Skip to main content

Failed Exchange via Custom Token Exchange

audience
string
required

The audience in the JWT associated with the request.

client_name
string
required

Client name associated with the client_id, when available. May be empty string.

description
string
required

Description of the event. This can also contain a description of the issue for failure logs.

details
object
required

Log details

environment_name
string
required

The name of the environment where the event occurred

Examples:

"prod-eu-1"

"prod-us-1"

hostname
string
required

The hostname associated with the request. For forwarded requests, this should resolve to the original hostname. For failure logs, this may include invalid hostnames.

ip
required

The IP address associated with the request. For an auth related log this should be the end user IP. For a machine-to-machine auth flow this should be the IP of the computer doing the authentication. For management logs like sapi and mgmt_api_read this should be the IP of the admin using the manage dashboard.

log_id
string
required

Log id

tenant_name
string
required

Tenant name

type
string
required

Failed Exchange via Custom Token Exchange

Allowed value: "fecte"
$event_schema
object

Event schema meta

agent_id
string

Stable identifier for the agent acting as principal in this flow. Present when an Auth0 Agent has been granted authority via token exchange and is acting on behalf of a user or itself.

auth0_client

The client or SDK used to do this request, if any. This is based on the Auth0-Client HTTP header.

client_id
string | null

Client related to the API call. Clients are also called applications. The underlying application may not be owned by your tenant and may not be accessible. For failure logs, this may be a valid ID, an invalid one, or any ID.

date
string

The date when the event occurred in ISO 8601 format

Example:

"2024-01-15T10:30:00.000Z"

is_mobile
boolean

Whether the request originated from a mobile device. Only present when user_agent is available.

scope

List of scopes in the JWT, either as an array like ["read:logs","read:users"] or a space-separated list of scopes like read:logs read:users delete:clients

security_context
object
user_agent
string

The user_agent behind this log, when available

Example:

"Chrome 120.0.0 / Mac OS X 10.15.7"