aboutsummaryrefslogtreecommitdiffstats
path: root/kubernetes/policy/components/policy-api/templates
AgeCommit message (Collapse)AuthorFilesLines
2024-04-13[COMMON] Remove hostPath entriesAndreas Geissler1-6/+0
As hostPath volumes violate Cluster policies, they are not allowed within pod definitions. In our case only the "etc/localtime" is mounted to get the timezone of the host, which is not required. Issue-ID: OOM-3287 Change-Id: I6c8c8ea4e982d7e95e73f5fed7fc07ed47ceaab7 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-20[COMMON] Make imagePullSecrets configurableAndreas Geissler1-2/+1
Currently in ONAP the imagePullSecrets is hardcoded to 'onap-docker-registry-key' which is created by the repository-wrapper component. With this change the secrets can be configured via setting global.imagePullSecrets and optionally per image if it is configured as map (image.pullSecrets) Issue-ID: OOM-3284 Change-Id: I8644f9b46043b6014219c42928e057b149df43a4 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-03-14[COMMON] Harmonize resource settings, Part 2Andreas Geissler1-2/+2
Some settings are still wrongly interpreted (e.g. 0.02Gi) Therefor they are changed to non-floating numbers (e.g. 20Mi) Issue-ID: OOM-3273 Change-Id: Icc88dead1ac5b1df8629d6adcc438a739e20522e Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2024-02-28[COMMON] Harmonize resource settingsAndreas Geissler1-0/+7
Update all resource settings to the kubernetes recommended normalized form. Fix ReadinessCheck resource limits. Issue-ID: OOM-3273 Change-Id: Ie10903b801e4dc1689bcec092162d711a431a7a6 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
2023-05-05Merge "[POLICY] Update docker images to latest versions"Andreas Geissler1-1/+5
2023-05-04[POLICY] Update docker images to latest versionssaul.gill1-1/+5
The image versions in policy values.yaml files have been updated Added native configurable support in pap and api for strimzi Added configurable support in api and pap for postgres *** This commit is generated by a PF release script *** Issue-ID: POLICY-4648 Change-Id: Ia91ea4a8babc850d0854e299eb80541c1d38285d Signed-off-by: saul.gill <saul.gill@est.tech>
2023-04-21[POLICY][COMMON] Create Authorization Policies for PolicyAndrewLamb1-0/+17
Policy- Add initial authorized serviceaccounts for each sub component service Common- Change authorizationpolicy to match on the label app Issue-ID: OOM-3139 Change-Id: I411877b933d6dfcbdee633f1440d16c9658438e5 Signed-off-by: AndrewLamb <andrew.a.lamb@est.tech>
2023-03-23[POLICY] Cleanup of Helmcharts from AAF/TLS optionsAndreas Geissler2-57/+7
Remove AAF options and Certificate settings Disable Istio Sidecar injection for DB jobs due to problems during DB Migration Extended the timeouts for clamp-runtime-acm Issue-ID: OOM-3120 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I802fa2038535524f4696513acd5aa7772e0a3f35
2023-03-03[COMMON] Fix resources indentmiroslavmasaryk1-2/+1
Fix of resources template indent and therefore resources in components Issue-ID: OOM-3104 Signed-off-by: miroslavmasaryk <miroslav.masaryk@telekom.com> Change-Id: I825a3860db00cae4bb80b2aa2d82ac1a42b33124
2022-10-12[POLICY] Service Mesh Compliance for Policyamatthews2-3/+3
Updating the basic requirements for Service Mesh Compliance within Policy. Changing the DB jobs and updating the configuration files to use HTTP Issue-ID: OOM-2253 Change-Id: If1aed68f0ed2f00d6a5cf06e5f95837f9405f65b Signed-off-by: amatthews <adrian.matthews@est.tech> Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-04-22[POLICY] Disable prometheus monitoring by defaultRashmi Pujar1-2/+2
ServiceMonitor resource not part of native Kubernetes, it is a custom resource defined via Prometheus operator. Prometheus operator deployment is a pre-requisite to enable creating a ServiceMonitor objects. Issue-ID: POLICY-4096 Signed-off-by: Rashmi Pujar <rashmi.pujar1@bell.ca> Change-Id: Ia672d5d5982e61c00f8effccad0929240f54efb2
