summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2020-05-29[SDNC] Use common aaf template in sdncKrzysztof Opasiak6-130/+15
Instead of copy-pasting code around aaf_agent usage let's use a common template that automates this. Issue-ID: AAF-1134 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I66886290a1a13ca1c1d924b4d1128adc293b301c
2020-05-29[COMMON] Fix certInitializer to use proper global valuesKrzysztof Opasiak2-7/+6
One of reasons why certInitializer is a proper chart that you need to put in your requirements.yaml is to avoid copy-pasting the same global values among different charts. As it turned out in tests we've been not "mangling" global values properly while creating $subchartDot. This patch fixes the issue. Issue-ID: AAF-1134 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I630154c4eedd7192ebb1881e5899c8df495d988b
2020-05-29[DMAAP] Use common aaf template in dmaap-bcKrzysztof Opasiak6-108/+18
Instead of copy-pasting code around aaf_agent usage let's use a common template that automates this. Issue-ID: AAF-1134 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I42bb5a8840701dfd99488df9913a5ffd01b17f64
2020-05-29[COMMON] Fix certInitializerKrzysztof Opasiak1-5/+4
By mistage aaf-agent-certs volume was created only if aaf_add_config option was set. This is incorrect as it should be created always. Issue-ID: AAF-1134 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I6172d2cbb781db4a26e09b7c4c324e985978b31e (cherry picked from commit 108483cae4831bb99e11d0c7df9dad8621b202ff)
2020-05-29[COMMON] Override truststore in aaf_agent imageKrzysztof Opasiak5-3/+2239
aaf_agent image currently contains hardcoded truststores in order to be able to connect to certman to retrieve certificate for given component. The goal is to remove hardcoded truststore from aaf_agent immage but first we need to be sure that all its users are able to provide the truststore to the pod as a configmap. Issue-ID: AAF-1134 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: Ibe9de6ad7264c05aeca2af858918fc2b4d3a772b (cherry picked from commit 95a5f84069703c583e49028b37003c73c03cc07d)
2020-05-28Merge "Update Portal Images for Role Mgt fix" into frankfurtSylvain Desbureaux3-3/+3
2020-05-28Merge "[COMMON] Allow to use ' in postgres passwords" into frankfurtSylvain Desbureaux1-4/+11
2020-05-27Update Portal Images for Role Mgt fixstatta3-3/+3
Issue-ID: PORTAL-894 Change-Id: I7cf521518a89be18443148b350ba3d1df1bfec06 Signed-off-by: statta <statta@research.att.com>
2020-05-27Merge "Naming micro-service - Helm chart values updates." into frankfurtSylvain Desbureaux2-3/+17
2020-05-27Merge "[POLICY] frankfurt RC2 images" into frankfurtSylvain Desbureaux10-11/+11
2020-05-27Merge "Upgrade refrepo to 1.5.2" into frankfurtSylvain Desbureaux1-1/+1
2020-05-27Merge "[so][msb] Update MSB url to match with its certificate" into frankfurtSylvain Desbureaux4-5/+5
2020-05-27Merge "Set certificate SAN as msb-iag" into frankfurtSylvain Desbureaux4-18/+67
2020-05-27Merge "the final docker release for R6" into frankfurtSylvain Desbureaux2-2/+2
2020-05-27Upgrade refrepo to 1.5.2Bogumil Zebek1-1/+1
Issue-ID: VNFSDK-577 Signed-off-by: Zebek Bogumil <bogumil.zebek@nokia.com> Change-Id: I64cb933fe5d0f721221c13f5b5271d2f460f021b
2020-05-26[COMMON] Allow to use ' in postgres passwordsKrzysztof Opasiak1-4/+11
