Use generated keystore in CSITs

Added code to the CSITs to generate a self-signed certificate, which can
then be mounted over the policy-keystore of each docker image when it is
launched.
Converted xacml's API params to BusTopicParams.

Issue-ID: POLICY-3143
Change-Id: Ic1c25a7f29d87583b81515fd2caf72ba7c44924c
Signed-off-by: Jim Hahn <jrh3@att.com>

1 files changed, 38 insertions, 0 deletions

diff --git a/csit/gen_keystore.sh b/csit/gen_keystore.sh
new file mode 100755
index 00000000..d40ff68a
--- /dev/null
+++ b/csit/gen_keystore.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+#
+# ===========LICENSE_START====================================================
+#  Copyright (C) 2021 AT&T Intellectual Property. All rights reserved.
+# ============================================================================
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# ============LICENSE_END=====================================================
+#
+
+#
+# Generates a self-signed keystore for use by the various policy docker
+# images.
+#
+
+DIR="${0%/*}/config"
+DNSFILE="${DIR}/dns_keystore.txt"
+OUTFILE="${DIR}/ks.jks"
+
+dn="C=US, O=ONAP, OU=OSAAF, OU=policy@policy.onap.org:DEV, CN=policy"
+san=`paste -sd , "${DNSFILE}"`
+
+rm -f "$OUTFILE"
+
+keytool -genkeypair -alias "policy@policy.onap.org" -validity 30 \
+    -keyalg RSA -dname "$dn" -keystore "$OUTFILE" \
+    -keypass Pol1cy_0nap -storepass Pol1cy_0nap -ext "SAN=$san"
+
+chmod 644 "$OUTFILE"