| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
- make roles in serviceAccount chart configurable via role.read and role.create
- change declaration of roles to work in environments with more restrictive RBAC rules
Issue-ID: OOM-3323
Change-Id: I25ddd1a7cf26047b9098de03bbb8598dfd367133
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
Issue-ID: OOM-3315
Change-Id: I1d6251e7c6724addca81167f9f4d184c291340c3
Signed-off-by: Aditi Shukla <aditi.shukla@t-systems.com>
|
|
|
|
|
|
Add temporary volumes to overcome read-only filesystem restrictions
Issue-ID: OOM-3318
Change-Id: Ie09c952d8d0a850bfbc6c1e6f17341face9d946a
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
The image versions in policy values.yaml files have been updated
*** This commit is generated by a PF release script ***
Issue-ID: POLICY-5166
Change-Id: I1e81d5bbee812f584cd8ee769f95f9534a5cef9d
Signed-off-by: rameshiyer27 <ramesh.murugan.iyer@est.tech>
|
|
|
|
|
|
Correct the security settings and improve templates.
Issue-ID: OOM-3288
Change-Id: Idf1d59b33bea4d27a523d990b218b2e36ffb0348
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- update graphadmin image (1.14.7 -> 1.15.1)
- update babel image (1.13.3 -> 1.13.4)
- update resources image (1.14.7 -> 1.15.1)
- make logging partially configurable and less verbose
Issue-ID: AAI-4047
Change-Id: I78695dfccab88244bf119a4fc8877c1b9ddf90c2
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
Update latest cps-and-ncmp image version
- it will fix cps rolling upgrade issue
Issue-ID: OOM-3321
Change-Id: I56c34400dc73c71b936a51260efd241024abbeaa
Signed-off-by: rajesh.kumar <rk00747546@techmahindra.com>
|
|
Add SecurityContext to deployments
Issue-ID: OOM-3318
Change-Id: Ie4cfa869628d030c2047f3dd954d77786ab88c53
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
Replace wiki.onap.org links with altassian ones.
Issue-ID: OOM-3317
Change-Id: I09227ca0ac1d536b7e0507b60d15df6f0ff00480
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
Add securityContext settings to resolve kyverno policy violations
Fix Jira Links in all release notes.
Issue-ID: OOM-3314
Change-Id: Ief20d42f2e4825754bf8d1a142665c7dd176a1d9
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- Kyverno fixes
- make Keycloak settings configurable via `global`
Issue-ID: PORTALNG-125
Change-Id: I827527d4fe2dcadf79ed79591c81dbe83169b2cb
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
- [resources,traversal,graphadmin] use 1.14.7 release images that are based on Java 11
- [babel] add metrics and tracing
- [babel] allow remote profiling and debugging
- [graphadmin] make graphadmin chart Kyverno compliant
- [graphadmin] replace fixed initialDelaySeconds wait invertal with dynamic startup probe
- [graphadmin] use actuator endpoint for liveness and readiness probe. Actuator still uses the old echo probe in the background
- [graphadmin] remove janusgraph-cached.properties since it effectively cannot be used
- [graphadmin] clean up janusgraph-realtime.properties
- [graphadmin] use common functions for readiness probe
- [graphadmin] remove LOCAL_USER_ID and LOCAL_GROUP_ID environment variables since they are not used (anymore)
- [modelloader] add metrics monitoring via prometheus
- [modelloader] allow remote profiling and debugging
- [sparky-be] use latest release image (2.0.5)
Other
- [sdc-be] declare ServiceMonitor to enable metrics monitoring via Prometheus
Issue-ID: AAI-3986
Change-Id: Ifbd52d0d019d34596f6f824aa940e9b7993336ab
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
|
|
- add securityContext settings to Operator and strimzi resources
- add resources settings
- update documents to use a new strimzi-kafka operator version in Oslo
Issue-ID: OOM-3311
Change-Id: Ie6e4c30495e500781d898aed31bd74f2f4f3c708
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
|
|
|
|
Update CPS helm charts for newly added configurations.
