summaryrefslogtreecommitdiffstats
path: root/kubernetes/portal/charts/portal-sdk/resources/config
diff options
context:
space:
mode:
authorChrisC <christophe.closset@intl.att.com>2020-05-04 12:43:34 +0200
committerChrisC <christophe.closset@intl.att.com>2020-05-04 12:43:34 +0200
commit53929946b4f676604396f64e3f2fb793cdbc450e (patch)
tree2f4512260cb09c4a07c47cbc18f8280e73968ae6 /kubernetes/portal/charts/portal-sdk/resources/config
parentf69c491ed06b017fe439ff8ff48ac896e93d0f52 (diff)
Portal AAF REST API perm fixes for Roles
Fixed AAF REST API creds : reuse of X509 identity the use of javax.net.ssl variables overrides basic auth identity the fake password must be slightly updated in order to pass current decryption method in portal code Issue-ID: PORTAL-875 Change-Id: I0497df70f0ff9a30e4ccd634aff67467f5ae04df Signed-off-by: ChrisC <christophe.closset@intl.att.com>
Diffstat (limited to 'kubernetes/portal/charts/portal-sdk/resources/config')
-rwxr-xr-xkubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties17
1 files changed, 8 insertions, 9 deletions
diff --git a/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties b/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties
index 063ba3d122..45ea9b70ca 100755
--- a/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties
+++ b/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties
@@ -82,13 +82,12 @@ authenticate_user_server=http://{{.Values.global.portalHostName}}:8383/openid-co
#cookie domain
cookie_domain = onap.org
-{{- if .Values.global.aafEnabled }}
-# External Access System Basic Auth Credentials & Rest endpoint(These credentials doesn't work as these are place holders for now)
-ext_central_access_user_name = aaf_admin@people.osaaf.org
-ext_central_access_password = thiswillbereplacedatruntime
-ext_central_access_url = {{ .Values.aafURL }}/authz/
-ext_central_access_user_domain = @people.osaaf.org
-
# External Central Auth system access
-remote_centralized_system_access = true
-{{- end }} \ No newline at end of file
+remote_centralized_system_access = {{.Values.global.aafEnabled}}
+
+# External Access System Basic Auth Credentials & Rest endpoint
+# The credentials are placeholders as these are replaced by AAF X509 identity at runtime
+ext_central_access_user_name = portal@portal.onap.org
+ext_central_access_password = thisfakepasswordwillbereplacedbythex509cert
+ext_central_access_url = {{.Values.aafURL}}
+ext_central_access_user_domain = @people.osaaf.org \ No newline at end of file