Age | Commit message (Collapse) | Author | Files | Lines |
|
Changing client auth to verify if given to allow client
connections where client does not have a certificate
Issue-ID: AAF-93
Change-Id: Ifd8f59108536889bacb0fe1477dc1e1c8a0ff4dc
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Restructure the directories and files
to accommodate maven build. This will build,
test and generate jar file for clients to use.
Adds a target in the top level makefile.
Issue-ID: AAF-183
Change-Id: I8c27396248d83070befe51f2c6e01aed7dea9202
Signed-off-by: Manjunath Ranganathaiah <manjunath.ranganathaiah@intel.com>
|
|
Refactored some code and adding disable_tls flag
This is needed for now to enable some end to end
testing of quorum abilities and will be enabled
once certificate support is added to ONAP
Also updated test script to take port as argument
Issue-ID: AAF-95
Change-Id: I4124bbfd22185a83b3c671b8a0499bfb3bde865d
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
The UUID that is generated for secret domains
should be stored securely in Vault. These can
be used for future authorized access enforcement.
Issue-ID: AAF-222
Change-Id: I141ceb16b3c4a258cc5f6088585a9944093277af
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Renaming folder from smsquorum to quorumclient
Added quorumclient build as part of the makefile
Will upload another patch in ci-management that
will call the new parent makefile
Issue-ID: AAF-213
Change-Id: Ib85ac6b9dc454fc1447cf2221a555d7a7552efa5
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Moving the docker build scripts too
Issue-ID: AAF-213
Change-Id: I97c1de10d198c6afc97c763c54d862a10b5b7f92
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Moving quorum code and sms service code into
common GOPATH for easier building and sharing
of common modules between them.
Issue-ID: AAF-213
Change-Id: I88a8bcc0a94960163766718a2eef6bf34fd2c1e3
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
This patch adds a new parent Makefile that will be called
by the jenkins job once the smsquorum code also comes under
this GOPATH
Issue-ID: AAF-213
Change-Id: I50d5f72b91455c501505130fbbf41ba245f1800a
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Changing the docker image build process to use
a specified file instead of default Dockerfile
Also, fixing the line endings in .sh file to use
Unix line endings.
Issue-ID: AAF-213
Change-Id: I715a8d86a3bd2433f92d42e216a1f52f56cebf9b
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
SMS gets the backend address from ENV variable
if nothing is provided in the config.json file
Issue-ID: AAF-209
Change-Id: I7791ec6db3627092f9161088ed6242ed71368293
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Patch 39785 caused a unit test failure
Fixing that here
Issue-ID: AAF-202
Change-Id: I41dd2883f353e266a48033584c7b83a3670fcc62
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Delete secret should return 204 similar
to Delete Domain
Issue-ID: AAF-202
Change-Id: I63789f651c03aa19179c6ba8f271668d914181fd
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Minor changes to the repo
Updating the .gitignore file
Issue-ID: AAF-92
Change-Id: I43b054709d0067f4d719c9176a1fdd50d1621a48
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding a disable_tls flag to allow
running the service in tests and other
non production environments. Also,
CSIT tests may not support TLS tests
Issue-ID: AAF-189
Change-Id: I936b3b887104f2b041a8c73909951a25494eebeb
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Added support for running system level code coverage tasks
Updated sms.go to allow graceful shutdown when it
gets a SIGINT. Useful for gather coverage information.
Issue-ID: AAF-192
Change-Id: Ife4a485e7926fd59948bf90fac4b2d4ea9de0332
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding build commands within the bash script
This will then be called in the nightly docker
push
Issue-ID: AAF-100
Change-Id: Iab29de26c7f9feac1b3f76666f1674ad7a267da8
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding PGP decrypt function to auth.
This can be used by quorum client in its code for decryption
Issue-ID: AAF-165
Change-Id: I6d236c3164ccb93c11527ac8c2e725987236f9f0
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding the necessary bash scripts to be called for docker build
These will be called by the jenkins job for the nightly docker build
Issue-ID: AAF-100
Change-Id: Iae0c095d44849ae65583247fc7026f313d1ee0b7
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Making the build static is good for deployment on a container.
There is no need to worry about installing dependencies and so on.
Issue-ID: AAF-182
Change-Id: I6bb34ccae423886d9154b2a713b81911f739e9ff
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Instead of sending JSONArray, retrun JSON object
for consistency and client processing
Issue-ID: AAF-172
Change-Id: I17d2e2c2865a817c8016987f998c87259413f306
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using an embedded lock instead of an explicit variable
Issue-ID: AAF-92
Change-Id: Ia7bd43a40ec50664b042afa9e46091f14122ba5c
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using golang init is creating log files in various folders
when tests are run.
Moved to Init which is called my server initialization.
Issue-ID: AAF-148
Change-Id: Ia05fa1ed1841fd6a98852329ab031372f6489ad6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding a couple of functions to support PGP key generation
and using said keys to initialise vault.
