From 54668628a12b389d40853c58330977a70bd4795d Mon Sep 17 00:00:00 2001 From: Jimmy Forsyth Date: Mon, 5 Aug 2019 12:01:16 -0400 Subject: Disable non-workflow mS in helm charts Issue-ID: AAI-2558 Signed-off-by: Jimmy Forsyth Change-Id: I06b4049b2e5c0bae734b4619abd6298a99ae2a11 --- .../rproxy/config/auth/uri-authorization.json | 11 +++++ .../resources/rproxy/config/cadi.properties | 39 ++++++++++++++++++ .../rproxy/config/forward-proxy.properties | 4 ++ .../resources/rproxy/config/logback-spring.xml | 48 ++++++++++++++++++++++ .../rproxy/config/primary-service.properties | 3 ++ .../resources/rproxy/config/readme.txt | 1 + .../rproxy/config/reverse-proxy.properties | 1 + 7 files changed, 107 insertions(+) create mode 100644 components/aai-search-data/resources/rproxy/config/auth/uri-authorization.json create mode 100644 components/aai-search-data/resources/rproxy/config/cadi.properties create mode 100644 components/aai-search-data/resources/rproxy/config/forward-proxy.properties create mode 100644 components/aai-search-data/resources/rproxy/config/logback-spring.xml create mode 100644 components/aai-search-data/resources/rproxy/config/primary-service.properties create mode 100644 components/aai-search-data/resources/rproxy/config/readme.txt create mode 100644 components/aai-search-data/resources/rproxy/config/reverse-proxy.properties (limited to 'components/aai-search-data/resources/rproxy') diff --git a/components/aai-search-data/resources/rproxy/config/auth/uri-authorization.json b/components/aai-search-data/resources/rproxy/config/auth/uri-authorization.json new file mode 100644 index 0000000..595d484 --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/auth/uri-authorization.json @@ -0,0 +1,11 @@ +[ + { + "uri": "\/services\/search-data-service\/.*", + "method": "GET|PUT|POST|DELETE", + "permissions": [ + "org\\.onap\\.aai\\.resources\\|\\*\\|.*" + ] + } + + +] diff --git a/components/aai-search-data/resources/rproxy/config/cadi.properties b/components/aai-search-data/resources/rproxy/config/cadi.properties new file mode 100644 index 0000000..c2b628d --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/cadi.properties @@ -0,0 +1,39 @@ +# This is a normal Java Properties File +# Comments are with Pound Signs at beginning of lines, +# and multi-line expression of properties can be obtained by backslash at end of line + +#hostname is used for local testing where you may have to set your hostname to **.att.com or **.sbc.com. The example given below +#will allow for an ATT cross domain cookie to be used for GLO. If you are running on Windows corp machine, your machine name +#may be used automatically by cadi. However, if it is not, you will need to use hostname=mywebserver.att.com and add mywebserver.att.com +#to your hosts file on your machine. +#hostname=test.aic.cip.att.com + +cadi_loglevel=DEBUG + +# OAuth2 +aaf_oauth2_token_url=https://AAF_LOCATE_URL/AAF_NS.token:2.0/token +aaf_oauth2_introspect_url=https://AAF_LOCATE_URL/AAF_NS.introspect:2.0/introspect + +cadi_latitude=37.78187 +cadi_longitude=-122.26147 + +# Locate URL (which AAF Env) +aaf_locate_url=https://aaf-locate.{{.Release.Namespace}}:8095 + +# AAF URL +aaf_url=https://AAF_LOCATE_URL/AAF_NS.service:2.0 + +cadi_keyfile=/opt/app/rproxy/config/security/keyfile +cadi_keystore=/opt/app/rproxy/config/auth/org.onap.aai.p12 +cadi_keystore_password=enc:383RDJRFA6yQz9AOxUxC1iIg3xTJXityw05MswnpnEtelRQy2D4r5INQjrea7GTV +cadi_alias=aai@aai.onap.org +cadi_truststore=/opt/app/rproxy/config/auth/tomcat_keystore +cadi_truststore_password=OBF:1y0q1uvc1uum1uvg1pil1pjl1uuq1uvk1uuu1y10 + +aaf_env=DEV + +aaf_id=demo@people.osaaf.org +aaf_password=enc:92w4px0y_rrm265LXLpw58QnNPgDXykyA1YTrflbAKz + +# This is a colon separated list of client cert issuers +cadi_x509_issuers=CN=ONAP, OU=ONAP, O=ONAP, L=Ottawa, ST=Ontario, C=CA diff --git a/components/aai-search-data/resources/rproxy/config/forward-proxy.properties b/components/aai-search-data/resources/rproxy/config/forward-proxy.properties new file mode 100644 index 0000000..55a9b48 --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/forward-proxy.properties @@ -0,0 +1,4 @@ +forward-proxy.protocol = https +forward-proxy.host = localhost +forward-proxy.port = 10680 +forward-proxy.cacheurl = /credential-cache diff --git a/components/aai-search-data/resources/rproxy/config/logback-spring.xml b/components/aai-search-data/resources/rproxy/config/logback-spring.xml new file mode 100644 index 0000000..289fe75 --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/logback-spring.xml @@ -0,0 +1,48 @@ + + + + + + + + + + %d{ISO8601} %-5level [%t] %C{1.}: %msg%n%throwable + + + + + + ${LOGS}/${FILEPREFIX}.log + + %d %p %C{1.} [%t] %m%n + + + + + ${LOGS}/archived/${FILEPREFIX}-%d{yyyy-MM-dd}.%i.log + + + 10MB + + + + + + + + + + + + + + + + + diff --git a/components/aai-search-data/resources/rproxy/config/primary-service.properties b/components/aai-search-data/resources/rproxy/config/primary-service.properties new file mode 100644 index 0000000..5fddcb2 --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/primary-service.properties @@ -0,0 +1,3 @@ +primary-service.protocol = https +primary-service.host = localhost +primary-service.port = 9509 diff --git a/components/aai-search-data/resources/rproxy/config/readme.txt b/components/aai-search-data/resources/rproxy/config/readme.txt new file mode 100644 index 0000000..79cf29e --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/readme.txt @@ -0,0 +1 @@ +Relevant configuration files need to be copied here to successfully run this service locally. \ No newline at end of file diff --git a/components/aai-search-data/resources/rproxy/config/reverse-proxy.properties b/components/aai-search-data/resources/rproxy/config/reverse-proxy.properties new file mode 100644 index 0000000..8d46e1f --- /dev/null +++ b/components/aai-search-data/resources/rproxy/config/reverse-proxy.properties @@ -0,0 +1 @@ +transactionid.header.name=X-TransactionId \ No newline at end of file -- cgit 1.2.3-korg