aboutsummaryrefslogtreecommitdiffstats
path: root/kubernetes/onap
AgeCommit message (Collapse)AuthorFilesLines
2024-08-15[COMMON][TIMESCALEDB] TemporalDB and securityContext settingsAndreas Geissler1-1/+0
- make pod/containerSecurityContext settings more configurable in _pod.tpl - fix MariaDB statefulset - Fix temporal statefulset to comply with security rules - Set timescaleDB via RepositoryGenerator Issue-ID: OOM-3310 Change-Id: I870f1e835020c2b30225741e700d1a6abfba8ad3 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-07-17[COMMON] Update various common chartsAndreas Geissler1-0/+7
- add kyverno policy fixes for cassandra Operator template - add new mongodb-init chart - new parameter in global values to support "NativeSidecar" which disables the deployment of the sidecar killer in jobs - update of "killSideCar" function to use the new option Issue-ID: OOM-3288 Issue-ID: OOM-3296 Change-Id: If7cafd10a14e9bc6b7843c0c2a62691c4e94ca71 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-07-04Merge "[AAI] Release version 1.14.0 of AAI"Andreas Geissler1-1/+1
2024-07-04Merge "[COMMON] Bump ONAP version"Andreas Geissler1-2/+2
2024-07-03[COMMON] Bump ONAP versionAndreas Geissler1-2/+2
Set new ONAP main chart version to 15.0.0 (Oslo) Issue-ID: OOM-3303 Change-Id: I3e2e05a9a46a6e179d30412b133bbff3ec1743f3 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-07-02[SDNC] Version bump for New DelhiDan Timoney1-1/+1
Update SDNC versions for New Delhi. This version includes support for Bierman as well as RFC 8040 versions of restconf, and includes fix for dgbuilder Update of chart version to 14.0.0 Issue-ID: CCSDK-4004 Signed-off-by: Dan Timoney <dtimoney@att.com> Change-Id: Ib34c524d527a7756ca93a0ebb010ac2ee3335d46
2024-07-01[AAI] Release version 1.14.0 of AAIFiete Ostkamp1-1/+1
- change major version to 14.X.X - use 1.14.0 images that contain Janusgraph update from 0.2.3 to 0.3.3 - add options for enabling profiling via jmx or remote debugging - use better port names in the chart Issue-ID: AAI-3876 Change-Id: Idb3a3fdf97df76c217c285ed47405fefaa31301d Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2024-06-10[COMMON] Disable components in default deployment in NewDelhiAndreas Geissler4-75/+164
Components are disabled from the default deployment, which - do not support the native Kafka interfaces (DMaaP MR removal) - dmaap/message-router - dcaegen2-services/dcae-datafile-collector - dcaegen2-services/dcae-heartbeat - dcaegen2-services/dcae-kpi-ms - dcaegen2-services/dcae-pm-mapper - dcaegen2-services/dcae-pmsh - dcaegen2-services/dcae-restconf-collector - dcaegen2-services/dcae-slice-analysis-ms - dcaegen2-services/dcae-snmptrap-collector - dcaegen2-services/dcae-son-handler - dcaegen2-services/dcae-tcagen2 - dcaegen2-services/dcae-ves-mapper - nbi - sdnc/dmaap-listener - are not supported by multiple releases - cli - holmes - oof - msb - vfc - vnfsdk - modelling - deactivation is agreed by TSC - change the order of deployment in helm deploy plugin Issue-ID: OOM-3301 Change-Id: I692117405473a2eb666304b421bdf7e4c4be06b3 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-06-05[AUTHENTICATION] Restructured keycloak and Oauth2-proxyAndreas Geissler5-0/+12
Changed keycloak-init to "authentication" and moved as root chart Moved oauth2-proxy to onap-authentication and updated to version 7.5.4 Use TCL proposal for REALM creation. Update keycloak-config-cli version to 5.12.0. Ingress AuthorizationPolicy creation for all defined accessRoles in the configured realms Issue-ID: OOM-3292 Issue-ID: OOM-3268 Change-Id: I0901cd416ca5da871931d7cf084cd35c55f804f1 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-11[COMMON] Update all ReadinessChecksAndreas Geissler3-3/+3
Use the new "service" feature of the readiness image to resolve startup dependencies. Issue-ID: OOM-3280 Change-Id: Ia331d51528676744e5e0479d1fd0ca02830c3499 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-04-03Merge "[COMMON][READINESS] Update readiness image and use service feature"Lukasz Rajewski3-3/+3
