Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
Change-Id: I11bd3ceacf8baa89fe78d318f12a25ced5e8b51b
Issue-ID: OOM-2530
Signed-off-by: ramagp <ramakrishnagp@aarnanetworks.com>
|
|
Helm is now called by HELM_BIN variable which by default is set to helm
and makefiles use helm from path. HELM_BIN can be overwritten so user
can have two version of helm in system and choose which one to use.
Signed-off-by: Jakub Latusek <j.latusek@samsung.com>
Issue-ID: OOM-2562
Change-Id: I0917796aafe234e87afa0ac3c4c15720296276d5
|
|
Readiness container v3.x and up are now present in ONAP main repository.
They're also not using root user anymore and then script path has
changed.
Finally, "job_complete" script has been integrated in main "ready"
script.
As those changes are significant, we must upgrade all the components at
once.
Depends-On: I5afa83892043f4844afe12e61724a8d368a9f2e0
Issue-ID: OOM-2545
Signed-off-by: Grzegorz Lis <grzegorz.lis@nokia.com>
Change-Id: I0b4eb5dd86390273532d67d0a9696e1cfcadf110
|
|
Correct different RST files to remove warnings generated by Doc8
- long lines
- yaml code bad formated
- tabulation
Add a new file to store the hardcoded certificates
(easier to manage with a CSV file than a RST table)
Correct some minor editorial errors
Issue-ID: OOM-2542
Signed-off-by: Eric Debeau <eric.debeau@orange.com>
Change-Id: I89bfea619fbeda581dc04ca2abea80adfe1a8a02
|
|
Change-Id: I677ccc5048130c605bb06d0031508d62947d50b5
Signed-off-by: deen1985 <damian.nowak@nokia.com>
Issue-ID: OOM-2531
|
|
The version given for Frankfurt version is not the right one. So we fix
it with this commit.
Issue-ID: OOM-2424
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I9e24f0b15d821904e70d758a978c2979a530adf0
|
|
|
|
Create release note for Frankfurt
Issue-ID: OOM-2382
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ia78f6eee0dd07b0ebba84c8c714c6a95e4d99a34
|
|
|
|
The git clone command was missing the automatic retrieve of submodules.
Issue-ID: DOC-618
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ic43fa71c3b931b21160095ed9a9f4e48f733cbf4
|
|
AAF SMS was hardcoding its certificates in the container.
This patch makes use of certInitializer in order to retrieve "fresh"
certificates.
In order to use certInitiliazer in a sub component, we had to move
charts to component and add the right requirements.
Issue-ID: AAF-1159
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I6ec55eddffd54dd56b03cea1a6f0b437f8bfa299
|
|
This new micro service allow retrieval of certificates using CMPv2
protocol and relay the requests to CA server (such as EJBCA provided in
contrib folder).
Issue-ID: AAF-1083
Change-Id: Ib3acba3d071533ad933d043f067147e8406d8fa8
Signed-off-by: EmmettCox <emmett.cox@est.tech>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
|
|
* changes:
DOC howto setup ingress on the Kubernetes cluster
Ingress quick start guide notice
|
|
aaf_agent image currently contains hardcoded truststores in order to
be able to connect to certman to retrieve certificate for given
component.
The goal is to remove hardcoded truststore from aaf_agent immage but
first we need to be sure that all its users are able to provide the
truststore to the pod as a configmap.
Issue-ID: AAF-1134
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: Ibe9de6ad7264c05aeca2af858918fc2b4d3a772b
|
|
User manual howto setup ingress controller on the kubernetes
cluster using Nginx and MetalLB
Issue-ID: OOM-1878
Change-Id: I0947c0060851fd7a43bfa92b0472b9ec898857b6
Signed-off-by: Lucjan Bryndza <l.bryndza@samsung.com>
|
|
Notice about experimental ingress configuration
Signed-off-by: Lucjan Bryndza <l.bryndza@samsung.com>
Change-Id: I73f799d9fb254a5d40b1c7d22c75350010780a1d
Issue-ID: OOM-1878
|
|
Removal of tomcat and zookeeper as per latest music version..
Replaced with cassandra only and spring boot version of music,
adding support for https and running the music container under
a non-root user
Update oof-has music-api configuration, use https
Switch to music-api-springboot for all the ready.py
Issue-ID: MUSIC-572
Signed-off-by: Tschaen, Brendan <ctschaen@att.com>
Change-Id: Idbfac29cb5e9808787b5994e2575f055c292a146
Signed-off-by: vrvarma <vikas.varma@att.com>
|
|
This change addresses two issues:
MSB-467: Certificate in MSB is set to use *.zte.com.cn
MSB-462: Pods still run as root
These two issue have been fixed in docker images, but also need to be
reflected in K8s manifest.
Issue-ID: MSB-467
Signed-off-by: Huabing Zhao <zhao.huabing@zte.com.cn>
Change-Id: Id67e521b3051e9651051083f05d9e54973803030
|
|
|
|
|
|
sdc.workflow.plugin.simpledemo.onap.org was missing in the list
Issue-ID: OOM-1368
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I40374b0302c9fe2729f86a212b185cc1f4351216
|
|
Update the versions on doc to the recommanded ones for Frankfurt.
