Age | Commit message (Collapse) | Author | Files | Lines |
|
- Create Authoriation Policies for SO
- Add in initial authorized serviceaccounts for each sub component service
Issue-ID: OOM-3128
Change-Id: Id18b7bb6cdb180b1173966e797032118b5b20621
Signed-off-by: AndrewLamb <andrew.a.lamb@est.tech>
|
|
Remove AAF and TLS related chart entries
Use OOM templates for deployment and service definitions
Remove so-appc-orchestrator, as it is not supported anymore
Issue-ID: OOM-3106
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
Change-Id: I6256aa0fbbe172752cc3d8f83edde0880de7f629
|
|
Add service account to requirements.yaml, values.yaml and
deployment/statefulset
Issue-ID: OOM-2718
Signed-off-by: farida azmy <farida.azmy.ext@orange.com>
Change-Id: Ic17b8d9307216a7feeceefe6a1e6f0fe4839a637
|
|
Truststore given by AAF is only giving ONAP root_ca.
In order to have access to other platforms, we must also have all the
other ones.
As ONAP root ÇA and all known CAs are present in truststore All, let's
use it.
Issue-ID: OOM-2688
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I551b8e4a316dcf4f2dee1bf6c45327496a488cdd
|
|
This commit makes SO chart to use the new generator for repositories and
images.
Issue-ID: OOM-2364
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ife4e1fcfff565b3ada7e726913826e2c9f76bc07
|
|
so-db-secrets was used to create secrets
for db creds. But now, they are being created
from secrets metaconfig. It is not needed
Issue-ID: OOM-2534
Signed-off-by: Krishna Moorthy <krishna.moorthy6@wipro.com>
Change-Id: I0f0514b0b704e4643253b793ea4bd9ad92329759
|
|
SO secret was used to give truststore to SO components.
As we're using dynamic certificate retrieval, it's not needed anymore.
Issue-ID: OOM-2534
Issue-ID: SO-3348
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: I0eb2e052096923fc69bf5f1a1876d9a76a22102b
|
|
|
|
|
|
Per default, SO truststore has only one CA, the ONAP one.
But we also need MSB root CA. The process to onboard was broken and this
patch solves it
We also needs "common root CAs" in order to discuss with other
components such as the underneath OpenStack.
In this patch we also import all "known" root CA from truststoreONAPall.
Issue-ID: OOM-2606
Issue-ID: OOM-2607
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
Change-Id: Ia67bd4aec7a0b122fb9fda11e1e48c4e6e55430c
|
|
Helm3 check correctness of deployed yaml, fixed to deploy onap using
helm3
Signed-off-by: Jakub Latusek <j.latusek@samsung.com>
Change-Id: Ib2c3390d857f339bd89547e434ac0fddaa0c379c
Issue-ID: OOM-2562
|
|
Signed-off-by: Jakub Latusek <j.latusek@samsung.com>
Change-Id: I15281199766092663aa2c0f8b96ae16979ccaa5f
Issue-ID: OOM-2562
|
|
Communication
All of the credentials added have been accessed using the common secrets template.
In order to avoid hardcoding passwords etc.
I have added 2 jdbcUrl's for accessing the NFVO DB and the CamundaBPMN DB. These will be needed for code going into the SO codebase.
This change should not have an effect on any other charts, as properties have only been added to ETSI NFVO Charts.
Issue-ID: SO-3159
Change-Id: Ic6e0002ce64b872ac0c44fa1f124304c392e6a8b
Signed-off-by: rope252 <gareth.roper@est.tech>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|
|
This chart for SO-3157 was previously merged here: https://gerrit.onap.org/r/c/oom/+/111378
It was subsequently reverted here: https://gerrit.onap.org/r/c/oom/+/112538 due to use of staging image
It could then not be re-introduced until other OOM problems were fixed.
Chart has been updated in line with changes made here: https://gerrit.onap.org/r/c/oom/+/111328
Also included, SO-3225 - small change from this review: https://gerrit.onap.org/r/c/oom/+/112358
which could not be merged due to other oom problems, and then also due to revert.
Once this is merged, I will abandon old review at: https://gerrit.onap.org/r/c/oom/+/112358
Issue-ID: SO-3157
Change-Id: I3b59b9f655b395d7a22ea06814004baeb158b7d7
Signed-off-by: AndrewLamb <andrew.a.lamb@est.tech>
Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com>
|