Age | Commit message (Collapse) | Author | Files | Lines |
|
This patch makes AAI to work on service mesh by removing https calls
from everywhere.
It allows also to use AAI on an environment without need of TLS.
Issue-ID: OOM-2670
Signed-off-by: Ondrej Frindrich <ondrej1.frindrich@orange.com>
Change-Id: I19adabc7b33c1ada243ec16f77dbf8fde19b1386
|
|
In order to support multi-tenancy, keycloak(https://www.keycloak.org/)
as Identity and Access Management has been integrated into aai-traversal
and needs to be configured accordignly based on created instance
Issue-ID: AAI-3300
Signed-off-by: Sam Huang <sam.huang@yoppworks.com>
Change-Id: I393fb98ef6ac9cc6f4bf9d476cd682531d15011e
|
|
fix Keycloak integration into aai-resources PR by
replacing all hard coded values
with reference values in values.yaml file.
Issue-ID: AAI-3326
Signed-off-by: Roger Yuan <roger.yuan@yoppworks.com>
Change-Id: Ie8bd900d6512ad171ed3a5977a2f7e9e1c1da5ab
|
|
It seems that for PKCS12 stores there is no keypassword so we are
getting this error in our logs:
keytool error: java.lang.UnsupportedOperationException:
-keypasswd commands not supported if -storetype is PKCS12
Let's fix this by just not trying to set key password for PKCS12 stores.
Issue-ID: OOM-1
Change-Id: I8f4cc5a0b54029b3c1baa83b61092942e34ffab2
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
|
|
|
|
Deployment of aai-resources sometimes fails with exception:
org.springframework.expression.ParseException:
Expression [BH#{XS@*#xoUULIO)eQkxaBA] @2: No ending suffix
'}' for expression starting at character 2: #{XS@*#xoUULIO)eQkxaBA
which basically means that aai-resources (and probably aai-traversal)
are unable to handle special characters that AAF is putting into cert
passwords. To avoid random AAI failures let's use a know method
proposed by Sylvain Desbureaux and just set passwords that contains
only alphanumeric characters.
Issue-ID: OOM-1
Change-Id: I248c2de6e59e4fc073b5a06f6409802634b254cf
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
|
|
Instead of using hardcoded certificates, use certInitializer in order to
retrieve them automatically.
Issue-ID: OOM-2683
Change-Id: I1bd3fe575c1d3450905bdc5876b442fdb43660a9
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
As retrieving values is now done via a generic script, let's clean a
little bit cert retrieval in order to be faster.
Issue-ID: OOM-2688
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I98dc2add27f39f615f34b319ea88edeeac987334
|
|
Updating the documentation and bumping version to 8.0.0
Issue-ID: OOM-1
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I6f942f1466fed64264c44fb8fc0e1ffc93a98f18
|
|
Updating the oom repo to use the java 11
docker images for the above microservices listed
Issue-ID: AAI-2996
Issue-ID: AAI-3011
Issue-ID: AAI-3004
Change-Id: I1f575922e9107195da51d648cd1b733c82498bad
Signed-off-by: Harish Venkata Kajur <vk250x@att.com>
|
|
|
|
Currently updating the sparky and generic
certificates to be valid until jan 2022
Issue-ID: AAI-2841
Change-Id: I2591c8c7c629e5642c9e6c28070c2666542ad4f3
Signed-off-by: Kajur, Harish (vk250x) <vk250x@att.com>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
In order for the aai ui to work properly in honolulu
the portal profile is being turned off. Portal
does not have the support needed and the future of
the component in ONAP is uncertain. The AAI UI will
still work in the portal with the profile turned off.
It will just not use its authentication integration
due to numerous issues dating back to Frankfurt.
Issue-ID: AAI-2905
Signed-off-by: wr148d <wr148d@att.com>
Change-Id: I7e120a16ced18b174c20bd9098883cd0e0e5d717
|
|
This reverts commit a9a41d84026f059aae70f9042c0b99af5b72e619.
aai-sparky-be with this patch fails often in the gate.