Issue-ID: OOM-2367
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ie3b3511f01df6f62f98dbb80d15fe0c76de4edf4
|
|
Issue-ID: CLI-265
Signed-off-by: Kanagaraj Manickam <kanagaraj.manickam@huawei.com>
Change-Id: I4dc6cf5c9f7e8ec913491ea8580f414ab5ca199f
|
|
|
|
Issue-ID: OOM-2075
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I634ade031aa95f9c79abad8f1f59015085ebc525
|
|
|
|
Initial documentation update with the following changes:
* Remove last old release references
* Explain the "masterPassword" mandatory parameter
Issue-ID: OOM-2324
Issue-ID: OOM-1960
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ib3b1ba7c585c7e27793329ec5eb43d797e23da99
|
|
Issue-ID: AAI-2869
Signed-off-by: Jimmy Forsyth <jf2512@att.com>
Change-Id: I4a4b5f05ae149149137369cfb588b1c27e156281
|
|
AAF client cert moved to APPC
Helm chart, hence I added APPC
portion to the table
Issue-ID: APPC-1862
Change-Id: Ib84a66bbca8d818c36cfd9258d0dfbc1000f1265
Signed-off-by: Taka Cho <takamune.cho@att.com>
|
|
Add additional labels to create consistency across
all docs.
Issue-ID: CIMAN-376
Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
Change-Id: I6d3dd67adb6669fb897e4978cb88e3b7404d2897
|
|
|
|
New documentation generation system relies on disjoint documentations.
This patch adds an label for OOM release note with name being consistent
accross all ONAP components.
Issue-ID: CIMAN-33
Change-Id: I5e5fbe5d5038056a7a684828c9e02f082bfa7f0b
Signed-off-by: lf-jobbuilder <releng+lf-jobbuilder@linuxfoundation.org>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
New documentation generation system relies on disjoint documentations.
This patch adds an label for OOM main index with name being consistent
accross all ONAP components.
Issue-ID: CIMAN-376
Change-Id: I1c13b2c478857c45a30ec5e5fb4881934e6f70f3
Signed-off-by: lf-jobbuilder <releng+lf-jobbuilder@linuxfoundation.org>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
|
|
Making the charts consistent based on comments
Fixing oom gating issue related to busyBoxImage value not found
Moving and fixing cmso certs to this checkin
Adding oof-cmso to the hardcoded certificates list
Change-Id: Id48903ef7c38d69fcd8da5e067c2031359c94b56
Signed-off-by: vrvarma <vikas.varma@att.com>
Issue-ID: OPTFRA-720
|
|
Added the trust store provided by waqas to be included
with vnfm adapter jvm arguments.
Issue-ID: SO-2765
Signed-off-by: Ramesh Parthasarathy(rp6768)<ramesh.parthasarathy@att.com>
Change-Id: Ifbe7bd54dcf1f79b49bed1f887e472ad9b7ac634
|
|
Use 6.0.0 in preparation for Frankfurt release
Issue-ID: OOM-2320
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I8ad82dfdf48b56c38c0e85d640b18cc13c8d9e67
|
|
|
|
|
|
Updated truststore/keystore password for sdc cert.
Added truststore/keystore password to chef AUTO.json.
Updated deployment.yaml files to mount the cert files.
Issue-ID: SDC-2855
Signed-off-by: Krystian Kedron <k.kedron@partner.samsung.com>
Change-Id: Ifd0d45cc591a0624005f86d2e67e3c0bc490efd3
|
|
Workaround for retrieving ONAP root CA and keeping SO container being
run by no root user.
Issue-ID: SO-2730
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ib1b48c0a6fcca359a780640b8c705e75fd78dc1a
|
|
haproxy, resources, traversal, schema-service, graphadmin,
babel, model-loader, aai-search-data
Issue-ID: AAI-2821
Change-Id: I4304053534a20ea1b51e05e285f0829403d2b2db
Signed-off-by: Jimmy Forsyth <jf2512@att.com>
|
|
Issue-ID: VID-784
Change-Id: I2393279cce83191e75730caaff1b57802857f0e9
Signed-off-by: Ittay Stern <ittay.stern@att.com>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
Some people weren't sure on which machine we have to install it.
Issue-ID: OOM-2061
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ib46ac2211a716e04ce5b8d9394264bb7fd34a42c
|
|
Issue-ID: OOM-2204
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I1d17f027f81c2abc3fbf97973dd5076776b8499e
|
|
Current service and headlessService templates doesn't handle the fact
that out of cluster ports must be TLS encrypted only.
With a new (backward compatible) DSL, this is now possible.
In values.yaml, all ports in service part with port AND plain_port will
have the ability to be HTTP or HTTPS depending on the context.
Per default, they'll be HTTPS.
TLS choice will be done according this table:
| tlsOverride | global.tlsEnabled | global.serviceMesh.enabled | global.serviceMesh.tls | result |
|-------------|-------------------|----------------------------|------------------------|--------|
| not present | not present | not present | any | true |
| not present | not present | false | any | true |
| not present | not present | true | false | true |
| not present | not present | true | true | false |
| not present | true | any | any | true |
| not present | false | any | any | false |
| true | any | any | any | true |
| false | any | any | any | false |
Service template will create one or two service templates according to this table:
| serviceType | both_tls_and_plain | result |
|---------------|--------------------|--------------|
| ClusterIP | any | one Service |
| Not ClusterIP | not present | one Service |
| Not ClusterIP | false | one Service |
| Not ClusterIP | true | two Services |
If two services are created, one is ClusterIP with both crypted and plain
ports and the other one is NodePort (or LoadBalancer) with crypted port only.
Issue-ID: OOM-1936
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: If766dd73132022d1a6e578fd36113c461bb91ea5
|
|
Also add requirements for Frankfurt release
Issue-ID: OOM-1960
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Idaa4925515737221c90c4bf9141406fa1d428f15
|
|
Issue-ID: OOM-1966
Signed-off-by: ksinghn247 <kuldeepsinghn@hcl.com>
Change-Id: Iaff841695f0ef8513b202bc299ecc2785bf97ee0
|