diff options
| author |   Michal Banka <michal.banka@nokia.com> | 2020-06-03 10:51:51 +0200 |
|---|---|---|
| committer | Michal Banka <michal.banka@nokia.com> | 2020-06-04 13:08:34 +0200 |
| commit | b06189e0c1f15237519d3727aeab007fadd952cb (patch) | |
| tree | eb9765ace8e647a21cf8ec8eccbebfca53193f58 /sanitycheck/tools | |
| parent | e775c31a8b8efd55796cdf4fa049e72587ea6088 (diff) | |
Add deployment for fetching certs from CertService
Change-Id: Icb59854a88e83b799781c227e465bfb98ed502b6
Signed-off-by: Michal Banka <michal.banka@nokia.com>
Issue-ID: INT-1612
Diffstat (limited to 'sanitycheck/tools')
| -rw-r--r-- | sanitycheck/tools/README.md | 93 | ||||
| -rw-r--r-- | sanitycheck/tools/docker-compose.yml | 71 |
2 files changed, 0 insertions, 164 deletions
diff --git a/sanitycheck/tools/README.md b/sanitycheck/tools/README.md deleted file mode 100644 index 2d6b3d0..0000000 --- a/sanitycheck/tools/README.md +++ /dev/null @@ -1,93 +0,0 @@ -Standalone PNF Simulator configuration for HTTPS communication with VES ------------------------- - -### Description - -docker-compose.yml prepares PNF simulator container for HTTPS communication with VES. - -When docker-compose starts certs-init container fills connected volume with certificates, truststores, keystores, -passwords etc. Next pnf-simulator container starts and connects to the same volume. On startup it should read password -values from proper files and set them in system environment variables. With these variables and files in volume -application is ready to work on HTTPS. - -### Prerequisites - -1. certs-init container works with external AAF on cloud. Due to that fact it must have set correct IPs to workers that -has access to AAF. In docker-compose.yml fields with mentioned IPs are: - - * aaf-locate.onap - * aaf-cm.onap - * aaf-service.onap - -### Start - -**ATTENTION** - -Proper IPs to AAF must be set in the docker-compose.yml before start (as described in prerequisites)! - -``` -docker-compose up -``` - -### Send event - -**ATTENTION** - -``sanitycheck/events/eventToVes.json`` file which is request for sending event to VES must have correct ``vesServerURL`` -field before sending event. -IP of ``vesServerURL`` should be the same as given in docker-compose.yml in ``aaf-locate.onap`` field. -To use secured connection remember about setting protocol to https:// and port to proper secured port of VES. - -To send event from PNF simulator to VES use this command from ``pnf-simulator/sanitycheck`` directory: - -```` -make generate-event -```` - -Sample ``sanitycheck/events/eventToVes.json`` file content is: - -```json -{ - "vesServerUrl": "https://10.183.35.177:30417/eventListener/v7", - "event": { - "event": { - "commonEventHeader": { - "version": "4.0.1", - "vesEventListenerVersion": "7.0.1", - "domain": "fault", - "eventName": "Fault_Vscf:Acs-Ericcson_PilotNumberPoolExhaustion", - "eventId": "fault0000245", - "sequence": 1, - "priority": "High", - "reportingEntityId": "cc305d54-75b4-431b-adb2-eb6b9e541234", - "reportingEntityName": "ibcx0001vm002oam001", - "sourceId": "de305d54-75b4-431b-adb2-eb6b9e546014", - "sourceName": "scfx0001vm002cap001", - "nfVendorName": "Ericsson", - "nfNamingCode": "scfx", - "nfcNamingCode": "ssc", - "startEpochMicrosec": 1413378172000000, - "lastEpochMicrosec": 1413378172000000, - "timeZoneOffset": "UTC-05:30" - }, - "faultFields": { - "faultFieldsVersion": "4.0", - "alarmCondition": "PilotNumberPoolExhaustion", - "eventSourceType": "other", - "specificProblem": "Calls cannot complete - pilot numbers are unavailable", - "eventSeverity": "CRITICAL", - "vfStatus": "Active", - "alarmAdditionalInformation": { - "PilotNumberPoolSize": "1000" - } - } - } - } -} - -``` - -### Stop -``` -docker-compose down -```
\ No newline at end of file diff --git a/sanitycheck/tools/docker-compose.yml b/sanitycheck/tools/docker-compose.yml deleted file mode 100644 index 3016189..0000000 --- a/sanitycheck/tools/docker-compose.yml +++ /dev/null @@ -1,71 +0,0 @@ -version: '3' - -networks: - tls-init-network: - -volumes: - certs-volume: - -services: - certs-init: - image: nexus3.onap.org:10001/onap/org.onap.dcaegen2.deployments.tls-init-container:2.1.0 - extra_hosts: - #set worker IP with access to AAF - aaf-locate.onap: 10.183.35.177 - aaf-cm.onap: 10.183.35.177 - aaf-service.onap: 10.183.35.177 - environment: - - aaf_locate_url=https://aaf-locate.onap:31111 - - aaf_url_cm=https://aaf-cm.onap:31114 - - aaf_url=https://aaf-service.onap:31110 - networks: - - tls-init-network - volumes: - - certs-volume:/opt/app/osaaf - mongo: - image: mongo - restart: always - environment: - MONGO_INITDB_ROOT_USERNAME: root - MONGO_INITDB_ROOT_PASSWORD: zXcVbN123! - MONGO_INITDB_DATABASE: pnf_simulator - networks: - - tls-init-network - volumes: - - ../../pnfsimulator/db:/docker-entrypoint-initdb.d - ports: - - "27017:27017" - - mongo-express: - image: mongo-express - restart: always - ports: - - 8081:8081 - networks: - - tls-init-network - environment: - ME_CONFIG_MONGODB_ADMINUSERNAME: root - ME_CONFIG_MONGODB_ADMINPASSWORD: zXcVbN123! - - pnf-simulator: - image: nexus3.onap.org:10001/onap/org.onap.integration.simulators.pnfsimulator - ports: - - "5000:5000" - command: bash -c " - while [[ $$(ls -1 /app/store | wc -l) != '10' ]]; do echo 'Waiting for certs...'; sleep 3; done - && export CLIENT_CERT_PASS=$$(cat /app/store/p12.pass) - && export TRUST_CERT_PASS=$$(cat /app/store/trust.pass) - && java -Dspring.config.location=file:/app/application.properties -cp /app/libs/*:/app/pnf-simulator.jar org.onap.pnfsimulator.Main - " - volumes: - - ../../pnfsimulator/logs:/var/log - - ../../pnfsimulator/templates:/app/templates - - ../../pnfsimulator/src/main/resources/application.properties:/app/application.properties - - certs-volume:/app/store - networks: - - tls-init-network - restart: on-failure - depends_on: - - certs-init - - mongo - - mongo-express |