' is one of characters that are placed in passwords by our default password generation algorith. As ' is a special character in SQL files we need to escape it before substituting environment variables in .sql file. Issue-ID: OOM-2317 Reported-by: Fiachra Corcoran <fiachra.corcoran@est.tech> Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I970eaf03fbcbfa8cb68df4a06ee27503d02d896a (cherry picked from commit b0a2d3b3628166dc2dba34a6984cc36b8f821fe0)
2020-05-26Naming micro-service - Helm chart values updates.bt29832-3/+17
Changes requested by Yuriy. Moved policy password to secrets. Issue-ID: CCSDK-1307 Signed-off-by: bt2983 <bt2983@att.com> Change-Id: Ibec80f147ad1f7623b5915afd0072f7add76ef9f (cherry picked from commit 91566f00ca5ad9d76ff658f05fc8596ab481287a)
2020-05-26[POLICY] frankfurt RC2 imagesjhh10-11/+11
Issue-ID: POLICY-2514 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Id2597d80cfd5c43992e8d0435a2aca4312a3c796 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2020-05-26Merge "Make Policy PAP exposition configurable" into frankfurtSylvain Desbureaux2-0/+11
2020-05-26Merge "Use non encrypted pwd for AAF communication" into frankfurtSylvain Desbureaux5-9/+8
2020-05-26[so][msb] Update MSB url to match with its certificateKonrad Bańka4-5/+5
Change tested on so-openstack-adapter but it should impact each subcomponent the same way. Issue-ID: MSB-467 Signed-off-by: Konrad Bańka <k.banka@samsung.com> Change-Id: I3f2ffef25b614701b23aeb9b248db24eee671188 (cherry picked from commit 9755aadf7f86d65db50c3193b984c8f76536c54f)
2020-05-26Set certificate SAN as msb-iagHuabing Zhao4-18/+67
Also add helm certificate to be used within deployments. Issue-ID: MSB-467 Signed-off-by: Huabing Zhao <zhao.huabing@zte.com.cn> Signed-off-by: Konrad Bańka <k.banka@samsung.com> Change-Id: I1dabc31275edebd4a01be658e462a7d45497ce46 (cherry picked from commit 88cf4965828fa7f17e413a4465844e200d1358df)
2020-05-25Merge "Fix policy api credentials for oof in oom" into frankfurtKrzysztof Opasiak1-4/+4
2020-05-25Merge "Update oof so callback credentials" into frankfurtKrzysztof Opasiak3-2/+17
2020-05-25Merge "Naming micro-service - Helm chart values updates." into frankfurtSylvain Desbureaux1-1/+1
2020-05-23the final docker release for R6Taka Cho2-2/+2
the final docker release for R6 Issue-ID: APPC-1869 Change-Id: Ic16764a73e0cfafc4063048a94953878d900e5af Signed-off-by: Taka Cho <takamune.cho@att.com>
2020-05-22Naming micro-service - Helm chart values updates.bt29831-1/+1
Changes requested by Yuriy. Updated Policy URL. Issue-ID: CCSDK-1307 Signed-off-by: bt2983 <bt2983@att.com> Change-Id: I8880fdc5a3a3611f036b3277991c5880f250f3f7 (cherry picked from commit 06961eb7abf0b71206f414e8a2456e0801e32ed0)
2020-05-21Use non encrypted pwd for AAF communicationChrisC5-9/+8
Issue-ID: PORTAL-894 Signed-off-by: ChrisC <christophe.closset@intl.att.com> Change-Id: Ide962ac7f02d17e4386002a891ab0cf22f38f656 (cherry picked from commit 98e52d2277d7ecf8aa3ae6fcc2d7cb748f659cb6)
2020-05-21Fix internal uri to modifyConfigBrian Freeman1-1/+1
Issue-ID: APPC-1876 Change-Id: If958102c146b5a7b2724e5291ca0d86870ce7869 Signed-off-by: Brian Freeman <bf1936@att.com> (cherry picked from commit eaeafaa32c885c21bea8e1620585787e1bbe1dfd)
2020-05-21Make Policy PAP exposition configurableBruno Sakoto2-0/+11