Issue-ID: AAF-165
Change-Id: Ic65f8157f125005d544bbf8dede184bd282a5357
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding updated unit tests for handler.go
They needed to be fleshed out based on the handler implementation
Issue-ID: AAF-131
Change-Id: Id161faef7500947d858e99b9648f951bc1e54e09
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
URL is now a command line parameter for endpoint tests
Issue-ID: AAF-161
Change-Id: I6f740ad5cbbd3c73ee7e9a4556acef360a1aefa5
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Building Dockerfile for SMS containerization - implemented review comments Issue-ID: AAF-147
Change-Id: I85030f461d6242d0bd4358dce7ac3b6d86edfd22
Signed-off-by: vamshi.nemalikonda <vn00480215@techmahindra.com>
|
|
Adding endpoint tests that use curl and some dummy data
to exercise the various endpoints that are deployed
Issue-ID: AAF-161
Change-Id: I522216ac790db10a68f4d2af8e845d7526b9fa48
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Updating the json encoding to use Marshal
This is to allow us to set the right return Header type
and also return the right status codes
Issue-ID: AAF-160
Change-Id: Ib260e5b8306b16069c57f6b83efcf401747ff2b6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Currently errors are being written out to the screen
Log them to a log file with the appropriate prefix instead
This uses the sms/log framework for logging
Issue-ID: AAF-159
Change-Id: Ib4f4dbc87fa4b1ee92ed1055de94f8324bd1a192
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Renamed config file to template file
Template file needs to be renamed on server side with
local customizations before server start
Issue-ID: AAF-157
Change-Id: I8a6004774fc8fabaa96d130f3d17c38f74453b11
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Unseal backend support is now added.
The quorum client will use this api to unseal/initialize the backend
storage service
Issue-ID: AAF-156
Change-Id: Ic2726e9a5ca351912a16c3ec911d03e400233277
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Role initialization should not depend on vault state
SMS start is independent of vault state
Any calls to SMS will fail since backend is not active yet
Issue-ID: AAF-155
Change-Id: I810eb145b4eab4717dede12e79880aced08caaa2
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Updating API documentation to add login, status and unseal end points
Issue-ID: AAF-121
Change-Id: I073d970aa779353a34236e61692ca67f380084b6
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding a framework for logging
We will add other logging integrations into this framework
Issue-ID: AAF-148
Change-Id: Ia16d1ddf4c24a5e2f957c429aff23970d081ccc4
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Using constant names instead of numbers
Removed an unused handler
Issue-ID: AAF-99
Change-Id: I16101576daee140acd40c3db906dd22289d71188
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Adding deletedomain implementation in vault.go
This is a silent command and will not return any error
if the domain to be deleted does not exist
Issue-ID: AAF-144
Change-Id: Iff97a1a5be7415cd0c7ebb2894f16348718e2839
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Initializing the pointer before using it in JSON
decode. This was not erroring out before, but this
is the right usage.
Issue-ID: AAF-145
Change-Id: I9a4f8adbe946e896112a8fbef2a84b790578f780
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
Server startup is silent when there are errors
Making server startup more informative in cases
where errors are encountered.
Issue-ID: AAF-146
Change-Id: Iec9a44d0d10813cf77aef69dbfd5fd50eea10dbc
Signed-off-by: Kiran Kamineni <kiran.k.kamineni@intel.com>
|
|
|
|
A GET HTTP request on domainname/secret will now list
all the secret names stored in that domain
The content of the secrets are not returned here.
Issue-ID: AAF-140
Change-Id: I0e0491f642e1ff82f11cb90a93df4a71393bc5ac
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Adding deletesecret functionality in backend and handler
Issue-ID: AAF-142
Change-Id: I09dfc78af72dff1d60ce25cc22053d72948f7433
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Check to see if approle is not already enabled
before enabling it. This prevents error messages on
the vault server side
Issue-ID: AAF-141
Change-Id: Ic5a0401f72385fb66d19d34da2ab38ea57ea44bc
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Completing getsecret backend implementation and handler call
Also adding in checktoken call before secret is read from vault
Issue-ID: AAF-137
Change-Id: Ia987af51c039290d1a06b7e2b4a8aa6a63e469c6
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Implementaion code added for createsecret method
Updated handler.go to check return value from createsecret
Added checktoken before write secret
Issue-ID: AAF-126
Change-Id: Ia46a0f1be5904072da74e04d123f88b09b46ed69
Signed-off-by: vamshi.nemalikonda <vn00480215@techmahindra.com>
|
|
Secret domain creation and secret creation is controlled
using approle authentication within the sms service
A temporary token with a short ttl is created and used
for adding domains and secrets into vault right now
Root token is used only once during the initial bring up
Also fixing unit test for backend.go
Issue-ID: AAF-99
Change-Id: I1352dadb32b54caaef86c7795601bf04d657dc3b
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Adding Unit Test case auth_test.go and auth_test.cert file for testing auth.go
Change-Id: I68611f2b17a9f37618cbc5ef8db11e6fb632b910
Issue-ID: AAF-122
Signed-off-by: Havaldar Girish <hg0071052@techmahindra.com>
|
|
Added unit tests for backend, vault, config and handler
Updated the makefile to call the tests when build target is invoked
Issue-ID: AAF-118
Change-Id: Id9b719a0e2b46070867a7fcbae34b83d19ef3282
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Auth package should return an error to the calling function
instead of erroring out with log.Fatal
Issue-ID: AAF-99
Change-Id: I9f1abd3710a85df85ac6e1d623dc16d77b977f1a
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
API Document was old
Updated with latest
Issue-ID: AAF-121
Change-Id: Ifea35d2aad6e7d52fe73d02984e6d11b6cd89831
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|
|
Adding a Makefile to allow easier builds and for jenkins integration
jenkins jjb will call make build, make deploy and so on
Makefile resides along with the main application go file
Issue-ID: AAF-117
Change-Id: Ibf4413a26d5572703bea122d3d0db83f4c35ae88
Signed-off-by: Kiran <kiran.k.kamineni@intel.com>
|