summaryrefslogtreecommitdiffstats
path: root/kubernetes/common
AgeCommit message (Collapse)AuthorFilesLines
2021-09-09Merge "[OOM] Update Linux SSL Truststore /etc/ssl"Sylvain Desbureaux2-0/+16
2021-09-09Merge "[CONTRIB] Introduce certificate update use case in CertService"Sylvain Desbureaux1-1/+1
2021-09-07[COMMON] Fix bashisms in import-custom-certguillaume.lambert1-5/+4
Bashisms of type (should be 'b = a') were all fixed previously but a new one was reintroduced during the fixes of other types. Also commit f79b6676cfdc380e004f184a21bb969b2824c06e moved import-custom-cert shebang from bash to sh but substring syntaxes similar to ${f: -4} and only supported by bash were not migrated. Let's fix that alltogether before enforcing the checkbashisms tox profile. Issue-ID: OOM-2643 Issue-ID: POLICY-3232 Signed-off-by: guillaume.lambert <guillaume.lambert@orange.com> Change-Id: Ie9b5ac1c2edd9ddf3574f09c77ca8734f2311d1d
2021-09-06[CONTRIB] Introduce certificate update use case in CertServicePiotr Marcinkiewicz1-1/+1
1. Make changes in order to allow performing KUR/CR in EJBCA: - Add Certificate Update Admin role - Enable EndEntityAuthentication module - Create and set CA with constant UID - Add configuration for provider. 2. Update CertService, which provides with new certificate update endpoint. 3. Update release-notes. Issue-ID: OOM-2753 Issue-ID: OOM-2754 Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> Change-Id: I9cb0cb4d6d6939ad229a4ea254f2bc35d45a3d52 Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
2021-09-06[COMMON] Add prometheus service monitor templateMarat Salakhutdinov2-35/+169
Add prometheus service monitor template to common charts so that components can reuse it to enable scraping of their metrics by prometheus. Issue-ID: OOM-2710 Signed-off-by: Marat Salakhutdinov <marat.salakhutdinov@bell.ca> Change-Id: Ifa8da676dec05192c518ba97208df60e5ec46f55
2021-09-05[OOM] Update Linux SSL Truststore /etc/sslAbdelmuhaimen Seaudi2-0/+16
Add update for /etc/ssl/cacerts/ca-certificates.crt Issue-ID: CCSDK-3356 Change-Id: I797aea054bb80db805f4791a288e89b102e1d662 Signed-off-by: Abdelmuhaimen Seaudi <abdelmuhaimen.seaudi@orange.com>
2021-09-01Merge "[DCAE] Helm charts for SNMPTrap collector"Sylvain Desbureaux1-1/+15
2021-08-31Merge "[COMMON] Fix ${p^^} bashisms"Krzysztof Opasiak2-4/+4
2021-08-28[COMMON] Fix ${p^^} bashismsGuillaume Lambert2-4/+4
pointed out by checkbashisms Issue-ID: OOM-2643 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: I34d828ac4ab27b5ce6547a20aecc610cdcecf00e
2021-08-27[DCAE] Helm charts for SNMPTrap collectorVijay Venkatesh Kumar1-1/+15
Helm deployment support for DCAE transformation common/svc template support for UDP protocol. Added readiness configuration. Change-Id: Idc40c60d95ddd5eb0ef43ba0b11b7b163970a5b1 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Issue-ID: DCAEGEN2-2708 Issue-ID: OOM-2751 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com>
2021-08-27[COMMON] Fix handling affinity block for mariadb-galeraPrabhjot Singh Sethi2-5/+5
fix matchExpressions under nodeSelectorTerms to indicating array construct. there is no helm tpl defined with common.tplvalues, fixing it to use common.tplValue Issue-ID: OOM-2800 Signed-off-by: Prabhjot Singh Sethi <prabhjot@aarnanetworks.com> Change-Id: I572ee30af745aa7f10c8438ea9516534e71d5acd