2024-03-27[COMMON][READINESS] Update readiness image and use service featureAndreas Geissler3-3/+3
Update the ReadinessCheck (13.1.0) to support the "services" feature of readiness image version 6.0.2 and use the feature in the charts under common (dgbuilder, etcd-init, mariadb-galera, mariadb-init, postgres-init) Additional exclude K8S API port (443) from Istio Sidecar communication to allow CNI Plugin Issue-ID: OOM-3280 Change-Id: Ibe030aa9debfc82e88f2ce5e309dd6fa2250f211 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-20[COMMON] Make imagePullSecrets configurableAndreas Geissler2-2/+16
Currently in ONAP the imagePullSecrets is hardcoded to 'onap-docker-registry-key' which is created by the repository-wrapper component. With this change the secrets can be configured via setting global.imagePullSecrets and optionally per image if it is configured as map (image.pullSecrets) Issue-ID: OOM-3284 Change-Id: I8644f9b46043b6014219c42928e057b149df43a4 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-14[COMMON] Harmonize resource settings, Part 2Andreas Geissler3-4/+4
Some settings are still wrongly interpreted (e.g. 0.02Gi) Therefor they are changed to non-floating numbers (e.g. 20Mi) Issue-ID: OOM-3273 Change-Id: Icc88dead1ac5b1df8629d6adcc438a739e20522e Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-06[POLICY] Update docker images to latest versionssaul.gill1-1/+1
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4907 Change-Id: I2a03efe9e39db70fd60e0790f206ad92cd8fe42b Signed-off-by: Saul Gill <saul.gill@est.tech>
2024-02-28[COMMON] Harmonize resource settingsAndreas Geissler3-16/+16
Update all resource settings to the kubernetes recommended normalized form. Fix ReadinessCheck resource limits. Issue-ID: OOM-3273 Change-Id: Ie10903b801e4dc1689bcec092162d711a431a7a6 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-12-08Merge "[PORTAL-NG] Publish ui and bff charts in OOM"Lukasz Rajewski12-0/+26
2023-12-07[COMMON][DOC] Add documentation for Montral and GatewayAPIAndreas Geissler1-0/+168
Add override file to use GatewayAPI as Ingress provider A precreated GW named "common-gateway" is used. Added documentation for Montreal like release notes, Infrastructure guides... Issue-ID: OOM-3184 Issue-ID: OOM-3242 Change-Id: I18107bac52abf34dbc0b217fd8b7542ba51aab84 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-12-07[PORTAL-NG] Publish ui and bff charts in OOMFiete Ostkamp12-0/+26
- upload ui and bff - preferences and history services will be added later - added portal-ng to ONAP chart and overrides Issue-ID: PORTALNG-66 Change-Id: I9182234be3afbdcdc95b23f0799a11d41384184e Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de>
2023-09-29[MARIADB][COMMON] Add support for mariadb-operatorAndreas Geissler1-1/+1
Add template functions for the mariadb-operator resources and update the mariadb-galera chart to support them Change the flag to "useOperator" in cassandra to the global setup and additional labels for cassandra resources Changed Policy DB users to support the new mariadb User and fixed db.sh script to wait for the DB user creation Use the new readiness image 5.0.1 with the "app-name" option Change the MariaDB-Galera Service to the "primary" to avoid Deadlocks Fix previous SDNC patch (https://gerrit.onap.org/r/c/oom/+/135308) and temporary disable MariaDB for SDNR, as it is not compatible to MariaDB 11 Issue-ID: OOM-3236 Change-Id: Ie63fcc9c6d5fa802d38c592b449e7ff8553c2ab9 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-08-22[DMAAP] Remove dmaap-bc chartsJack Lucas9-18/+0
The dmaap bus controller is no longer used, so the corresponding helm charts are being removed. Issue-ID: OOM-3238 Signed-off-by: Jack Lucas <jflos@sonoris.net> Change-Id: Ieb83b9a09b5ec804fb18f0c5e85f18f8c1317272
2023-08-08[COMMON] Cleanup charts from unsupported partsAndreas Geissler2-6/+0
