summaryrefslogtreecommitdiffstats
path: root/kubernetes/policy/components
AgeCommit message (Collapse)AuthorFilesLines
2023-04-21[POLICY][COMMON] Create Authorization Policies for PolicyAndrewLamb28-2/+331
Policy- Add initial authorized serviceaccounts for each sub component service Common- Change authorizationpolicy to match on the label app Issue-ID: OOM-3139 Change-Id: I411877b933d6dfcbdee633f1440d16c9658438e5 Signed-off-by: AndrewLamb <andrew.a.lamb@est.tech>
2023-04-20Merge "[AAI] Kiali Validation - KIA0601 - Port name must follow [-suffix] form"Andreas Geissler1-3/+3
2023-04-20[AAI] Kiali Validation - KIA0601 - Port name must follow [-suffix] formFiete Ostkamp1-3/+3
- change portNames to have a protocol prefix Issue-ID: OOM-3166 Signed-off-by: Fiete Ostkamp <Fiete.Ostkamp@telekom.de> Change-Id: I3013ba629c951c12dfb7594aadc34dd0c47afab9
2023-04-19[POLICY] Fix policy-gui Ingress setupAndreas Geissler1-1/+1
Change the target service for the policy-gui Issue-ID: OOM-3165 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I803e32b2be0e35f9670b4a241e06c77009104325
2023-04-03[POLICY] Correct comtainer port in policy-xacml-pdpAndreas Geissler1-2/+1
Wrong port definition leads to missing Service selection Issue-ID: OOM-3120 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I0d843f6cff494e9062ee18321c5525499b868dcd
2023-03-23[POLICY] Cleanup of Helmcharts from AAF/TLS optionsAndreas Geissler58-980/+105
Remove AAF options and Certificate settings Disable Istio Sidecar injection for DB jobs due to problems during DB Migration Extended the timeouts for clamp-runtime-acm Issue-ID: OOM-3120 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I802fa2038535524f4696513acd5aa7772e0a3f35
2023-03-15[POLICY] Add Kserve participantaravind.est9-0/+617
Add kserve participant helm charts. Issue-ID: POLICY-4525 Signed-off-by: aravind.est <aravindhan.a@est.tech> Change-Id: I51f1ddb91302fd54c6e926f9f5c80e648b9a4a07
2023-03-10[POLICY-PPNT] Move policy-clamp-ppnt use case to use strimzi kafkaefiacor26-420/+475
Move acm to use strimzi common templates Enabled kafka by default for acm ppnts Update relevant config params Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: Ia23970e59f4ddaa83a07d224293b0155e28d0ab2 Issue-ID: DMAAP-1857
2023-03-05Merge "[COMMON] Fix resources indent"Andreas Geissler12-24/+12
2023-03-03[POLICY] Update docker images to latest versionssaul.gill21-36/+89
The image versions in policy values.yaml files have been updated Chart config update to match new images *** This commit is generated by a PF release script *** Issue-ID: POLICY-4570 Signed-off-by: saul.gill <saul.gill@est.tech> Change-Id: I347f3601c4a0d3c09cf5eaec6e8ed51878c1a02d Signed-off-by: saul.gill <saul.gill@est.tech>
2023-03-03[COMMON] Fix resources indentmiroslavmasaryk12-24/+12
Fix of resources template indent and therefore resources in components Issue-ID: OOM-3104 Signed-off-by: miroslavmasaryk <miroslav.masaryk@telekom.com> Change-Id: I825a3860db00cae4bb80b2aa2d82ac1a42b33124
2023-02-19[POLICY] Move policy dist to use strimzi templatesefiacor5-67/+41
Move policy dist to use strimzi templates Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: I4a03812a7545ce7a4fcd5443a2c0af89933b1a63 Issue-ID: DMAAP-1857
2023-01-31[DMAAP] Remove AAF dependencyefiacor8-19/+19
Remove DMaaP NodePorts Update dmaap-bc postgres setup and dbc-client image used by DCAE Use the http port of the dbcClient in the dmaapProvisioning job Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: Ie4888b58b6f7e1405ed67625900da89e58b5cb79 Issue-ID: DMAAP-1573
2023-01-03[POLICY-SDC-DIST] Upgrade policy-distribtuion to use kafka nativeefiacor4-15/+71
Policy dist to use kafka native Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: Id83dcd6c4af0bff37689178330827ce96246b5ae Issue-ID: DMAAP-1816