2021-07-20Merge "[COMMON] Fix a docker-entrypoint function name"Krzysztof Opasiak1-4/+4
2021-07-13[DCAEGEN2] Deploy DCAEGEN2-DFC Microservices to Helmajay_dp0013-1/+195
- DCAE Helm Transformation (Phase-2) - Charts for the microservices are found under - oom/kubernetes/dcaegen2-services/dcae-datafile-collector Issue-ID: DCAEGEN2-2715 Signed-off-by: ajay_dp001 <ajay.deep.singh@est.tech> Change-Id: I6efa2d4cd9e838a7befaf16576f8e94ad0a3ef0f
2021-07-13Merge "[COMMON] Added imagePullSecrets to common template files with some fix"Sylvain Desbureaux6-0/+12
2021-07-13Merge "[OOM] Update Cassandra in common with service account"Sylvain Desbureaux3-0/+10
2021-07-12[COMMON] Added imagePullSecrets to common template files with some fixandreas-geissler6-0/+12
Added the missing definition for imagePullSecrets in the statefulsets.yaml deployment.yaml to support the registryGenerator Issue-ID: OOM-2789 Signed-off-by: andreas-geissler <andreas-geissler@telekom.de> Change-Id: I013ba52c9c49f95cd3d53fcaa9eb084adcbfe662
2021-07-12[OOM] Update Cassandra in common with service accountfarida azmy3-0/+10
Add service account to requirements.yaml, values.yaml and deployment/statefulset Issue-ID: OOM-2703 Signed-off-by: farida azmy <farida.azmy.ext@orange.com> Co-authored-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I226584b16b2cd1c22a4e71eb48ad95d974640006
2021-07-07Merge "[CASSANDRA] Don't listen on localhost when on mesh"Borislav Glozman1-8/+0
2021-06-30Merge "[COMMON] Apply changes for mariadb-init project"Sylvain Desbureaux1-6/+6
2021-06-30[CASSANDRA] Don't listen on localhost when on meshSylvain Desbureaux1-8/+0
With istio >= 1.10, cassandra doesn't need anymore to listen on 127.0.0.1. Issue-ID: OOM-2252 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ib3817f5404a21a96a6fadc76b5cd501b01e9ab25
2021-06-30Merge "[COMMON][ES] Simplify cert retrieval script"Borislav Glozman1-1/+0
2021-06-30[COMMON] Apply changes for mariadb-init projectMahmoud Abdelhamid1-6/+6
Two changes are intended with this commit: - (for proper name mapping) Update VolumeMounts names to be: (mariadb-init for mountPath /db-init/) (mariadb-conf for mountPath /db-conf/) originally it was reversed. - Make use of (common.mariadbService) and (common.mariadbPort) defined in (common/templates/_mariadb.tpl) into job.yaml. This will reflect the proper values for mariadb service name and port in case of local installation. Issue-ID: OOM-2737 Signed-off-by: Mahmoud Abdelhamid <mahmoud.abdelhamid@orange.com> Change-Id: I303f8d5f56632289d8dfd2f2ba8c35819a4f871c
2021-06-30[COMMON] Fix a docker-entrypoint function nameGuillaume Lambert1-4/+4
pointed out by checkbashisms. Issue-ID: OOM-2643 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: I1915d4fcbf38b32180d5a7caa36531ad2fc798a9
2021-06-23Merge "[OOM][DCAE] Chartmuseum deployment support"Sylvain Desbureaux2-0/+22
2021-06-22Merge changes from topic "appc-common-db"Sylvain Desbureaux1-1/+2
* changes: [OOF] Use the common mariadb-galera instance [COMMON] Add port under mariadb-galera chart
2021-06-21[OOM][DCAE] Chartmuseum deployment supportVijay Venkatesh Kumar2-0/+22
Introduction of chartmuseum as internal repo for ONAP components to push/pull charts post instantiation + Script to preload charts to this repo Change-Id: I4880900548dfe1d3e47a67b3822f82a15314b5b7 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Issue-ID: DCAEGEN2-2630 Issue-ID: OOM-2734 Issue-ID: INT-1895 Issue-ID: DCAEGEN2-2694 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Signed-off-by: vv770d <vv770d@att.com>
