summaryrefslogtreecommitdiffstats
path: root/kubernetes/contrib/components/ejbca
AgeCommit message (Collapse)AuthorFilesLines
2021-09-22[COMMON] Enforce checkbashisms tox profileGuillaume Lambert1-1/+1
- add checkbahims to tox.ini default profiles - remove -f options to unforce bashisms detection in explicit bash scripts and to differentiate treatments between bash and sh - migrate #!/bin/bash shebangs to #!/bin/sh for scripts without bashisms The following scripts have not been migrated since they still use bashisms difficult to migrate (mostly arrays - more details below) ./kubernetes/common/mariadb-init/resources/config/db_init.sh ./kubernetes/portal/components/portal-mariadb/resources/config/ \ mariadb/docker-entrypoint.sh ./kubernetes/helm/plugins/deploy/deploy.sh ./kubernetes/helm/plugins/undeploy/undeploy.sh ./kubernetes/sdnc/components/sdnc-prom/resources/bin/ensureSdncActive.sh $ find . -not -path '*/\.*' -name *.sh -exec checkbashisms -f {} + 2>&1\ | grep line | cut -d' ' -f 7- | sort | uniq -c | sort -k1,1nr 18 (bash arrays, ${name[0|*|@]}): 2 (declare): 1 ($FUNCNAME): 1 (shopt): 1 (trap with ERR|DEBUG|RETURN): https://mywiki.wooledge.org/Bashism#Arrays https://mywiki.wooledge.org/Bashism#Special_Variables https://mywiki.wooledge.org/Bashism#Builtins https://www.oilshell.org/release/0.5.alpha2/test/spec.wwz/builtin-trap.html Issue-ID: OOM-2643 Signed-off-by: Guillaume Lambert <guillaume.lambert@orange.com> Change-Id: Id06ad1d45004321a293bdd26038d8da5f7b6b4ac
2021-09-06[CONTRIB] Introduce certificate update use case in CertServicePiotr Marcinkiewicz3-1/+28
1. Make changes in order to allow performing KUR/CR in EJBCA: - Add Certificate Update Admin role - Enable EndEntityAuthentication module - Create and set CA with constant UID - Add configuration for provider. 2. Update CertService, which provides with new certificate update endpoint. 3. Update release-notes. Issue-ID: OOM-2753 Issue-ID: OOM-2754 Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> Change-Id: I9cb0cb4d6d6939ad229a4ea254f2bc35d45a3d52 Signed-off-by: Joanna Jeremicz <joanna.jeremicz@nokia.com>
2021-07-20[CONTRIB] Added imagePullSecrets to common template filesandreas-geissler1-0/+2
Added the missing definition for imagePullSecrets in the deployment.yaml of ejbca to support the registryGenerator Issue-ID: OOM-2791 Signed-off-by: andreas-geissler <andreas-geissler@telekom.de> Change-Id: Ib5397889f7e1159c8cac472d2565065e90fcc83d
2021-05-11[CONTRIB] Update ejbca to the newest versionPiotr Marcinkiewicz1-1/+1
Update ejbca version from 6.15.2.5 to 7.4.3.2 Issue-ID: OOM-2649 Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> Change-Id: I31929f6444e5a57b295d0664b2b1757992da8b8e
2021-03-24[DOC][COMMON] Prepare Honolulu releaseSylvain Desbureaux2-5/+5
Updating the documentation and bumping version to 8.0.0 Issue-ID: OOM-1 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I6f942f1466fed64264c44fb8fc0e1ffc93a98f18
2020-12-14[COMMON][MARIADB] Upgrade Mariadb DB galera versionSylvain Desbureaux1-7/+9
Mariadb DB Galera containers version is outdated and unmaintained. We need them to move to a new image provider. As new image provider is not compatible with our old templates, we also update the templates (by reworking bitnami mariadb-galera chart). An update of global mariadb image is also done in order to match mariadb galera version. Issue-ID: OOM-1720 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ib9976227759e90022183d4f37fc655143be4d6ac
