summaryrefslogtreecommitdiffstats
path: root/kubernetes/aaf/components/aaf-cass/resources
AgeCommit message (Collapse)AuthorFilesLines
2021-11-12[AAI][SCHEMA] Remove Hardcoded certificatesSylvain Desbureaux6-4/+17
Use Certinitializer in order to retrieve needed certificates. It'll also do the retrieval for graphadmin as both microservices are working together. Issue-ID: OOM-2691 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Iad790cc14361cf15d5a6bf4fcad6fd9f4048a1a7
2021-11-10[AAI][BABEL] Remove Hardcoded certificatesSylvain Desbureaux1-5/+5
Use Certinitializer in order to retrieve needed certificates. Change ModelLoader also as it needs valid certificate to communicate with Babel. Issue-ID: OOM-2693 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I64b8ede24643f942dc99956030c202c50d41ad1e
2021-11-06[UUI] Automatically retrieve certificatesSylvain Desbureaux6-1/+15
Instead of using hardcoded certificates, let's use certInitializer in order to retrieve them. Issue-ID: OOM-2695 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I673b3c7b8087c150b1e4c1d522b92ec08260ec09
2021-09-08[SO] Add TLS configuration for SO API IngressSylvain Desbureaux1-1/+1
Instead of terminating TLS on SO POD, let's terminate it on its Ingress. This patch uses certInitializer to create the right certificates and put them in a secret. This secret is then referenced on SO Ingress. Issue-ID: SO-3078 Issue-ID: SO-3237 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Icdc8cf6fc84cb3b3c337b4f4e5320980eee06337
2021-05-25[POLICY] Remove invalid SAN entries in AAF certsjhh1-2/+1
Discarded obsolete service names (brmsgw, pap, pdp that refer to the deprecated policy engine) and updated service name for drools. Issue-ID: POLICY-3327 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Ifeceabb594c2d1b9cbdf90ca45cf0be5d6aed875 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2021-05-11[POLICY] Release Policy-clamp 6.1.1sebdet2-1/+2
Update the version to 6.1.1 + required config changes due to Camel & Spring upgrades & Sonar fixes Issue-ID: POLICY-3224 Signed-off-by: sebdet <sebastien.determe@intl.att.com> Change-Id: I7cf2caff461b88326d3ec90c9eea0fd6711f16e5
2021-03-26[HOLMES] Migrate Holmes from Cloudify to HelmGuangrongFu6-2/+30
Instead of using cloudify, use helm directly in order to deploy the charts. Change-Id: I6c97862898ab34b63a15b942b1396c0d19179e46 Issue-ID: HOLMES-396 Signed-off-by: GuangrongFu <fu.guangrong@zte.com.cn> [Adding AAF part and change nodeports] Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
2021-03-26[DMAAP][MR] Retrieve certs automaticallySylvain Desbureaux1-1/+1
Instead of hardcoding certificates inside the container, use cert initializer in order to retrieve them automatically at start. Issue-ID: DMAAP-1547 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I7fcb8831539d8d9d5d25bcaae44a3c66672f7b1a
2021-03-20[VNFSDK] Automatically retrieve certificatesSylvain Desbureaux6-1/+15
Instead of using hardcoded certificates, let's use certInitializer in order to retrieve them. Issue-ID: OOM-2696 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I6ed12dda660647cd0990c34f51e6c05ed533774a
2021-02-28[A1P] Retrieve the certificates automaticallySylvain Desbureaux6-1/+14
Instead of using hardcoded certificates in the container, let's retrieve them automatically. Issue-ID: OOM-2681 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: If08469469fecdc8bf86d080980f221e5941a2329
2021-02-27[COMMON][CERTINIT] Fail if cert retrieval failsSylvain Desbureaux1-4/+4
Current script that retrieve certificates can fail but exit code will be 0. We then add a check in the script in order to avoid such issue Issue-ID: OOM-2688 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ib41c66a4de46db8752f68ef35a2bfb67ca575246
2021-02-22[AAI][TRAVERSAL] Remove Hardcoded certificatesSylvain Desbureaux6-1/+14
Use Certinitializer in order to retrieve needed certificates. Issue-ID: OOM-2680 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I1ec295d863f8f6c0d11e64173b474e82f63e6b17
2021-02-22[AAI][RESOURCES] Remove Hardcoded certificatesSylvain Desbureaux6-1/+15
Use Certinitializer in order to retrieve needed certificates. Issue-ID: OOM-2655 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ie05936be0f513c76ea4dce31b8a460056b79a4b0
2021-02-19[CLI] Retrieve certificates automaticallySylvain Desbureaux6-10/+23
Instead of having hardocoded certificates, use certManager in order to retrieve them. Issue-ID: OOM-2684 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I20df713b7552b27392407db985fd402c259874e4
2021-02-18[APPC][CDT] Automatically retrieve certificatesSylvain Desbureaux6-1/+14
Instead of using hardcoded certificates in container, use certInitializer in order to retrieve them. Issue-ID: OOM-2682 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I93b7a1a0bddf2540e222ec4406d0cfd12f6f5e5e
2021-02-16[MSB] Use certInitializer for MSBSylvain Desbureaux6-1/+29
MSB is currently using an hardcoded certificate. In order to follow SECOMMON requirements, let's use a freshly generated certificate instead Issue-ID: MSB-521 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I157e44a6e30391c36c0142acfa08604c37b79cc4
2021-02-12[AAF] Give `identities.dat` to working deploymentsSylvain Desbureaux1-82/+0
Today, `identities.dat` is put on cassandra deployment. But this file is actually needed by "working" deployments (at least certman and service) and not by cassandra. This patch removes it from cassandra deployments and add it to the other ones form "authz" family. Issue-ID: OOM-2678 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I2a4b68f73797cd6c369060481e169525829a4217
2021-02-02[AAI] Use CertInitializer for AAI ProxySylvain Desbureaux1-2/+2
Instead of using an harcoded certificate for AAI Haproxy, let's use certInitializer in order to have a fresh one. Issue-ID: OOM-2654 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Id07af4084ae714bc7ba7132b218434229a0ba866
2021-01-15[AAF] Externalizes init data out from aaf-cassSylvain Desbureaux9-0/+1479
Instead of keep initialization data into the docker image, we move them to the chart. This will simplify adding / removing certificates as no image release will be necessary, but only a change in OOM which can be directly tested. This reverts commit aa950d2ea4afa900c69eb622a776c8830a1c4e33. Reason for revert: Changed the initial commit in order to make it really work. Issue-ID: OOM-2586 Change-Id: I1091d8940a8499503c72bd92ded9a54f08091ee3 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
2020-11-27Revert "[AAF] externalizes init data out from aaf-cass image to chart"Sylvain Desbureaux9-1479/+0
This reverts commit a8c57a9bdb75a6778cae512ae83710ad8af361e4. Reason for revert: AAF on master is broken Issue-ID: OOM-2586 Change-Id: I0c1cfb2c7be0a8884ca003523d847c3cf0c3ab20 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
2020-11-18[AAF] externalizes init data out from aaf-cass image to chartJohn J. Franey9-0/+1479
The initialization data appear as resources to the chart. The templates were modified to define ConfigMaps and Deployment to mount them to the aaf-cass container when it starts. The existing aaf-cass initialization script in the image will load the database from these files. Issue-ID: OOM-2586 Signed-off-by: John J. Franey <john.franey@att.com> Change-Id: I6be0d4c6739cedfbca5df4ddb527eee2583f74a7 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>