Remove common charts (cert-wrapper, certInitializer, music) which are not needed anymore wor unsupported Issue-ID: OOM-3114 Change-Id: Iec3a49fd4f08b207961ddc572e2de873ee1480d5 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-08-08Merge "[COMMON][SA] Add default role creation to ServiceAccount"Micha? Jagie??o1-0/+4
2023-08-07[COMMON] Add support for Gateway-API in Ingress templateAndreas Geissler3-1/+41
Add options to set the Ingress provider and enhanced settings to provide different resource outputs for Ingress resurces Issue-ID: OOM-3184 Change-Id: I3a6ebf17191a558941d6e18fbfe676da0c78e487 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-08-04[COMMON][SA] Add default role creation to ServiceAccountAndreas Geissler1-0/+4
Adds an option "createDefaultRoles" to create roles instead of using the roles-wrapper Issue-ID: OOM-3233 Change-Id: I03eb95b641034637fa218010025b2c452aba09d1 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-06-29[COMMON] Bump ONAP versionAndreas Geissler1-32/+32
Update chart versions to 13.0.0 for Montreal Issue-ID: OOM-3173 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ie53fd021f01e459c464e44f4459a73ba0b00c172
2023-06-20[DOC] Update the London OOM GuidesAndreas Geissler1-1/+0
Fix failures in the OOM documentation and add missing descriptions. Issue-ID: OOM-3179 Issue-ID: OOM-3149 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ie88fc4ffc3888371690a4f39c47a6cc76451047b
2023-06-01Merge "[DOC] Update London OOM documentation"Andreas Geissler1-1/+1
2023-06-01[DOC] Update London OOM documentationAndreas Geissler1-1/+1
Add information: - new Deployment options (Production, Development) - move Istio deployment to base installation - add Gateway-API and Keycloak Installation instructions - split and rename of a few files for updated structure - changed rst section formatting as suggested in sphinx rtd theme - add London Release Notes Issue-ID: OOM-3159 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I98b8541d51daba982fd6c8be0c85fae676d53c13
2023-05-24[COMMON] Remove not supported componentsAndreas Geissler14-359/+0
Remove the following component charts: - AAF - CONSUL - CONTRIB - PORTAL - LOG - SNIRO-EMULATOR correct the helm deploy plugin Issue-ID: OOM-3074 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I93cd32d9a9dabbc4cdeda63d8c7b669a79cdea8a
2023-04-17[PLATFORM] Add OAuth2-Proxy to ONAPAndreas Geissler2-0/+3
As part of the ServiceMesh solution OAuth2-proxy will be used to enable a central authentication and authorization for ONAP Service Access. This patch delivers the function based on oauth2-proxy helmcharts: https://github.com/oauth2-proxy/manifests/tree/main/helm/oauth2-proxy Issue-ID: OOM-2489 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Iafa82813a7b9494cf13d77d47a39fc6030cb919b
2023-03-21[COMMON][SO] Create authorization policy templateAndrewLamb1-0/+5
Create template for istio authorization policies Issue-ID: OOM-3148 Change-Id: I081288e8e9b0e8347ee6fd0d656398126826c273 Signed-off-by: AndrewLamb <andrew.a.lamb@est.tech>
2023-02-06[COMMON] Fix nodePort creation in _service.tplAndreas Geissler1-1/+1
In case of non-TLS service the nodePort was not reserved and missed to disable tls for the services (tlsEnabled) Issue-ID: OOM-3094 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I7f5102a499f4b262556787b5db682e28a9ebcf81
2023-02-03[AAF] Disable the AAF deployment in LondonAndreas Geissler2-3/+3
Disable the AAF in the values.yaml and in the default helm deployment Issue-ID: OOM-3094 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I1b0030dabacafe53261eefcdb8956508cc73163b
2023-02-02Merge "[PLATFORM] Add Keycloak ONAP REALM import"Andreas Geissler1-2/+6
2023-01-23[PLATFORM] Add Keycloak ONAP REALM importAndreas Geissler1-2/+6
As part of the ServiceMesh solution Keycloak will be used to enable a central authentication and authorization for ONAP Service Access. This chart provides the import of a default ONAP Realm to an existing Keycloak Instance (alternative to a combined KC+REALM installation). It contains clients for the planned portal-ng. Make all subcomponents selectable Issue-ID: OOM-3021 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I677a3b9e200299c2cde7774e09db6cf33ac510b7