Policy PAP endpoint exposition is made configurable using helm override values when deploying. Available options for service type are: * Cluster IP (default value) * Node Port (by overriding policy.pap.service.type value with NodePort) Issue-ID: POLICY-2514 Signed-off-by: Bruno Sakoto <bruno.sakoto@bell.ca> Change-Id: Ifc3ac09aeb9e8836c0ef15a8b5b60bd8e31dca03 (cherry picked from commit 425d5be006c212b3c02fb79405282e6148250eb2)
2020-05-20Fix policy api credentials for oof in oomvrvarma1-4/+4
Change-Id: I1be525c47862697aa26d757675a2933896e4e487 Signed-off-by: vrvarma <vikas.varma@att.com> Issue-ID: OPTFRA-750 (cherry picked from commit 7344c288f326851595ecd2971e91ea912a1853de)
2020-05-20Update oof so callback credentialsvrvarma3-2/+17
Update oof so callback credentials Change-Id: I210c1fe8f89a486a740449b641f8ff94fd1d3a8e Signed-off-by: vrvarma <vikas.varma@att.com> Issue-ID: OPTFRA-756 (cherry picked from commit 26dbd2bb64f6489259fc46174d39cd67b3397cc4)
2020-05-20Merge "add nssmf adpter endpoint and so infra endpoint, update the oof ↵Sylvain Desbureaux1-1/+5
endpoint" into frankfurt
2020-05-20Merge "[POLICY] Remove hardcoded credentials from policy-apex-pdp" into ↵Sylvain Desbureaux5-4/+64
frankfurt
2020-05-20add nssmf adpter endpoint and so infra endpoint, update the oof endpointhetengjiao1-1/+5
Issue-ID: SO-2921 Signed-off-by: hetengjiao <hetengjiao@chinamobile.com> Change-Id: I28524030291cac3b5e4b04221ee23b8354872d73 (cherry picked from commit d24e56cf8b21b7ccab8305977b558ae0d2740ff2)
2020-05-19Merge "Use SDC 1.6.5 containers" into frankfurtKrzysztof Opasiak4-7/+7
2020-05-19Merge "[AAF] Augment CPU limit to locate" into frankfurtKrzysztof Opasiak1-15/+15
2020-05-19[GENERIC] follow Frankfurt AAI/Robot branchesSylvain Desbureaux1-9/+9
Issue-ID: OOM-2406 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I83f3a48450d1c76de9b2dcf9400f8450a5d2d689 (cherry picked from commit 802d528a9ffa56dde7db0a8d6dd613f491188289)
2020-05-19[AAF] Augment CPU limit to locateSylvain Desbureaux1-15/+15
AAF locate may be long to start because of too small CPU limits. Augmenting them in order to have a more reliable behavior Issue-ID: OOM-2411 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Iefcd79ee66be56570a5df83111cbb6559346371e (cherry picked from commit 4aff7f0653121f7114d42eec3d09531ac13c1e27)
2020-05-18Merge "deploy.sh does not work on Mac os x because untar directory is ↵Krzysztof Opasiak1-3/+3
created before helm fetch" into frankfurt
2020-05-18[ESR] Force esr-server to run as non-rootKrzysztof Opasiak1-0/+29
Use securityContext to run esr-server as a non-root user. Unfortunately esr-server docker is built in a way that doesn't allow use to just change the user and continue using it. We need to make sure that conf dir is writable for this user because this docker modifies its configuration files from docker_entrypoint.sh Issue-ID: AAI-2896 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: If6eba45c9571753fa9e5ce4f386c2e391788c734 (cherry picked from commit 1e6740ddde8f7040b204e63bc457c1f6bea90523)
2020-05-18Update git submodulesLucjan Bryndza1-0/+0
