the Quality Control snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the inter.thread property for the snap-in must be set to the same value.

Defines the maximum number of CPUs in a deployment that the Quality Control snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the intra.thread property for the snap-in must be set to the same value.

The location of the file containing the input data template for the Replay snap-in.

This property must not be altered.

The location of the file containing the input data template for the Replay snap-in.

This property must not be altered.

Defines the maximum number of CPUs in a deployment that the Replay snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the inter.thread property for the snap-in must be set to the same value.

Defines the maximum number of CPUs in a deployment that the Replay snap-in will use. If set to zero the snap-in will use all the resources available.

This property and the intra.thread property for the snap-in must be set to the same value.

A flag which, if set to true or false, determines whether the snap-ins will run in Text-Dependent mode.

A text dependent mode parameter may be supplied in the audio analysis API. If supplied, the value in the request will override whatever value is configured here.

This setting is only required if the audio supplied to the snap-ins is a one-off spoken phrase and not part of an audio stream. If set to true the snap-ins will trim silence from the start and end of the audio before processing.

TLS_AES_256_GCM_SHA384,

TLS_AES_128_GCM_SHA256,

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

• true: Tomcat enforces the server's preferred order of cipher suites during SSL/TLS handshakes.
• false: The client’s preferred order of cipher suites is used during SSL/TLS handshakes.

http://localhost:5173,

http://localhost:8080,

http://localhost:8081,

https://sentinel-webapp-test.identityx-cloud.com, https://sentinel-vgsx-tester-test.identityx-cloud.com, https://sentinel-vgsx-test.identityx-cloud.com

Configures the strategy used for matching URL paths to controller methods.

This property must not be altered.

Specifies the profiles that are currently active, allowing for different configurations to be used based on the environment.

This property must not be altered.

Specifies the packages to be scanned for API documentation generation using Springdoc OpenAPI.

This property must not be altered.

Specifies the URL paths to be included for API documentation generation using Springdoc OpenAPI.

This property must not be altered.

The value of the hostname parameter that is sent to VGSx when starting and stopping a call. This identifier is used by VGSx to reference the callback URL for streaming audio as described above in this document, here: https://daon.atlassian.net/wiki/spaces/SKY/pages/edit-v2/3616473145#Orkaudio-Server-Locations

If this property is altered, the corresponding orcx.live_streaming_url_{name} property in VGSx must be altered. The {name} part of this property must match the hostname supplied by the VGSx Tester.

The path to the API in the on-premise VGSx which is used to announce when a call is started or stopped by the VGSx Tester.

This property must not be altered.

Whether S3 can be used a repository for audio files.

This property must not be altered.

On-premise deployments do not support S3 as a repository for audio files, only a local file system or (S)FTP server.

The build version reported by the ping API.

This property must not be altered.

The service name reported by the ping API.

This property must not be altered.

Configures whether this is an on-premise or TrustX deployment. The default of value of false indicates that this is an on-premise deployment.

This property must not be altered.

The path to the TrustX API in VGSx which is used to announce when a call is started or stopped by the VGSx Tester.

By default an on-premise deployment of VGSx Tester will use the sentinel.vgs.prem.call.command.path property to identify this endpoint. To target a VGSx deployed in TrustX and use this property, the start call API request must contain a vgsDeploymentType of TRUSTX.

https://${sentinel.vgs.trustx.tenant}

.${sentinel.vgs.trustx.region}

.trustx.com

The domain of the TrustX VGSx service to which this VGSx Tester announces calls.

By default an on-premise deployment of VGSx Tester will use the sentinel.vgs.prem.domain property to identify this endpoint. To target a VGSx deployed in TrustX and use this property, the start call API request must contain a vgsDeploymentType of TRUSTX.

The core size of the thread pool used for handling audio streaming calls, determining the number of threads kept in the pool even when they are idle.

The streaming.threadpool properties define how many calls can be streamed from the VGSx Tester simultaneously.

Defines the capacity of the queue used by the thread pool for handling audio streaming calls to hold tasks that are awaiting execution when all threads are busy. This capacity determines how many tasks can be queued before additional tasks are rejected or handled according to the configured rejection policy.

The default value of -1 means that there is no limit on the number of tasks that can be queued, allowing tasks to wait indefinitely until a thread becomes available to execute them.

Determines whether the core threads in the thread pool for handling audio streaming calls are eligible for timeout and termination when idle.

• Setting it to true allows core threads to timeout and terminate when they have been idle for a certain period.
• Setting it to false prevents core threads from timing out and ensures they remain alive even when idle.

The amount of time that excess threads (those beyond the core pool size) in the thread pool for handling audio streaming calls remain alive when idle before they are terminated.

The default value of -1 means that excess threads in the thread pool will not be terminated due to idleness. In other words, there is no specific timeout period set for these threads, and they will remain alive indefinitely until either the application shuts down or the thread pool configuration changes.