2023-01-19[COMMON] Add pre/postfix and customized port option for Istio IngressAndreas Geissler2-3/+25
Add new options for the created Ingress URLs (preaddr, postaddr) and allow to create Ingress configurations using customized ports Correction added to the installation of the Ingress Gateway. Issue-ID: OOM-3084 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ib31050c169799409c6e968adce7ff41e215e3ff9
2023-01-11Merge "[VID] Remove VID charts and refs"Andreas Geissler12-30/+1
2023-01-09[DCAE] DCAEMOD deprecationVijay Venkatesh Kumar5-12/+0
DCAEMOD deprecatrion in London https://lists.onap.org/g/onap-tsc/topic/dcae_mod_eol_with_london/92490689 Change-Id: I0a7b5774e408bd2fcefa46c34077ef59be9eae52 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Issue-ID: DCAEGEN2-3278 Issue-ID: DCAEGEN2-3290
2022-12-20[VID] Remove VID charts and refsefiacor12-30/+1
Remove VID charts and all refs Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: I167090a7d037e90484e42c6d12ec56ac329e1553 Issue-ID: OOM-3070
2022-12-14[APPC] Remove appc chart and refsefiacor14-62/+3
Removing appc chart Removing most appc refs Some SO data may need to be followed up with SO team Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: I183e3dfb7e33a3ada1ac9925ee96b9f32d89bd5a Issue-ID: OOM-3069
2022-11-30Merge "[COMMON] Correct Ingress template to create Istio GW/VS"Fiachra Corcoran3-0/+20
2022-11-25[DMAAP-STRIMZI] Move strimzi kafka bridgeefiacor11-9/+132
Move kafka bridge to strimzi chart. Update the onap overrides. Clean up some config in strimzi kafka. Add override options to kafka chart. Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: Iaaac143f22cae1dbfa50e89b1838a00e37eebdaf Issue-ID: DMAAP-1834
2022-11-25[COMMON] Correct Ingress template to create Istio GW/VSAndreas Geissler3-0/+20
The template should create for each Ingress service a single Gateway/VirtualService Resource, small update of service template Issue-ID: OOM-3000 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I480f8c7b6b9ca3a84813a9e96c4d796d332facc7
2022-11-10[COMMON] Bump ONAP versionAndreas Geissler1-40/+40
Update chart versions 12.0.0 for London Issue-ID: OOM-3046 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ic196235ff4f6ae14a7ecad799bd75a9666b2594a
2022-11-10Merge "[DCAE] DCAEGEN2-Services Service Mesh Patch"Andreas Geissler1-0/+2
2022-11-09[DCAE] DCAEGEN2-Services Service Mesh Patchrope2521-0/+2
Service Mesh patch for DCAE, changing port names to http. Remove aaf-cm readiness check, set tlsServer to false (excluding restconf) Added environment variables to pods to solve CBS problems Disable VES authentcation in SM override Change-Id: I42a12912f471d89bd4ebc6181f5454140e54a605 Issue-ID: OOM-2820 Issue-ID: DCAEGEN2-3277 Signed-off-by: rope252 <gareth.roper@est.tech> Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com>
2022-11-08[RESOURCES] Tune sm-onap overrides for service meshMaciej Wereski1-0/+3
Make sure unneeded components are disabled. Issue-ID: OOM-2431 Signed-off-by: Maciej Wereski <m.wereski@partner.samsung.com> Change-Id: Ic57d4ba8bd8cefcb355ee85e6f8d14f05706bcb3
2022-08-23[PLATFORM] Create Ingress Certificates for ServiceMeshAndreas Geissler1-0/+148
Add issuers and self-signed certificates for the Ingress controller Additionally a new override file is created for Istio Ingress setup Issue-ID: OOM-3001 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I6da12e54ecc4bbb15e3bcf1aa259e50f5be320b6
2022-08-19[DCAE] Remove platform charts and overridesVijay Venkatesh Kumar13-36/+0
All platform components has been disabled/deprecated since Jakarta release Change-Id: I8837ad4e6b9ef20cd7c94fefd6ec4b9cb7b20b08 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Issue-ID: DCAEGEN2-3002 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com>