I expect this to be related to this patch as the stack trace contains
below error message:
java.io.IOException: keystore password was incorrect
Issue-ID: OOM-2683
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: I53650671eae700ef553b2f9158744ab72d881820
|
|
|
|
Instead of using hardcoded certificates, use certInitializer in order to
retrieve them automatically.
Issue-ID: OOM-2683
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I63ce5d1bb2e9c287729425f2fd7146e7b69c33f7
|
|
Update schema service, resources, traversal
and graphadmin to use the latest released
artifacts for the honolulu release
Issue-ID: AAI-3269
Change-Id: Iba9deb226586e751cdd1631b9cb9c4f4500a0ff9
Signed-off-by: Harish Venkata Kajur <vk250x@att.com>
|
|
Remove Elastic Search
Remove Data Router
Remove Search Data
Remove Sparky dependencies on the above
Issue-ID: AAI-3181
Signed-off-by: wr148d <wr148d@att.com>
Change-Id: I9efb1c89d1f2196bc0cc82e394cd9a12098b14c7
|
|
Sparky config updated to 2.0.2
Issue-ID: AAI-3250
Signed-off-by: wr148d <wr148d@att.com>
Change-Id: I677358720234e576234582267b65b3a377c8cd6f
|
|
Use Certinitializer in order to retrieve needed certificates.
Issue-ID: OOM-2680
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I1ec295d863f8f6c0d11e64173b474e82f63e6b17
|
|
Use Certinitializer in order to retrieve needed certificates.
Issue-ID: OOM-2655
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ie05936be0f513c76ea4dce31b8a460056b79a4b0
|
|
Update schema service to add v23 api
Also use java 11 for schema service
Issue-ID: AAI-3009
Change-Id: I44834fcbd900705dc3fb7707f8e3d5ddd8182284
Signed-off-by: Harish Venkata Kajur <vk250x@att.com>
|
|
|
|
Sparky config updated to no longer run a sync to elastic
Sparky config updated to 2.0.0
Issue-ID: AAI-3250
Change-Id: Iccae63830032ca7454b8127a605236f208699a7b
Signed-off-by: wr148d <wr148d@att.com>
|
|
Issue-ID: AAI-3274
Signed-off-by: Santos, Eric <eric.santos@yoppworks.com>
Change-Id: I783ad95fb44def2e0fb08c606e4b1728d1152d25
|
|
|
|
|
|
Updating the resources microservice to
trust the onap certificates to fix the
issue where the A&AI is unable to publish
to AAI-EVENT topic because A&AI is not trusting
the message router certificate
Issue-ID: AAI-3219
Change-Id: I33d52a1f4593154ce123e7c67aee6dcdeedaf889
Signed-off-by: Harish Venkata Kajur <vk250x@att.com>
|
|
Some AAI components have the ability of using AAF proxies for
authentication. As AAF is deprecated and these proxies seems not to be
used by anybody, let's remove them.
Issue-ID: OOM-2663
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ie78740eb452f1b28f031a97fe272f86acce1f8be
|
|
Instead of "hardcoding" all services, let's generate them with two
values and shrink a little bit template.
It also simplify the reading of the template.
Issue-ID: OOM-2664
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I2a5f181fac93f34e074998aeaf82489f8305de1f
|
|
Helm3 doesn't like empty components with only license headers so we
remove them as much as possible.
Issue-ID: OOM-2562
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I26b790965d2926792f801b87294d15a074de7be6
|
|
This commit makes AAI chart to use the new generator for repositories and
images.
Issue-ID: OOM-2364
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I601be377556d16580f2eda6d00d144fb4a21b445
|
|
AAI chart is currently in its own directory. As a lot will be done in
the charts with tight coordination between "common" part and components
parts, it's a lot easier to have everything in a same place for now.
Issue-ID: OOM-2513
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I5e27f7de286bf74e6d3a443e1cb31f63b3d83265
[Update aai to commit 18d4bd165e12cb4d03baa318e506f0dda381cd89]
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
|