2020-12-02[PLATFORM] Update cert service images to 2.3.1Remigiusz Janeczek1-4/+175
Update cert service and cert service client to allow IPAddresses, E-mails and URIs as SANs. Update ejbca configuration with IPAddresses, E-mail and URIs. Fix dcae bp inputs to use comma as SANs delimiter (from to allow use of IPv6) Issue-ID: OOM-2559 Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com> Change-Id: I71bea7f63540eb5d345bce6867fa25e098353d6d
2020-11-30[COMMON][DOC] Bump version GuilinSylvain Desbureaux2-5/+5
Update charts and requirements to 7.0.0. Create release notes for Guilin Update documentation Issue-ID: OOM-2638 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I965ed6b6ebb7d74bfddaff73edd3dd55a657841c
2020-11-29[CONTRIB] Uses new tpls for repos / imagesSylvain Desbureaux3-5/+6
This commit makes Contrib chart to use the new generator for repositories and images. As new templates doesn't work well with "sub charts", we move also subcharts to components folder. Issue-ID: OOM-2364 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I33ca36a2b25e67fd9f74ae408cd34f58405d6b80
2020-11-02[CONTRIB] Add requests/limits to EJBCASylvain Desbureaux2-1/+22
Having limits is important in order to have safe deployment. EJBCA didn't had one so let's add them. Issue-ID: OOM-2230 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I435afa6b0f065a66e180379b267227f4b8766478
2020-10-21[CONTRIB] change comment styleJakub Latusek4-0/+8
Signed-off-by: Jakub Latusek <j.latusek@samsung.com> Change-Id: I56a2ed47aedadcbce02e4e41f246e1e4183a4235 Issue-ID: OOM-2562
2020-10-14[CONTRIB] Fix EJBCA configurationRemigiusz Janeczek1-3/+3
Set CSR Subject Organizational Unit and Locality to be optional Issue-ID: OOM-2598 Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com> Change-Id: Ibb5f0fe7f75a1191906d26521eb96a6b991a295c
2020-10-05[CONTRIB] Fix chart subcomponent's readiness image name patternBartek Grzybowski1-0/+1
This aims to fix the changes done in https://gerrit.onap.org/r/c/oom/+/111509 which broke ejbca/netbox/awx readiness image name pattern. Change-Id: I65d2f19a96d43c61167d63eb047e960dc213c985 Issue-ID: OOM-2584 Signed-off-by: Bartek Grzybowski <b.grzybowski@partner.samsung.com>
2020-09-15[CONTRIB] Adjust EJBCA to issue certificates usable by servers.Remigiusz Janeczek5-0/+1551
Add configuration to EJBCA that allows to create keystores with extendedKeyUsage containing serverAuth. Issue-ID: AAF-1121 Signed-off-by: Remigiusz Janeczek <remigiusz.janeczek@nokia.com> Change-Id: I6fc1d228acb4edc089be11d66186cfb5006e9ad1
2020-09-04[GENERAL] Use readiness container v3.0.1Sylvain Desbureaux2-4/+3
Readiness container v3.x and up are now present in ONAP main repository. They're also not using root user anymore and then script path has changed. Finally, "job_complete" script has been integrated in main "ready" script. As those changes are significant, we must upgrade all the components at once. Depends-On: I5afa83892043f4844afe12e61724a8d368a9f2e0 Issue-ID: OOM-2545 Signed-off-by: Grzegorz Lis <grzegorz.lis@nokia.com> Change-Id: I0b4eb5dd86390273532d67d0a9696e1cfcadf110
2020-05-28[CONTRIB] Change EJBCA to work on HTTP 8080egernug1-0/+1
Issue-ID: SDNC-1136 Change-Id: I863bd7b280701c503ba45af6ba8e85f48ea18cfb Signed-off-by: egernug <gerard.nugent@est.tech>
2020-04-15[Contrib] Add EJBCA ServerSylvain Desbureaux8-0/+318
EJBCA Server is used to test that CMPv2 Certificate handling is well done in ONAP. Issue-ID: AAF-1083 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I5e2d25b68b5cd80d3c7bf282ce871dd81e711ff6