Age | Commit message (Collapse) | Author | Files | Lines |
|
Update expired certificates
Now expiration date is printed in the Bag attributes
Issue-ID: AAF-845
Change-Id: I4506699c1cd75a451cf00bae461680d0ef136514
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Snapshot images are taged with 4.0.0 now
Issue-ID: AAF-764
Change-Id: I31d2cc88e9c1c1b499609e71d54aa72ecaa38a6b
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Update image version to 3.0.1 for release
tagging.
Issue-ID: AAF-390
Change-Id: If675f209f852fd783f16feb40b92c54e1f160c91
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
We are seeing in some environments that
preload gets a connection refused error.
Preload should retry before giving up in such cases.
Currently default retry is 5 times
after a wait of 5 secs each.
Issue-ID: AAF-596
Change-Id: I06e1869374116d777a5dae3fccc72a35e793c6c9
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Go 1.11 introduces a native functionality for package management.
This replaces dep which is the tool we were using before.
This patch switches SMS to use go mod instead
of dep for package management.
P2: Add GO111MODULE=on to the makefile
Issue-ID: AAF-404
Change-Id: I462d210fbbe71bff1310a50993410ebc7d8f6fa8
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Return a more helpful message in case you are creating
a domain where it already exists. The client's behavior
can be tailored based on the returned message in this
case.
Issue-ID: AAF-573
Change-Id: I9fdebe8f136ba09e04576214b37a76213a4ad529
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Upload secrets even when domain was created before
Any secrets with same name are overwritten with
new values and new secrets are added to the domain
Provides capability to add to existing domains via
the commandline
Issue-ID: AAF-574
Change-Id: I77a842d8f16cf224b04c328ef2825ed7ea7deab1
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
SMS healthcheck should unmount domain
using the domain name instead of UUID
Issue-ID: AAF-570
Change-Id: I43fb881e047bf840e698b7f8e317125abb421a7b
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Preload is not checking if SMS is ready or not
before issuing the upload commands. This patch
fixes that behavior.
Issue-ID: AAF-545
Change-Id: I485aeab4f797cacce1036cd6e24910c65fa4eb69
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
The cmdline tool to preload json files is reading from CWD
instead of using the provided commandline dir.
Issue-ID: AAF-544
Change-Id: I8af23f0556ff678c33223e6f6acac402a39dd662
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Add the preload tool developed in patch 69786 to
sms docker container. It will be used from there
in the kubernetes configuration.
Issue-ID: AAF-532
Change-Id: I7ca1d037514da0d56a6c47d6e0c6b845d2fd9a5e
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Add a preload golang app that reads configuration files
and loads the domains and corresponding secrets to SMS.
The tool can configured via command line options.
P2: Add support for domains as well as domain in JSON
P3: Add sampleformat.json
Issue-ID: AAF-532
Change-Id: If3f880b8ce61a282dc015cac7df723453b91f114
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
UUID based urls are pain points for clients as per feedback
Reverting to using known domain names
Issue-ID: AAF-502
Change-Id: If3d5861ad8cc40adf84d41cd90c90fcde60446ab
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
The sms.sh startup script for VMs uses a different name
vs the real service name to connect to the host bridge.
Issue-ID: AAF-489
Change-Id: I76a3d0bd249ca6044481f2e6f0375ec83e3b02d5
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
UUID will be used by other micro service to operate
on their respective domains.
Issue-ID: AAF-439
Change-Id: Icc32fa48da7be4b79e570f2b7da5453287013bcc
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Update version from 2.0.0 to 3.0.0
for casablanca
Issue-ID: AAF-390
Change-Id: Ibcf0eb59addc2e287db25021293b155113b1ae58
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Build was not catching error
Now throwing the error up the chain
Issue-ID: AAF-346
Change-Id: I5a1729097f573d0169c4485075183d40c8d31db2
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Intermediate CA had expired. Using the updated
certificate with the new intermediate CA. Updating
lock file to handle go package dependency
Issue-ID: AAF-346
Change-Id: I0751011e3e96be326436c0d9799f08d5b55eaa76
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
This is to setup the area for clients in
other languages used in ONAP. Eg: python
Issue-ID: AAF-289
Change-Id: I597492c6ba2be3291d383b98c205cb7725b1a3ac
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Updating certificates to latest with the
fixed FQDN name in cert. Previous one had
api missing in there.
Issue-ID: AAF-288
Change-Id: Ib594acd3ed1a77ddd441a670e7df0cdd05523a2a
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
WORK IN PROGRESS
Adding a docs folder under sms
Issue-ID: AAF-185
Change-Id: I5ee3560cfda2100ad5207bb7e98d5cb9472e1325
Signed-off-by: Girish Havaldar <hg0071052@techmahindra.com>
|
|
Previous patch did not fix the tests
Updating.
Issue-ID: AAF-285
Change-Id: Ie0972651e6bdee77cb6563b2c8d9693a6db876d8
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
fixing auth test for auth.go
auth is failing unit tests because of updated
use of gettlsconfig
Issue-ID: AAF-285
Change-Id: I96ec74adcce042aa411d834811881755f00b7ac7
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding new SAN certificates from AAF
Adding encrypted storage for certificates
Moving certificates to different folder during
deployment. certs vs auth
Issue-ID: AAF-284
Change-Id: Ic0c3972556b36f773c7a653059eccd077624e4b6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
If the bash header is not used, the script
fails to resolve the names for the quorum clients
in the for loop.
