summaryrefslogtreecommitdiffstats
path: root/config
AgeCommit message (Collapse)AuthorFilesLines
2018-10-31Added config params to scale-out policyJim Hahn1-1/+1
Removed requestParameters and reverted name. Change-Id: Ife2f6855a1f9977d06a881e9b243226aed99a53d Issue-ID: POLICY-1240 Signed-off-by: Jim Hahn <jrh3@att.com>
2018-10-25AAF Heat installation configuration3.0.0-ONAPJorge Hernandez1-0/+1
The docker repo (for heat) by default will come with AAF configuration flag set to false. An installer could simply set it to true to enable AAF. The main reason for this default in heat installs is to not deal with routinely failures of CSIT tests (as they will need either an AAF running or divergent installations scripts). OOM installations instead will have AAF enabled by default. Change-Id: I2014877285ea776b057b45cf8875d4da6a6730a9 Issue-ID: POLICY-1216 Signed-off-by: Jorge Hernandez <jorge.hernandez-herrero@att.com>
2018-10-09Change DMaaP hostnames1.3.0Jorge Hernandez3-6/+6
Change-Id: I7efadaf3f8230a8433ea7a6fe8367459581043e5 Issue-ID: POLICY-1194 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-10-05ONAP Heat Install support for SDNCJorge Hernandez1-0/+6
Change-Id: I113094a4357ad1e9678f297054f31d4e02cfffe7 Issue-ID: POLICY-1183 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-09-28default passwords to aaf default oneJorge Hernandez2-5/+5
Default heat installation credentials to be the same regardless aaf is in use or not. This will allow transparent switching from AAF to non-AAF support without requiring clients (robot, consul, etc ..) reconfiguring themselves regardless of what we are using. Change-Id: I2f3c0cbf93d6369168fb0317ff78a13e35c08c12 Signed-off-by: Jorge Hernandez <jh1730@att.com> Issue-ID: POLICY-1156 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-09-24CADI AAF changes for policy/dockerMichael Mokry1-0/+3
Added variables for cadi properties Changed property values based on comments and removed resource property Change-Id: I5d7ea2383e306c251f129625b9e9a671c2704ed5 Issue-ID: POLICY-913 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-19aaf related install configurationJorge Hernandez1-2/+7
Change-Id: If5f1344cb0e9468fe8a807bd4dc7cb205d3f1bb1 Signed-off-by: Jorge Hernandez <jh1730@att.com> Issue-ID: POLICY-1043
2018-09-19Preload Guard PoliciesMichael Mokry1-130/+195
Modified push_policies.sh to create and push Guard Min/Max and Frequency Limiter policies I also converted tabs to spaces throughout the file while I was in there Change-Id: Idcf5059988c9f291e6be44a069894fd2b864436f Issue-ID: POLICY-968 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-19Add Config and CL policies for OOF PCI use caseSaravanan A1-0/+29
Following config policies to be defined for OOF PCI use case for Casablanca: PCI-Handler MS config policy OOF config policy Control loop policy Change-Id: I0e6e0370a875dbd8eb4857d0c15e4219c252efac Issue-ID: POLICY-1086 Signed-off-by: Saravanan A<saravanan.a75@wipro.com>
2018-09-18Add Config and CL policies for OOF PCI use caseSaravanan A1-0/+68
Following config policies to be defined for OOF PCI use case for Casablanca: PCI-Handler MS config policy OOF config policy Control loop policy Change-Id: I2cd0c2221ee0b950463ab939b6426def14c8b69a Issue-ID: POLICY-1086 Signed-off-by: Saravanan A<saravanan.a75@wipro.com>
2018-09-13Provide pre-loaded SDNC Naming policiesMichael Mokry1-0/+54
Added curl commands to created and push SDNC vFW and vPG Naming policies during installation Change-Id: I01b1254199b96dbea5558a31ba8900d76c655ded Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-08-29Fix cert issue with push-policies scriptMichael Mokry1-17/+17
