Age | Commit message (Collapse) | Author | Files | Lines |
|
DCAEGEN2-853:
- stop reporting the absence of policies or updates
as error - this is an expected result == INFO or WARNING
DCAEGEN2-930:
- configurable timeouts for http requests from policy-handler
- added configurable pinging on the web-socket to PDP
Change-Id: I5104eb6c7c044a3bdaf111839593a7e96fa04fa2
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-853
Issue-ID: DCAEGEN2-930
|
|
Also extend inventory timeout to 1800s
Issue-ID: DCAEGEN2-796
Change-Id: Idf687ac2035bedd357caf6245db4292d3a19cbd1
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
- made consul-url configurable thru env var or local config
Change-Id: I7a37ab5b0104e46a83fea63e33e0eb774ddc96e9
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-822
|
|
- tls on web-socket - try to recover not as often on tls failure
Change-Id: Ibc02102fee5ee02567a7ffe90e98accf33f59bdc
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-611
|
|
- set up tls on policy-handler
- policy-handler expecting the deployment process
to mount certs at /opt/app/policy_handler/etc/tls/certs/
= cert_directory : /opt/app/policy_handler/etc/tls/certs/
= cacert : cacert.pem
- new optional fields tls_ca_mode in config on consul that
specify where to find the cacert.pem for tls per each https/web-socket
values are:
"cert_directory" - use the cacert.pem stored locally in cert_directory
this is the default if cacert.pem file is found
"os_ca_bundle" - use the public ca_bundle provided by linux system.
this is the default if cacert.pem file not found
"do_not_verify" - special hack to turn off the verification by cacert
and hostname
- config on consul now has 2 new fields for policy_engine
= "tls_ca_mode" : "cert_directory"
= "tls_wss_ca_mode" : "cert_directory"
- config on consul now has 1 new field for deploy_handler
= "tls_ca_mode" : "cert_directory"
Change-Id: Ida2d058cad93ddd1a583e1922bc5dc33c145fcba
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-611
|
|
Change-Id: I1a3f2b9d13cc0e7a8889bf25b34bfd1a167d178e
Issue-ID: DCAEGEN2-591
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
- new interval for reconfigure of policy-handler
Change-Id: Ice1d944f7772ecc06312715b3009c9b0e03413a2
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-470
|
|
Issue-ID: DCAEGEN2-695
Change-Id: I22fe625075f01bbc4769d8856b000f558e4e8252
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
- pass cfy_tenant_name in query from policy-handler
to deployment-handler
- new config "query":{"cfy_tenant_name": "default_tenant"}
- limits the single policy-handler to a single cfy_tenant_name
in cloudify under the deployment-handler
Change-Id: I75a79a769a15a53f000c907ed6ab88778b0080a4
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-704
|
|
- fix for removing the non-matching policy
Change-Id: Ia7b298145722f308f8b466e235b2db45c4ba9c00
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-492
|
|
- inputs:
= removed scope_prefixes as obsolete with 4.0.0
= removed catch_up.max_skips - obsolete with 4.0.0
= added max_msg_length_mb for data segmentation from
policy-handler to deployment handler
Change-Id: I555fdbb8a765d77c2cd0437e8729c0249f8062e3
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-492
|
|
Issue-ID: DCAEGEN2-649
Change-Id: I343e12aaa952470e399b5e374d7c3b50e6733092
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
Change-Id: Ib03bbe4ff5f99398586c1a2ef549ce93c03eb6db
Issue-ID: DCAEGEN2-504
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
- no change of functionality or API
- cleaning sonar smells
Change-Id: I2bfdc969f5770f24a950bf4b36a1eaf7bb0cf6d0
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-515
|
|
- migrated from python 2.7 to 3.6
- brought up the latest versions of dependencies
-- Cherrypy 15.0.0, requests 2.18.4, websocket-client 0.48.0
Change-Id: I93cfdac202df88a93f511a34329b6e5b75cd45e3
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-515
|
|
- fix of unit tests
- turned off unit-test on policy-handler to avoid
get /gc/stats after shutdown of the web-server
Change-Id: I8f018d3d7c070d68b08387e601064f9aa292d389
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-532
|
|
- log process memory
- in search of the memory leak that is falsely reported
by docker stats, the following runtime logging was added
= process_memory - rss and other memory of the current process
= virtual_memory - the memory info of the whole system
= thread_stacks - the active threads with the full stack on each
Change-Id: I69f4f5d03a9a0c13460766fe00bf5d4816b27f59
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-514
|
|
- added try-except for top level Exception into all threads
of policy-handler to avoid losing the thread and tracking
the unexpected crashes
Change-Id: I1f244f537de19aa34eeaefac7ada5458720fa523
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-483
|
|
- removed v from 'v2.4.2' to have '2.4.2' for default version
of the policy-handler version
Change-Id: I26152ad894d7e91c9be5444e434b2866d312df9a
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-495
|
|
Change-Id: Ie41690c9621e31b05adc5a2518510157ffe8acff
Signed-off-by: Alex Shatov <alexs@att.com>
Issue-ID: DCAEGEN2-472
|
|
Change-Id: I3ee1b0bf99091a6d007574ed0df9af246a58a734
Issue-ID: DCAEGEN2-447
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
Change-Id: Ib2a21727513e3e9b48537e011a0d564930472436
Issue-ID: DCAEGEN2-411
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|
|
Change-Id: I6224d9aa5809f373b74079d17b9bc865dd5923bf
Issue-ID: DCAEGEN2-411
Signed-off-by: Jack Lucas <jflucas@research.att.com>
|