Issue-ID: OOM-3313
Change-Id: I56c34400dc73c71b936a51260efd240904bdaeae
Signed-off-by: rajesh.kumar <rk00747546@techmahindra.com>
|
|
Charts will allow mariadb or postgres
Allow configuration of db choice globally
Deleted jobs that aren't needed
Altered db migrator script
Allow SASL config in drools
Drools chart fixed
Removed readiness jobs for kafka
Exposed more config for drools
Issue-ID: POLICY-4943
Change-Id: I26c4a7c1adc2d615602e3e6495ecedfb017ef39e
Signed-off-by: saul.gill <saul.gill@est.tech>
|
|
- this improves support for making the pod filesystem read-only (of ves-collector)
Issue-ID: DCAEGEN2-3415
Change-Id: Ic7413b2fd589d095b69eec0c88693b2db4e3c13c
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
|
|
add resources entry to the _cassOp template
add resources setting to the cassandra instance
add additional settings to improve the performance
Issue-ID: OOM-3312
Change-Id: Iaa18e7c55a933f2403eff2dd93cb36f9786b3a41
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
|
|
- 1.14.5 images for resources, traversal and graphadmin with Janusgraph update (0.5.3 -> 0.6.0)
- cleanup janusgraph-realtime.properties file since the 'cassandra' storage.backend option is not supported anymore
- use more descriptive port names for schema-service
- reduce terminationGracePeriodSeconds of pods to enable quicker deployment
- declare pod revisionHistoryLimit for all components
- make root log level configurable for all components (via log.level.root)
Issue-ID: AAI-3950
Change-Id: I6221963139fcf4b748167940b6e59367661ba1e5
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
|
|
Modify llm-adaptation port
Issue-ID: USECASEUI-838
Change-Id: I5ee51936fe19563f7eec8fb1eae75247eea8a687
Signed-off-by: kaixiliu <liukaixi@chinamobile.com>
|
|
|
|
- make pod/containerSecurityContext settings more configurable
in _pod.tpl
- fix MariaDB statefulset
- Fix temporal statefulset to comply with security rules
- Set timescaleDB via RepositoryGenerator
Issue-ID: OOM-3310
Change-Id: I870f1e835020c2b30225741e700d1a6abfba8ad3
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
Issue-ID: DOC-826
Change-Id: Ifc4a02697760b228029363d9362cb12070efd198
Signed-off-by: thmsdt <thomas.kulik@telekom.de>
|
|
change default settings
Issue-ID: OOM-3306
Change-Id: I5600dce6d4828323a0c00107a967cfdaf71c07b5
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- archive charts, which are not maintained anymore
- archive subcharts in SDNC, MSB, DCAEGEN2-SERVICES
- Cleanup environment and override files
Issue-ID: OOM-3309
Issue-ID: ONAPARC-805
Change-Id: If19a807fefa574ceb9b90ac1eb84d9642729323d
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
|
|
|
|
|
|
|
|
Add configuration file for llm adaptation
Issue-ID: USECASEUI-838
Change-Id: Ib25a7047712d753b4be8fa39733001f02bc196aa
Signed-off-by: kaixiliu <liukaixi@chinamobile.com>
|
|
- Some fixes for the client creation within the REALM.
- Addition function for SMTP server configuration
- README additions
- Kyverno policy violation fixes
Issue-ID: OOM-3306
Change-Id: I6df34be566257f40795e454a6a81b4743cb8edb1
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- solve actual findings during tests with kyverno policies
- synchronize headers
Issue-ID: OOM-3288
Issue-ID: OOM-3296
Change-Id: Ia7e7daa8864069493e09dd6511825aa939c5eeaf
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- Add "archive" folder for removed policy-gui charts
- Update all deployments/jobs to fix policies
- Correct KafkaUser definition to avoid deprecated attribute
- update xacml-pdp deployment to work with readOnlyFilesystem setting
Issue-ID: OOM-3307
Change-Id: I579062c1c49923666c1d836f7324c8bbd7b88695
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- policy-gui is going into unmaintained state.
Issue-ID: POLICY-5049
Change-Id: Ic83ab19a37d1c3e7007975b27ca150c4794a86e9
Signed-off-by: adheli.tavares <adheli.tavares@est.tech>
|
|
|
|
new image only supports "sh", therefor the job needs to be fixed
Issue-ID: AAI-3926
Change-Id: Ifa186a927f8bad69ba0847822262c881ed972446
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- add kyverno policy fixes for cassandra Operator template
- add new mongodb-init chart
- new parameter in global values to support "NativeSidecar"
which disables the deployment of the sidecar killer in jobs
- update of "killSideCar" function to use the new option
Issue-ID: OOM-3288
Issue-ID: OOM-3296
Change-Id: If7cafd10a14e9bc6b7843c0c2a62691c4e94ca71
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
- deploy 1.14.4 images
- increase AAI chart version to 14.0.1
- change sidecar killer job to use wget instead of curl
Issue-ID: AAI-3926
Change-Id: I405b52169006800b63fc76568482b4347c99c0b4
Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
|
|
common:
- Add settings to common pod templates and fix Cassandra
serviceMesh and MariaDB operator templates
- Added template for mongodb
- Empty lines to files added
readinessCheck:
- Add missing security settings
mariadb-init:
- add security settings in job
cassandra:
- Empty lines added to files
mongodb:
- make emptyDir volume size configurable
others:
- update chart dependency for mongodb in components
- fix linter errors in all files
Issue-ID: OOM-3295
Issue-ID: OOM-3296
Change-Id: Ieb64be337013e0477f7aaca9c75bb6a3f3264848
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
|
|
|
|
|
Fiete Ostkamp
Aditi Shukla
Andreas Geissler
Lukasz Rajewski
rameshiyer27
rajesh.kumar
saul.gill
Thomas Kulik
kaixiliu
adheli.tavares
Micha? Jagie??o