This should also fix the issues with the CSIT tests. I made changes to the push-policies.sh script to add option -k and bypass certificate errors Change-Id: I5b8bdc1161bc0bc88122884eedd7e63042d9ba42 Issue-ID: POLICY-781 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-08-22policy/docker changes to support PE httpsMichael Mokry7-27/+27
Made changes to conf files and push-policies.sh to set variables and use https in urls Change-Id: I319e800a33756e771f57a8ef8bd611925fdd9299 Issue-ID: POLICY-781 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-08-16default install passwords for Policy keystoresJorge Hernandez2-0/+2
Change-Id: I5402135e561477522aa23ec0551bcd24dad60120 Issue-ID: POLICY-1057 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-31match brmsgw.conf dependency with dev branchJorge Hernandez1-1/+1
Change-Id: Ia5ae42f19930e34bac49b556e3217988e613bcb0 Issue-ID: POLICY-877 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-31minor cosmetic tweaks for 1.2.3Jorge Hernandez3-5/+5
The changes are cosmetics to leave the docker repo a bit more tidy for release. The switch from openecom.org to onap.org is functionally noop .conf files as both domain names are supported. The BRMS_DEPENDENCY_VERSION is noop as it will be properly substituted by the underlying docker-install.sh invocation during docker brmsgw container instantation bringup. Change-Id: I154a1e1560dd7083609080d8f56e47e4d62b99eb Issue-ID: POLICY-877 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-23Adjust conf files for loggerv1.2.32.0.0-ONAP2.0.0-ONAPJim Hahn2-2/+2
Because this shares the log4j.properties embedded within policy/common, the target for the IntegrityMonitor.log cannot be changed. Thus the PARSERLOGPATH was modified to point to that location. Change-Id: Ib68ddb327aa9ef7520314dad354d52c2f409d42e Issue-ID: POLICY-759 Signed-off-by: Jim Hahn <jrh3@att.com>
2018-05-22Use hard-coded path in conf filesJim Hahn2-4/+4
Replace ${{POLICY_LOGS}} with hard-coded path in conf files, as the former does not get expanded. Change-Id: I7686ba75656086ffccb714289b927cf75f8b3e72 Issue-ID: POLICY-759 Signed-off-by: Jim Hahn <jrh3@att.com>
2018-05-22heat install - update to use onap.orgJorge Hernandez1-4/+4
Cosmetic in heat install as openecom.org still works. Better to use onap.org domain moving forward though. Change-Id: Ic3f843beb7c58326c5d6db1d8cba70c6e43a65db Issue-ID: POLICY-853 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-15Use preinstall hook in docker image to get CL appJorge Hernandez1-0/+52
Change-Id: Id096c43bb3cb7e88ba1ec2e3ca1a788bd01847a4 Issue-ID: POLICY-797 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-13allow db non-root access toJorge Hernandez1-1/+1
The databases to which the non-root policy user are granted access are: operationshistory10 (guard) and pooling (pooling feature). Change-Id: Id8653e872a7750fe9e037ad2872b5541241ef4e7 Issue-ID: POLICY-788 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-09allow non-root user to access migration databaseJorge Hernandez1-1/+1
Change-Id: I890daecb9b24bbc21c989f4e3c5fe9c4d1aa2005 Issue-ID: POLICY-788 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-09Add pooling topicJim Hahn1-0/+14
Added pooling topic for amsterdam-closed-loop feature. Only used when pooling is enabled. Moved property to feature-specific conf file and renamed the property so it isn't specific to amsterdam-cl. Change-Id: I98ad8ca5bbcf910d204b460cadd15345a1d71370 Issue-ID: POLICY-782 Signed-off-by: Jim Hahn <jrh3@att.com>
2018-05-08default dcae consumer group configurationJorge Hernandez1-0/+1
