aboutsummaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2024-06-06Merge "[AUTHENTICATION] Restructured keycloak and Oauth2-proxy"Lukasz Rajewski75-883/+2214
2024-06-05[AUTHENTICATION] Restructured keycloak and Oauth2-proxyAndreas Geissler75-883/+2214
Changed keycloak-init to "authentication" and moved as root chart Moved oauth2-proxy to onap-authentication and updated to version 7.5.4 Use TCL proposal for REALM creation. Update keycloak-config-cli version to 5.12.0. Ingress AuthorizationPolicy creation for all defined accessRoles in the configured realms Issue-ID: OOM-3292 Issue-ID: OOM-3268 Change-Id: I0901cd416ca5da871931d7cf084cd35c55f804f1 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-05-29[AAI] Deploy latest AAI imagesFiete Ostkamp7-19/+19
- resources from 1.13.4 to 1.13.5 - traversal from 1.13.4 to 1.13.5 - graphadmin from 1.12.3 to 1.13.7 - model-loader from 1.13.6 to 1.14.1 - babel from 1.12.3 to 1.13.1 - schema-service from 1.12.3 to 1.12.4 Generally this includes the DmaaP removal and version upgrade to v29 Issue-ID: AAI-3862 Change-Id: Ide32cc4ddc8dcc32ca43351e4e85ac9b0d512f55 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-23Merge "[POLICY] Update docker images to latest versions"Lukasz Rajewski14-14/+14
2024-05-23[PORTALNG] Update preferences and history versionsFiete Ostkamp4-4/+4
- deploy release images of portalng Issue-ID: PORTALNG-108 Change-Id: I659373e415d959c23cd64f0d709fbd7d969c8d14 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-22Merge "[AAI] Helm changes for DMaaP deprecation"Andreas Geissler16-65/+266
2024-05-21[POLICY] Update docker images to latest versionssaul.gill14-14/+14
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4997 Change-Id: Ia874c6a050f9a0253628247519541e17d86d08cf Signed-off-by: saul.gill <saul.gill@est.tech>
2024-05-20[AAI] Helm changes for DMaaP deprecationKv16-65/+266
- Helm changes for DMaaP deprecation in A&AI Issue-ID: OOM-3297 Change-Id: I6a601c4c9958fb6817872520c259525eb650d0c9 Signed-off-by: Kv <vani.kv@accenture.com>
2024-05-18[PORTALNG] Dns resolver ip not configured in portal-ng-ui chartFiete Ostkamp1-0/+1
- define CLUSTER_NAMESERVER_IP since it is needed in the nginx config Issue-ID: PORTALNG-103 Change-Id: I60a9784dffcfd0c4a575e6c66641f69b0f6204e2 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-18Merge "[AAI] Make aai log level configurable"Andreas Geissler10-9/+21
2024-05-17Merge "[CPS] New Delhi release changes"Andreas Geissler3-3/+3
2024-05-17[CPS] New Delhi release changesmpriyank3-3/+3
- cps-and-ncmp image updated to use tag 3.4.9 version - ncmp-dmi-plugin image updated to use tag 1.5.0 version - fixed the labels in application-helm file as it was introduced as part of java17 upgrade in the app. Issue-ID: CPS-2222 , CPS-2225 Change-Id: I9bdda445f8e4a0a97cddb15edb9cdafd15c86e45 Signed-off-by: mpriyank <priyank.maheshwari@est.tech>
2024-05-17[OOM] File mount missing in portal-ng-ui chartFiete Ostkamp1-0/+3
- mount version.json Issue-ID: PORTALNG-102 Change-Id: If1e68f2dd36b2bc0f8d9cd024b54c7984f39489a Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-14[AAI] Make aai log level configurableFiete Ostkamp10-9/+21
- introduce log.level.root setting to set root log level Issue-ID: AAI-3846 Change-Id: Ia6d39f7e70605ccc7bfd64830bdfe8aa55058f3f Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-14[PORTALNG] Support readonly file system in portal-ng-uiFiete Ostkamp7-0/+168
- mount files via configmaps to support readonly filesystems Issue-ID: PORTALNG-101 Change-Id: Ia399d0230db4cc25f2d8e438a0e64a34f06b921f Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-05-14Merge "[COMMON] Fix Kyverno policy violations in common/mongodb"Andreas Geissler12-42/+69
2024-05-06[COMMON] Fix Kyverno policy violations in common/mongodbFiete Ostkamp12-42/+69
- set resourceLimit's for emptyDir volumes - use non-root group in mongo pods - make pod filesystem read-only - bump mongodb chart version from 14.12.2 to 14.12.3 - use new version in portal-ng, nbi, multicloud and dcae-tcagen2 Issue-ID: OOM-3293 Change-Id: Ife7445433337ac97a03f8cd22ad551e8745b9717 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-04-26[POLICY] Update docker images to latest versionssaul.gill14-14/+14