2022-03-22[POLICY] OOM Jakarta changes for PAP,API & PDPsa.sreekumar2-5/+13
This review contains the below changes: 1) PAP config changes for spring boot migration 2) savePdpStatistics flag is disabled by default 3) DMaaP connectivity added to PAP consolidated healthcheck 4) Improve PAP & API readiness probe from TCP to HTTP GET based healthcheck api 5) API config changes for springboot migration 6) Update the docker image versions for Jakarta. Change-Id: I8dfc821b1245cd4ef6bdedad7802deb4ac3297e3 Issue-ID: POLICY-3750 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2022-03-21[POLICY] Enable prometheus integration for policy fwkRashmi Pujar1-0/+23
1. Define serviceMonitor for policy components 2. Changes to common serviceMonitor tpl file to include tls params in authentication config, and to provide ability to overrride labels. Issue-ID: POLICY-3779 Signed-off-by: Rashmi Pujar <rashmi.pujar1@bell.ca> Change-Id: I79441958698271d9118efb78cfd121433e201ebd
2021-07-20[POLICY] Update chart with service accountfarida azmy1-0/+1
Add service account to requirements.yaml, values.yaml and deployment/statefulset Issue-ID: OOM-2725 Signed-off-by: farida azmy <farida.azmy.ext@orange.com> Co-authored-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I67c689d65ff004c3919256449d0bfaf976514a93
2020-12-16[POLICY] Remove bash shellTaka Cho1-1/+1
removal any GPL-3.0 and plus license for detail, please see the below Issue-ID Issue-ID: POLICY-2847 Change-Id: I491c0762c9dc494092cbc4c66fed4a2c7d0a9ab2 Signed-off-by: Taka Cho <takamune.cho@att.com>
2020-11-27[POLICY] Uses new tpls for repos / imagesSylvain Desbureaux1-3/+3
This commit makes Policy chart to use the new generator for repositories and images. Issue-ID: OOM-2364 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: Ibc592fdc393e37c075ce905027d49d70fcbe4d84
2020-10-21[POLICY] change comment styleJakub Latusek3-0/+6
Signed-off-by: Jakub Latusek <j.latusek@samsung.com> Change-Id: I1ef11f209f5070f6f6b9f512f92a704ac08f3529 Issue-ID: OOM-2562
2020-10-09[POLICY]release new imagesTaka Cho1-1/+1
1. releasing new policy docker 2. remove BASE64 password 3. remove legacy operation type in apex Issue-ID: POLICY-2770 Change-Id: Ic1c8315687cb726c3888a4345bc163d42994fa52 Signed-off-by: Taka Cho <takamune.cho@att.com>
2020-09-11[POLICY] new image versionsjhh1-1/+0
- Changes needed to support the new images. - Add resources to galera config job (POLICY-2820) Issue-ID: POLICY-2789 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Id3b87a5931c64f729afcf77861d12fd5e25a5531 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2020-09-04[GENERAL] Use readiness container v3.0.1Sylvain Desbureaux1-2/+2
Readiness container v3.x and up are now present in ONAP main repository. They're also not using root user anymore and then script path has changed. Finally, "job_complete" script has been integrated in main "ready" script. As those changes are significant, we must upgrade all the components at once. Depends-On: I5afa83892043f4844afe12e61724a8d368a9f2e0 Issue-ID: OOM-2545 Signed-off-by: Grzegorz Lis <grzegorz.lis@nokia.com> Change-Id: I0b4eb5dd86390273532d67d0a9696e1cfcadf110
2020-08-27[POLICY] certInit support + refactoringjhh4-0/+220
Several changes are including in this patch: - certInitializer support (POLICY-2615, REQ-361) - renamed policy objects to start with "policy-" prefix (POLICY-1000) - add resources section to components that did not have or had it incorrectly set up rendering null (POLICY-2502) - Removal of legacy policy-engine components (POLICY-2743) - Miscellaneous refactoring of charts (POLICY-2745) - update pdp legacy reference to policy-xacml-pdp from pdp (legacy) Issue-ID: POLICY-2615 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I8b6984a663bbb14d331a366ec02b6dd38755cde7 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>