The idea is that by default all pdp-ds will share the same dcae topic, therefore load-balanced in onsets. Change-Id: Id92906f123c4b8b21f84629bdf0a7fe03dc70aa1 Issue-ID: POLICY-766 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-05-07fix PE DB transaction lock timeouts.Jorge Hernandez1-2/+2
I hope this fixes all DB related issues that are being seen by integration teams. The failOver jdbc parameters + perhaps some changes in underlying code and persistence libraries may have been causing the PAP to become useless. A thread dump shows that a significant number of threads were in timed-wait state, waiting on a lock trying to acquire a connection. In SB07, the system became useless in terms wouldn't accept any transaction. These changes to the PE provided jdbc parameters seems to be behaving in the expected way, and the expectation is that fixes the problems (behavior is good in own OOM lab). It is thought that this may perhaps solve POLICY-773, POLICY-775, POLICY-779, and perhaps POLICY-776. Change-Id: Ib2319b68b5a503f61c2cb04998c549b7b97f9f31 Issue-ID: POLICY-777 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-04-25remove keystores from docker-compose projectJorge Hernandez2-0/+0
These are companion changes to https://gerrit.onap.org/r/#/c/44687/ https://gerrit.onap.org/r/#/c/44715/ The docker-compose instance still could add a policy-keystore of its liking here, in which case it will be honored and replaced the default one cooked in the image. Change-Id: I9f8aba7bdeb232a38b971ea60d7b88c135d08a7d Issue-ID: POLICY-747 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-04-18Use AAF root certificatesJorge Hernandez2-0/+0
swap truststore with AAF provided one, changed the password from the default jdk one to the default one used in policy installations Change-Id: I106408e7fdbf87e3bd2a4822387db05c79a0524c Issue-ID: POLICY-747 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-04-16Add missing license headersPamela Dragosh17-1/+221
I know some of these files should be removed, but let's do that in a different JIRa. Issue-ID: POLICY-741 Change-Id: Id974ff1bcfa9d34d8828e644dce337d8cdc056eb Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-04-06Script to make an application to drools dockerJorge Hernandez1-0/+124
Change-Id: I25cdf1bb728c381395e5531913be6f51979dfb20 Issue-ID: POLICY-735 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-03-28make drools and nexus containers restartableJorge Hernandez1-1/+1
use dockerhub image for nexus instead of producing our own. 9081 is exposed in the host. Issue-ID: POLICY-575 Change-Id: Ia72303507aee071e0f12e9a77b3ce03bae8b3ed7 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-03-27change logging location default for PEJorge Hernandez1-1/+1
Change-Id: I21e71cd635b32186a507f9ba9e40fc85aa413339 Issue-ID: POLICY-533 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-03-08Change default log location per logging guidelinesJorge Hernandez2-2/+2
Change-Id: Idada49011808038a195ef2c499688d0e88b301cd Issue-ID: POLICY-554 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-03-08configuration option for log locationJorge Hernandez2-0/+2
Change-Id: I083c09054916655bdbaeb50414b76f821fcd579a Issue-ID: POLICY-554 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-02-27docker db image simplificationJorge Hernandez2-0/+12
1. use mariadb image from docker registry to simplify set up. 2. remove harcoded root and user mariadb accounts 3. restrict access to user account to just specific databases. Change-Id: Iaa916dbf2de2474fcc483a4be6167b4b92a2de61 Issue-ID: POLICY-650 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-01-30Change keystore paswordsTemoc Rodriguez4-5/+5