2021-06-21Merge "[COMMON] Fix ${!name} bashisms"Sylvain Desbureaux2-4/+15
2021-06-16[COMMON] Fix $BASH_SOURCE and pushd/popd bashismsGuillaume Lambert1-1/+1
pointed out by checkbashisms. Issue-ID: OOM-2643 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: Ic9c4edc0fc6bd94a95bcb85d84379e868fb09930
2021-06-16[COMMON] Add port under mariadb-galera chartMahmoud Abdelhamid1-1/+2
Update mariadb-galera chart to add internalport value under (.Values. service) to resolve the port settings needed for the template (common. mariadbPort) under (common/_mariadb.tpl). This parameter will use the default value of mariadb 3306 which can be changed in component charts. Issue-ID: OOM-2773 Signed-off-by: Mahmoud Abdelhamid <mahmoud.abdelhamid@orange.com> Change-Id: I0d59ba42f07426b14ec7bc7f157392b5f10b9006
2021-06-11[COMMON] Fix docker-registry-key empty credsSatoshi Fujii1-1/+1
When image repository does not allow anonymous pull, image pull failed due to empty credentials in docker-registry-key secret. This change fixes _repository.tpl repository generator to refer to .global.repositoryCred in override.yaml . Issue-ID: OOM-2767 Signed-off-by: Satoshi Fujii <fujii-satoshi@jp.fujitsu.com> Change-Id: I3cd7eabcdda547e99e0461767a0451dc1e51132b
2021-06-11Merge "[COMMON][DGBUILDER] Update chart with service account"Sylvain Desbureaux3-0/+9
2021-06-10[COMMON][DGBUILDER] Update chart with service accountfarida azmy3-0/+9
Add service account to requirements.yaml, values.yaml and deployment/statefulset Issue-ID: OOM-2720 Signed-off-by: farida azmy <farida.azmy.ext@orange.com> Change-Id: Iefe02cad5b2069879d043d17465f248f1f731519
2021-06-08[COMMON] Remove CertService client mechanismPiotr Marcinkiewicz7-262/+0
- Remove cmpv2Certificate chart in order to deprecate CertService client mechanism. - Remove CertServiceClient init containers in SDNC. - Replace CMPv2CertManagerIntegration with cmpv2Enabled flag Issue-ID: OOM-2744 Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> Change-Id: I8c818fcf64a029552c8833f68b6ae95fad379c8d
2021-05-28[COMMON][ETCD-INIT] Add etcd-init chartkrishnaa967-1/+256
- etcd-init chart will provision the users and roles in a running etcd instance - Change etcd container name for readiness init container to work Issue-ID: OOM-2746 Signed-off-by: krishnaa96 <krishna.moorthy6@wipro.com> Change-Id: I0cb6d3830b0048c4d70f381815bd3f858ec31ae7
2021-05-26Merge "[COMMON] Fix condition bracket bashisms - step 1"Krzysztof Opasiak1-1/+1
2021-05-26[COMMON] Fix ${!name} bashismsGuillaume Lambert2-4/+15
pointed out by checkbashisms. Note this kind of indirections can only be replaced directly in POSIX by commands using eval. Security risks must be evaluated for each context where eval is called. For a safe use, the context must ensure that only a limited number of possible constrainted values are passed to eval. https://mywiki.wooledge.org/Bashism#Parameter_Expansions https://mywiki.wooledge.org/BashFAQ/006#Indirection Issue-ID: OOM-264 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: Id27f3ffd1ddb092a9c038d3a45d9e3278720eb62
2021-05-21Merge "[COMMON] Change import-custom-cert from bash to sh"Sylvain Desbureaux1-2/+2
2021-05-19[COMMON] Change import-custom-cert from bash to sha.sreekumar1-2/+2