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4970 Change-Id: Ib431ebb448205fb79808dab8e1edc2c6aaaaf13c Signed-off-by: saul.gill <saul.gill@est.tech>
2024-04-22Merge "[AAI] Add model-loader tracing config"Andreas Geissler4-1/+45
2024-04-22Merge "[MARIADB][POLICY] Correct the MariaDB ReadinessCheck"Lukasz Rajewski2-11/+7
2024-04-17[MARIADB][POLICY] Correct the MariaDB ReadinessCheckAndreas Geissler2-11/+7
The configuration of an external MariaDB did not fit with the template function of _mariadb.tpl and additionally the template function has a bug in the service information. Issue-ID: OOM-3290 Change-Id: I92f758647012ebf289549665f7f5c20e94c9ff66 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-17[AAI] Add model-loader tracing configFiete Ostkamp4-1/+45
- mount application.properties file that is used by Spring [1] - add tracing config to that file - deploy model-loader version 1.13.5 [1] this is also a prerequisite for replacing the model-loader.properties file that is loaded by the service via some custom logic. Spring does this out of the box for application-*.properties files. Issue-ID: AAI-3812 Change-Id: I0a101fd246b8313f90cfc3ebca5a65dae769d3d6 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-04-17[SDNC] Disable MessageRouter ReadinessCheck in UEB ListenerAndreas Geissler1-2/+0
As the UEB Listener is already migrated to Kafka, the ReadinessCheck in the deployment.yaml is deleted Issue-ID: OOM-3291 Change-Id: If940f1e90b3bf3762ae70d7f96acd71357e4ffe7 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-13[COMMON] Remove hostPath entriesAndreas Geissler65-408/+2
As hostPath volumes violate Cluster policies, they are not allowed within pod definitions. In our case only the "etc/localtime" is mounted to get the timezone of the host, which is not required. Issue-ID: OOM-3287 Change-Id: I6c8c8ea4e982d7e95e73f5fed7fc07ed47ceaab7 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-12Merge "[COMMON] Update all ReadinessChecks"Lukasz Rajewski93-314/+200
2024-04-11[COMMON] Update all ReadinessChecksAndreas Geissler93-314/+200
Use the new "service" feature of the readiness image to resolve startup dependencies. Issue-ID: OOM-3280 Change-Id: Ia331d51528676744e5e0479d1fd0ca02830c3499 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-11[PORTALNG] Remove hardcoded /auth from the keycloak urls in bffFiete Ostkamp4-4/+4
- add /auth to bff KEYCLOAK_URL [1] - adjust KEYCLOAK_URL's to use keycloakx-http.keycloak [1] since it was removed from the application.yml Issue-ID: PORTALNG-85 Change-Id: I919cfc29494e30e891e732f63f56edd9f6579864 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-04-11Merge "[SDNC] Move dgbuilder and network-name-gen to SDNC"Lukasz Rajewski19-45/+22
2024-04-10Merge "[POLICY] Add kafka support in policy charts"Lukasz Rajewski44-305/+169
2024-04-10[SDNC] Move dgbuilder and network-name-gen to SDNCAndreas Geissler19-45/+22
Move the charts from /common to sdnc/components and simplify the DB creation. Issue-ID: OOM-3286 Change-Id: Ib0c53e51b96ad2e1573859b9d938e700c0bea4ac Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-09[CASSANDRA] Add some fixes for K8ssandra OperatorAndreas Geissler2-6/+25
Some ports need to be excluded from cassandra to support JMX and Metrics interfaces. Also some memory settings need to be adjusted. Issue-ID: OOM-3275 Change-Id: I7530b69d65c7c612bcf54eba64d5a4dd5a20f753 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-08[POLICY] Add kafka support in policy chartsrameshiyer2744-305/+169
Added kafka support in all policy charts. Dmaap option is removed Issue-ID: POLICY-4941 Change-Id: I015d303c11c04a64d815fe2f054919eca2252250 Signed-off-by: rameshiyer27 <ramesh.murugan.iyer@est.tech>
2024-04-08Merge "[PORTAL-NG] Publish preferences and history charts"Andreas Geissler22-1/+685
2024-04-05Merge "[MARIADB] Update mariadb-operator and templates to 0.27.0"Lukasz Rajewski4-36/+49