2022-12-23[POLICY] Add A1pms participant chartsaravind.est8-0/+567
Add A1pms participant helm charts Issue-ID: CCSDK-3816 Signed-off-by: aravind.est <aravindhan.a@est.tech> Change-Id: I4153f070e6f3394667b8ce4a714d0f8e91be4738
2022-12-01[POLICY] Update docker images to latest versionsliamfallon11-11/+11
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4462 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I6154e8409900eca422f6b9392883d50232d1f573
2022-11-10[COMMON] Bump ONAP versionAndreas Geissler12-58/+58
Update chart versions 12.0.0 for London Issue-ID: OOM-3046 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ic196235ff4f6ae14a7ecad799bd75a9666b2594a
2022-10-26Merge "[POLICY] Correction on PAP MR connection port"Fiachra Corcoran1-1/+1
2022-10-21[POLICY] Update docker images to latest versionsliamfallon11-11/+11
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4408 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I668a2acadccf8d36ccd3b7c1fb21bcfbe59d80da Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-21[COMMON] Harmonize all component ingress configAndreas Geissler1-1/+1
Harmonize all ingress definitions using schema: <component>-<application>-<api|ui> and adding plain_port attributes to support SM Issue-ID: OOM-3000 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: I8212774ba194758d7cf23bc2085edcc4eacd2539
2022-10-20[POLICY] Exclude JDBC from CLAMP ACM participantsliamfallon4-172/+15
CLAMP ACM participants do not use a databsae. However, Spring looks for a JDBC driver when it comes up unless the driver lookup is disabled. Issue-ID: POLICY-4375 Change-Id: I0cd22cea3972857b669031de0bfc04a07321ae92 Signed-off-by: liamfallon <liam.fallon@est.tech>
2022-10-17[POLICY] Correction on PAP MR connection portAndreas Geissler1-1/+1
On non-TLS setup the MR port is 3904 instead of 3905, which needs to be set in the papParameters file Issue-ID: OOM-3003 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Ie5ee14209660f00e69b6e4b1df5a992731f500f6
2022-10-12[POLICY] Service Mesh Compliance for Policyamatthews43-887/+261
Updating the basic requirements for Service Mesh Compliance within Policy. Changing the DB jobs and updating the configuration files to use HTTP Issue-ID: OOM-2253 Change-Id: If1aed68f0ed2f00d6a5cf06e5f95837f9405f65b Signed-off-by: amatthews <adrian.matthews@est.tech> Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-09-28[POLICY] Update config and db-migrator to 2.5.0jhh3-2/+7
The db-migrator image is upgraded to the latest release. Additionally, config changes to allow DB customization are included. Issue-ID: POLICY-4343 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I9e531d3baf218a30a885bc4258f9fdeb36eaab99 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-09-23[POLICY] Update docker images to latest versionsliamfallon12-12/+12
The image versions in policy values.yaml files have been updated *** This commit is generated by a PF release script *** Issue-ID: POLICY-4343 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I96f9d8d2857976f22f503810ba1d9bb42133cd6b
2022-09-21[POLICY] Update strimzi config in policy helm chartsSirisha_Manchikanti8-27/+168
Added strimzi kafka user and topics for policy apex-pdp in relevant helm charts. Updated kafka configuration for policy component helm charts. Corrected policy-group configuration in PAP Issue-ID: POLICY-4134 Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech> Change-Id: I0f38f4919898c04e4f4dadc820a7627eee6e022a
2022-09-02[POLICY] Change log file path in acm-runtimeSirisha_Manchikanti1-2/+2
Issue-ID: POLICY-4341 Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech> Change-Id: I642e7df1c12f59c78d49a494857652bb5f9dd974