As part of removing GPLv3 license, policy components have moved from bash to sh. This change is required in import-custom-certs script so that custom certificates can be imported into components that try to import them. Without this change, the init containers of the components will just fail. Change-Id: I6c5028428d4cd7c8baf3e96cb16a3cd91db57f9e Issue-ID: POLICY-3232 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2021-05-19[COMMON] Enhance ONAP common-service template - add IPv4/IPv6 supportUbuntu1-0/+5
Generic change for all common services by adding ipFamilyPolicy field. Dual Stack service exposure will be provided depending on k8s version (v1.20+). Signed-off-by: Magdalena Biernacka <magdalena.1.biernacka@nokia.com> Issue-ID: OOM-2749 Change-Id: Ia7236705010e625c19a22e42ec9a02c9f75a0ec5
2021-05-17[COMMON] Fix condition bracket bashisms - step 1Guillaume Lambert1-1/+1
pointed out by checkbashisms $ mycmd=$(tox -e checkbashisms | grep '(\[\[ foo \]\] should be \[ foo \])' | sed -e "s@^[^.]*\(.[^ ]*\) line \([0-9]*\) .*@sed -i '\2s/\\\[\\\[\\\( [^]]*\\\)\\\]\\\]/[\\\1]/g' \1;@") $ eval $mycmd plus fix manually quoting hells induced and bash specific regex and multi-conditions Issue-ID: OOM-2643 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: Ie7ca5b71938fae22c200b7fead418618160fbe19
2021-05-13[COMMON][ES] Simplify cert retrieval scriptSylvain Desbureaux1-1/+0
As retrieving values is now done via a generic script, let's clean a little bit cert retrieval in order to remove unneeded part. Issue-ID: OOM-2688 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I919772a458028b86a8d2db1a90261805a93104ac
2021-05-12[MUSIC][CASSANDRA] Use Startup probesSylvain Desbureaux3-10/+23
Instead of long initial delay on readiness and liveness probes, use startup probes and be more aggressive on readiness and liveness. Also, decrease number of replicas from 3 to 1 Issue-ID: OOM-2742 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ideb0ede251332e182b975ff18ca5a75bcbff2351
2021-05-12Merge "[COMMON][ROLES] Create default roles once"Krzysztof Opasiak9-85/+194
2021-05-11Merge "[COMMON] Update _mariadb.tpl to use the proper db"Krzysztof Opasiak1-1/+1
2021-05-11[COMMON][ROLES] Create default roles onceSylvain Desbureaux9-85/+194
Instead of creating all roles every time with service account chart, let's just create the specific ones for a chart and point to default one for the three default roles. In order to lighten serviceAccount chart, whole logic for default role creation is in `roles-wrapper`. Issue-ID: OOM-2729 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ib4d6a2669ca7d747320a4bccb65aac863eb60956
2021-05-11Merge "[DCAEGEN2] Add pem support in CMPv2 for dcaegen2-services"Sylvain Desbureaux1-2/+14
2021-05-11Merge "[COMMON] Add custom certs into AAF truststore"Krzysztof Opasiak1-1/+2
2021-05-10[DCAEGEN2] Add pem support in CMPv2 for dcaegen2-servicesPiotr Marcinkiewicz1-2/+14
- Add mounting certificates in pem format. - Add comment description to certificates in dcae values Issue-ID: DCAEGEN2-2688 Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> Change-Id: I546292c33e25e36376b98d42e08a3c4ffa95de64
2021-05-10Merge "[DCAEGEN2] Add CMPv2 support to dcaegen2-services"Krzysztof Opasiak1-1/+48
2021-05-10Merge "[COMMON][CASSANDRA] Higher PVC Claim for Cassandra"Krzysztof Opasiak1-1/+1