* Update kubernetes/robot from branch 'frankfurt' to fc6143a31ef4a55d649f8e5384f661671274331c - Replace config using ingress host port template Depending on the ingress robot configuration host and port template should choose ingress host and port or direct cluster host and port Change-Id: If1ba88c2fa14ca5d5dd21e559f08fb3fcc815792 Signed-off-by: Lucjan Bryndza <l.bryndza@samsung.com> Issue-ID: OOM-2341 Signed-off-by: Lucjan Bryndza <l.bryndza@samsung.com> (cherry picked from commit 77f1d25542848d7a5fd32f57436c9f413e0a5919) - Fix missing template arguments Fix missing template arguments for robot template ingress script Issue-ID: OOM-2341 Change-Id: I93386cc010830cad3e9a05875f18d01c0a01b0e5 Signed-off-by: Lucjan Bryndza <l.bryndza@samsung.com> (cherry picked from commit 84767148fb032832adfe4b85f2b6bcf311525bdb)
2020-05-18Merge "[COMMON] Use "" instead of {} as a default value to avoid warning" ↵Sylvain Desbureaux1-1/+1
into frankfurt
2020-05-18Merge "[COMMON] Enable password generation in postgres" into frankfurtSylvain Desbureaux1-3/+3
2020-05-18deploy.sh does not work on Mac os x because untar directory is created ↵yoonsoonjahng1-3/+3
before helm fetch Issue-ID: OOM-2407 Signed-off-by: yoonsoonjahng <yoonsoon.jahng@yoppworks.com> Change-Id: I20e6169bd8c7794db4c6972bfd7bca4f0bf6a910 Change-Id: I01f8c26539e6ceb828a73458d74a8185e9a5081f Signed-off-by: yoonsoonjahng <yoonsoon.jahng@yoppworks.com> (cherry picked from commit 30ccad50e3af3cb5eea5bc88855f9bbb35682d02)
2020-05-18[ESR] Force esr-gui to run as non-rootKrzysztof Opasiak1-2/+31
Use securityContext to run esr-gui as a non-root user. Unfortunately esr-gui docker is built in a way that doesn't allow use to just change the user and continue using it. We need to copy tomcat directory to volume to make sure that tomcat is able to create additional directories after it starts. Issue-ID: AAI-2896 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: Iae060ea691ce492e8ccb2d540a48c085c0fd66ae (cherry picked from commit 4c62d4db068a64494fd19870977c3eaa0b63c670)
2020-05-18[COMMON] Enable password generation in postgresKrzysztof Opasiak1-3/+3
Issue-ID: OOM-2250 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: Ibad1e8d523d2a182d2f43e1ae2b46fff07c11e01 (cherry picked from commit b51ee37db0bf164fb24961c5f1146e22ea245dfa)
2020-05-18[COMMON] Use "" instead of {} as a default value to avoid warningKrzysztof Opasiak1-1/+1
After we upgraded our helm version we started getting below issues with emails: Warning: Merging destination map for chart 'curator'. Overwriting table item 'image', with non table value: onap/sdnc-image:1.8.2 To fix this let's just use "" instead of () for our daily operations. Issue-ID: OOM-2412 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I5f2c215c281036a7eb921d6a805527c807a4aca9 (cherry picked from commit 8953675506f4b3807502a3be73b846ab5fe79c67)
2020-05-18Merge "Fix: make all - returns multiple warnings" into frankfurtSylvain Desbureaux1-1/+1
2020-05-16Update processor-db config with correct configurationKonrad Bańka4-17/+17
Processor-db configuration allows CDS to access data in sdnctl DB without enforcing users to provide such data in CBA. This entry is now corrected allowing proper work for this feature. Currently access to sdnctl DB is provided via root DB access, but this should be further corrected in future. Also removed unnecessary secret metaconfig - 'cds-db-root-pass'. Issue-ID: CCSDK-2373 Signed-off-by: Konrad Bańka <k.banka@samsung.com> Change-Id: Idf452fe5d42862e507b2d981af58b96931ee287c (cherry picked from commit 031bdb7e4d16288782797ff97333842e6a3f9623)