2022-08-17Merge "[COMMON] Update Makefiles to enable parallelization"Jack Lucas1-3/+10
2022-08-17[COMMON] Update Makefiles to enable parallelizationAndreas Geissler1-3/+10
All Makefiles are updated to support SKIP_LINT option, have a defined order of compilation (common -> components) to support the parallel compilation of charts using: make all -j8 (for 8 Jobs). Additionally use cm-push instead of push to use the new K8S/Helm version Issue-ID: OOM-3011 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: If9903c9d5bc646b5ce54075acc616e98c4b6706e
2022-07-25[POLICY] Add strimzi kafka config from helm chartsSirisha_Manchikanti15-2/+248
Add strimzi kafka user and topics for policy components in relevant helm charts. Issue-ID: POLICY-4133 Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech> Change-Id: If0e1107c03acdfed83bfc359a45ad546d134bd30
2022-07-18[POLICY] Add overridable helm paramaters for k8s ppntrameshiyer273-7/+22
Make permitted repository list overridable from values.yaml CofigMap populates the application properties file with required values. Issue-ID: POLICY-4237 Signed-off-by: zrrmmua <ramesh.murugan.iyer@est.tech> Change-Id: Ib48716f12bc5f4d22fbda8e22fd2077e0e982ec3
2022-06-24[COMMON] Bump ONAP versionAndreas Geissler13-62/+62
Use version 11.0.0 for Kohn Issue-ID: OOM-2971 Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de> Change-Id: Icc0e0839fc6def2035383b5fa4c9153fc15fafda
2022-05-13[POLICY] Fix cluster role binding name in k8s ppntrameshiyer271-8/+2
Updated cluster role binding name and service account name to acm terminology Issue-ID: POLICY-4170 Signed-off-by: zrrmmua <ramesh.murugan.iyer@est.tech> Change-Id: I1b52d6a5d01921d70fce53884558a3ce58f98e19
2022-05-04[POLICY] Upgrade image versionsjhh12-12/+12
These images tackle security issues in libraries. Issue-ID: POLICY-4071 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I88297b05f05e0a847d10333e60e665f89ccb424d
2022-04-23[POLICY] GUI changes for Spring boot migrationdanielhanrahan3-63/+49
Update chart to run Spring Boot version of policy-gui Remove obsolete nginx config Issue-ID: POLICY-3980 Signed-off-by: danielhanrahan <daniel.hanrahan@est.tech> Change-Id: I34ff95be09a416e07d2f4ad8bdaea71c1a1e7111
2022-04-22[POLICY] Update components to latest releasejhh9-9/+9
The exceptions are policy-drools-pdp, policy-xacml-pdp, and policy-gui that are handled in different reviews. Issue-ID: POLICY-4089 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I5d03ce22d9c69380c6f76b24383555cf71803ea4 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-04-22[POLICY] Disable prometheus monitoring by defaultRashmi Pujar12-29/+11
ServiceMonitor resource not part of native Kubernetes, it is a custom resource defined via Prometheus operator. Prometheus operator deployment is a pre-requisite to enable creating a ServiceMonitor objects. Issue-ID: POLICY-4096 Signed-off-by: Rashmi Pujar <rashmi.pujar1@bell.ca> Change-Id: Ia672d5d5982e61c00f8effccad0929240f54efb2
2022-04-22[POLICY] Increase hikari connection pool size for PAP & APIPrakhar Pandey2-0/+4
We saw some bottlenecks during S3P testing of API component due to the default connection pool size of 10. Setting it to 20 based on the number of parallel threads used for performance tests. The change is required because prior to spring boot migration (Istanbul and earlier), the default connection size was 32 so it was never a problem for running load tests. Issue-ID: POLICY-4007 Change-Id: Iaaa573d5fce0298e3aff05a27c2e845840a6cb06 Signed-off-by: Prakhar Pandey <prakhar.pandey@bell.ca>
2022-04-19[POLICY] Enhance liveness probes and metricsjhh7-10/+75