Issue-ID: AAF-280
Change-Id: Ia08d8522b5a5764024a0ed8da32f26e1a7d432af
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Added a new url endpoint for healthcheck
/v1/sms/healthcheck which will run a simple
operation on the backend and return OK or error
Issue-ID: AAF-263
Change-Id: Idbfaeff50e6a8c36fa25c081a3b1c6169535ea36
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
This is to support vm/baremetal based deployments
Issue-ID: AAF-262
Change-Id: Iff3bca737187de5ca49d9ec6b93082344e007d9e
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using SNI in quorum client connection to
connect to SMS service via https
Issue-ID: AAF-265
Change-Id: I5108e9d734f11a4f74c41a41a2d8cd2f72c62b36
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Previous patch was missing the root ca file.
Needed in case clients provide their own cert
Issue-ID: AAF-265
Change-Id: I4dcdf6d424e4837aadfc01fc7caba8df93623658
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding cert files generated by AAF CA
Incorporating them into the docker build as well
Issue-ID: AAF-265
Change-Id: I1ee1e031bf058a0325fe2c6fe8eed5e3948d70e7
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Data folder is not guaranteed to exist and therefore
needs to be created before writes can be done on it.
Issue-ID: AAF-261
Change-Id: I4671f0dac34a04c80639386719639b8c9472a9d3
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Docker images are getting loaded with version 1.1.0
They need to be 2.0.0
Issue-ID: AAF-258
Change-Id: I5643ccdaf5eae1e7101e37dbbe858ae346ff0e30
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Refactored the logger to print the right line
number. This is done by using the runtime.caller
function within the logger.output function
Issue-ID: AAF-257
Change-Id: Ie26de43ca74c71f382d3b5f93ebd4eaf6d51e2b4
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
These unit tests create a mock vault server
and run the commands through it to test the core
functionality.
Issue-ID: AAF-118
Change-Id: Iab658cc60590b98c1524ccd5d57986e1fe2594c9
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Added lock for quorum registration
Removed debug statement
Issue-ID: AAF-92
Change-Id: Ib2de5ae7ed31b93b6853c78a70305a401ba3c014
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
CSIT test for sms broke because of quorum client
code changes
Issue-ID: AAF-251
Change-Id: I99d3d5fdcd800fbf1d4557488d03a65a0e891dfa
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Enabling the building of docker images for the
quorum client
Issue-ID: AAF-95
Change-Id: I5800e0972cbebf38d560d975e4bcb0e7939deeeb
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Changes to allow quorum client to SMS communication
Introducing a registration api for quorum clients to get
their shard piece in PGP encrypted form from SMS
Tested with 3 quorum clients. This is now ready for review.
Issue-ID: AAF-168
Change-Id: I7a6ade792c1e5ebcf00cbc8c4a1f1942c006e7c7
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Changing client auth to verify if given to allow client
connections where client does not have a certificate
Issue-ID: AAF-93
Change-Id: Ifd8f59108536889bacb0fe1477dc1e1c8a0ff4dc
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Restructure the directories and files
to accommodate maven build. This will build,
test and generate jar file for clients to use.
Adds a target in the top level makefile.
Issue-ID: AAF-183
Change-Id: I8c27396248d83070befe51f2c6e01aed7dea9202
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Refactored some code and adding disable_tls flag
This is needed for now to enable some end to end
testing of quorum abilities and will be enabled
once certificate support is added to ONAP
Also updated test script to take port as argument
Issue-ID: AAF-95
Change-Id: I4124bbfd22185a83b3c671b8a0499bfb3bde865d
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
The UUID that is generated for secret domains
should be stored securely in Vault. These can
be used for future authorized access enforcement.
Issue-ID: AAF-222
Change-Id: I141ceb16b3c4a258cc5f6088585a9944093277af
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Renaming folder from smsquorum to quorumclient
Added quorumclient build as part of the makefile
Will upload another patch in ci-management that
will call the new parent makefile
Issue-ID: AAF-213
Change-Id: Ib85ac6b9dc454fc1447cf2221a555d7a7552efa5
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Moving the docker build scripts too
Issue-ID: AAF-213
Change-Id: I97c1de10d198c6afc97c763c54d862a10b5b7f92
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Moving quorum code and sms service code into
common GOPATH for easier building and sharing
of common modules between them.
Issue-ID: AAF-213
Change-Id: I88a8bcc0a94960163766718a2eef6bf34fd2c1e3
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
This patch adds a new parent Makefile that will be called
by the jenkins job once the smsquorum code also comes under
this GOPATH
Issue-ID: AAF-213
Change-Id: I50d5f72b91455c501505130fbbf41ba245f1800a
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Changing the docker image build process to use
a specified file instead of default Dockerfile
Also, fixing the line endings in .sh file to use
Unix line endings.
Issue-ID: AAF-213
Change-Id: I715a8d86a3bd2433f92d42e216a1f52f56cebf9b
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
SMS gets the backend address from ENV variable
if nothing is provided in the config.json file
Issue-ID: AAF-209
Change-Id: I7791ec6db3627092f9161088ed6242ed71368293
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Patch 39785 caused a unit test failure
Fixing that here
Issue-ID: AAF-202
Change-Id: I41dd2883f353e266a48033584c7b83a3670fcc62
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Delete secret should return 204 similar
to Delete Domain
Issue-ID: AAF-202
Change-Id: I63789f651c03aa19179c6ba8f271668d914181fd
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|