2024-04-05[MARIADB] Update mariadb-operator and templates to 0.27.0Andreas Geissler4-36/+49
Update the Mariadb template to support the mariadb-operator version 0.27.0, which changed the CRD naming and the content structure. Temporarily disable istio-sidecar, as problems with init jobs for MariaDB Issue-ID: OOM-3281 Change-Id: Ia9563a5074a739e4b879a7840bedb1d73fbc1b54 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-05[PORTAL-NG] Publish preferences and history chartsFiete Ostkamp22-1/+685
- add history chart - add preferences chart - add chart option to disable tracing Issue-ID: PORTALNG-82 Change-Id: I60802ab0d7e623a37a33b4865cdab74417ea7451 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-04-05Merge "[STRIMZI] Update strimzi-kafka-operator and kafka versions"Lukasz Rajewski4-14/+10
2024-04-04[STRIMZI] Update strimzi-kafka-operator and kafka versionsAndreas Geissler4-14/+10
Update the recommended operator version and used kafka versions in the documentation and onap-strimzi. Changed the DMaaP MR ststefulset probe settings to ne compliant to the new operator version. Issue-ID: OOM-3269 Change-Id: I859d077d6f952aff5bcf5bd418f96745d9eae843 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-03Merge "[COMMON][READINESS] Update readiness image and use service feature"Lukasz Rajewski23-48/+80
2024-04-03Merge "[PORTAL-NG] Ui is exposed on wrong port"Andreas Geissler2-7/+6
2024-04-02[PORTAL-NG] Ui is exposed on wrong portFiete Ostkamp2-7/+6
- adjust port mapping in service to map to 8080 Issue-ID: PORTALNG-80 Change-Id: Ica131a1207d147c75c8604bcc63472b9f8785afa Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-03-30Revert "[AAI] Deploy 1.13.5 release of model-loader"Andreas Geissler1-1/+1
This reverts commit 423a8dabb0dca07d8ea3432974eb6be18a7b3416. Reason for revert: Smoke tests fail Issue-ID: AAI-3810 Change-Id: I8a43afb6529d4fcd6fe26ed9ad87b1db70c51c2b Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-27[COMMON][READINESS] Update readiness image and use service featureAndreas Geissler23-48/+80
Update the ReadinessCheck (13.1.0) to support the "services" feature of readiness image version 6.0.2 and use the feature in the charts under common (dgbuilder, etcd-init, mariadb-galera, mariadb-init, postgres-init) Additional exclude K8S API port (443) from Istio Sidecar communication to allow CNI Plugin Issue-ID: OOM-3280 Change-Id: Ibe030aa9debfc82e88f2ce5e309dd6fa2250f211 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-26[AAI] Deploy 1.13.5 release of model-loaderFiete Ostkamp1-1/+1
- release includes spring boot 2.4 update and tracing Issue-ID: AAI-3810 Change-Id: If8b305ee7c6f01acf985c5be08f730a041f47c80 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-03-25Merge "[MONGODB] Set default resource settings for mongodb"Lukasz Rajewski5-35/+36
2024-03-25Merge "[AAI] Kyverno - disallow-host-path policy"Lukasz Rajewski12-81/+0
2024-03-25Merge "[COMMON] Make imagePullSecrets configurable"Lukasz Rajewski147-298/+346
2024-03-24[AAI] Kyverno - disallow-host-path policyFiete Ostkamp12-81/+0
- remove hostPath mounting of /etc/localtime Issue-ID: AAI-3803 Change-Id: Ia5d1bfef1581a5e3f1b2ed3869ad1f840337f969 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-03-21[SO] Config Changes for SO using Kafka for PNFsanket123458-8/+63
- Using kafka instead of Dmaap MR topics - Create kafka-user & provide kafka-auth - bpmn-infra-code: https://gerrit.onap.org/r/c/so/+/136743 Issue-ID: OOM-3276 Change-ID: I43f67f689a814b438f92f8b36809d0947d8b2508 Signed-off-by: sanket12345 <SX00562924@techmahindra.com> Signed-off-by: sushant53 <sushant.jadhav@t-systems.com>
2024-03-20[COMMON] Make imagePullSecrets configurableAndreas Geissler147-298/+346
Currently in ONAP the imagePullSecrets is hardcoded to 'onap-docker-registry-key' which is created by the repository-wrapper component. With this change the secrets can be configured via setting global.imagePullSecrets and optionally per image if it is configured as map (image.pullSecrets) Issue-ID: OOM-3284 Change-Id: I8644f9b46043b6014219c42928e057b149df43a4 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>