- added logback prometheus support for xacml and drools. - enabled enhanced healthchecks. - enabled enhanced liveness probes for drools pdp to detect stuck PDP application and restart it. - add prometheus servicemonitor for drools. - set latest docker image versions for drools-applications and xacml Issue-ID: POLICY-3386 Issue-ID: POLICY-4089 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I0ffd9bf93452f8a7a63deb33f2103f9b80476d07 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2022-04-13[POLICY] Rename from TOSCA Control Loop to ACMFrancescoFioraEst34-97/+285
Update CLAMP OOM Configuration for rename from TOSCA Control Loop to ACM Issue-ID: POLICY-3942 Change-Id: I2044dfb68f22dc27d701c7bea1e2a2eab69cb28d Signed-off-by: FrancescoFioraEst <francesco.fiora@est.tech>
2022-03-31[POLICY] Enable cluster role for k8s-ppntrameshiyer271-2/+26
Cluster role is required for the k8s-ppnt to perform helm deployments on the cluster Issue-ID: POLICY-3748 Signed-off-by: zrrmmua <ramesh.murugan.iyer@est.tech> Change-Id: Ib916803d22f6ecf0ed16e8c75fe52b4e567069ca
2022-03-29[POLICY] Update CLAMP OOM Configuration for Remove Clamp frontendFrancescoFioraEst10-503/+0
Remove clamp-frontend code, as this is moved to policy-gui Issue-ID: POLICY-3358 Change-Id: Id6402815ead572e8cec9f1743709d6de6f28b79c Signed-off-by: FrancescoFioraEst <francesco.fiora@est.tech>
2022-03-22[POLICY] OOM Jakarta changes for PAP,API & PDPsa.sreekumar14-198/+262
This review contains the below changes: 1) PAP config changes for spring boot migration 2) savePdpStatistics flag is disabled by default 3) DMaaP connectivity added to PAP consolidated healthcheck 4) Improve PAP & API readiness probe from TCP to HTTP GET based healthcheck api 5) API config changes for springboot migration 6) Update the docker image versions for Jakarta. Change-Id: I8dfc821b1245cd4ef6bdedad7802deb4ac3297e3 Issue-ID: POLICY-3750 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2022-03-22Merge "[POLICY] Enable prometheus integration for policy fwk"Sylvain Desbureaux10-0/+230
2022-03-21[POLICY] Enable prometheus integration for policy fwkRashmi Pujar10-0/+230
1. Define serviceMonitor for policy components 2. Changes to common serviceMonitor tpl file to include tls params in authentication config, and to provide ability to overrride labels. Issue-ID: POLICY-3779 Signed-off-by: Rashmi Pujar <rashmi.pujar1@bell.ca> Change-Id: I79441958698271d9118efb78cfd121433e201ebd
2022-03-18[POLICY] Accept Permit list repositoriesLathish1-2/+10
- K8s participant to accept only permitted and secured repositories Issue-ID: POLICY-3894 Change-Id: If602ecc35384d66990a81fd470d24d76e95725fd Signed-off-by: Lathish <lathishbabu.ganesan@est.tech>
2022-02-25Merge "[POLICY] Disable helm endpoints by default in k8s participant"Sylvain Desbureaux1-1/+18
2022-02-23[POLICY] Disable helm endpoints by default in k8s participantLathish1-1/+18
- Disable all helm operations through REST endpoints. - Add the context path Issue-ID: POLICY-3894 Change-Id: Ib4b375ab8d52e06a112a005b60832545a95d62e7 Signed-off-by: Lathish <lathishbabu.ganesan@est.tech>
2022-02-07[POLICY] Fix SSL Failure in Clamp BackendLathish1-1/+1
- Call the HTTPS of ControlLoop Runtime Issue-ID: POLICY-3874 Change-Id: I4ec6ef19e779096393cfb5812832f924dde63596 Signed-off-by: Lathish <lathishbabu.ganesan@est.tech>
2022-01-11[POLICY] Update docker images to latest versionsliamfallon14-14/+25
The image versions in policy values.yaml files have been updated and the CLAMP runtime configuration has been updated to use Spring style configuration *** This commit is generated by a PF release script *** Issue-ID: POLICY-3827 Signed-off-by: liamfallon <liam.fallon@est.tech> Change-Id: I220773eb7728d8f5cff36faad388970e1732f12c Signed-off-by: liamfallon <liam.fallon@est.tech>