Changed the keystore password on both drools and pe keystores to match the changed default given in base.conf file. Issue-ID: POLICY-520 Change-Id: Id052815f8bd84e866042eb93a1d2901d279d5115 Signed-off-by: Temoc Rodriguez <cr056n@att.com>
2018-01-24Copy Keystore to PE for TLS SupportTemoc Rodriguez1-0/+0
Added copy of drools keystore to config/pe so that container has a copy of the self-signed cert to enable TLS encrpytion with automatic install process. Added copy to do-start.sh to install keystore in final destination in pap container. Issue-ID: POLICY-520 Change-Id: Ie6394b5b79ec98cfa6231c46b21a0b4bfb20869a Signed-off-by: Temoc Rodriguez <cr056n@att.com>
2017-11-21Bump minor versionJessica Wagantall1-1/+1
Bump minor version in preparation for Amsterdam branching. Change-Id: I95eba101b459e466bebca385c7a5ea1b686da0bb Issue-ID: CIMAN-120 Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
2017-11-15Update to use 1.1.2-SNAPSHOTPamela Dragosh1-1/+1
Release 1.1.1, update to 1.1.2 Issue-ID: POLICY-436 Change-Id: I516e4644e759dc96712b5d7444ae700a21544592 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2017-11-09brmsgw 1.1.0 dependencies instead of 1.1.1Jorge Hernandez2-3/+3
Change-Id: I4356091f168a9bb9ada7756611728e04f68e2a3e Issue-ID: POLICY-436 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2017-11-04non onap jars converted to onap versionv1.1.01.0.0-ONAP1.0.0-AmsterdamJorge Hernandez1-1/+1
xacml-att is a 3rd party library that should not ve expanded to the onap version in brms gw Issue-ID: POLICY-406 Change-Id: Ifddcedd482094ba3cff5d21c8e6b327efc408fb9 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2017-10-26Updated the MicroService Policesrb71471-3/+3
Issue-ID: POLICY-373 Change-Id: I7526a5a8f6a93587a9be4aacc4b8c596da8b0122 Signed-off-by: rb7147 <rb7147@att.com>
2017-10-20change default DCAE_SERVERS default configurationJorge Hernandez1-1/+1
new default is vm1.mr.simpledemo.openecomp.org for Amsterdam release. Issue-ID: POLICY-363 Change-Id: I88f63058831a92e4c385743e85fcefaffd0bebbd Signed-off-by: Jorge Hernandez <jh1730@att.com>
2017-10-18Updated the Portal Propertiesrb71471-3/+3
Issue-ID: POLICY-354 Change-Id: I7451ed24988952eb387384fd52bfbb884493640b Signed-off-by: rb7147 <rb7147@att.com>
2017-10-17Updated Operational Policy payloadrb71471-7/+7
Issue-ID: POLICY-342 Change-Id: Ia5c0c25cc15a4f6f2d5b7cb10b27729b9968d127 Signed-off-by: rb7147 <rb7147@att.com>
2017-10-13Updated Push Script to Match ComtroloopNamerb71471-3/+3
Updated the config policies to match operational policy controlloopname. Issue-Id: POLICY-342 Change-Id: I1fd94efb43895bdee7d179644c1cbfb6f0725241 Signed-off-by: rb7147 <rb7147@att.com>
2017-10-11Modify Default DCAE Config Policies and TopicJorge Hernandez2-4/+4
Change-Id: I99e55aa59018abeab1fe4fe77c35df724e4b5a92 Issue-ID: POLICY-313 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2017-10-11Updated MS vCPE Config Policyrb71471-1/+1
Issue-Id: POLICY-313 Change-Id: Ie82a7b1ec92dc5b41d3a0deff54235fa7084126c Signed-off-by: rb7147 <rb7147@att.com>
2017-10-11Add ability to turn off policy preloadPamela Dragosh1-0/+6
You can now set environment variable to override whether or not the policies are pre-loaded by the engines during docker image startup. The README.md is updated with instructions. Each docker-compose has a different default set. The .env file is set to load policies by default to true. You can override by either changing this file or setting the environment: export PRELOAD_POLICIES=false Issue-ID: POLICY-304 Change-Id: Ia96788ac3b8d47814eea1046d96c4e3e4a0b9664 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2017-10-10Fixing the BRMS Param Rule TemplateTej, Tarun1-1223/+0
Fixing the rule template to use PapParams instead of Params as new changes from policy/engine Issue-Id: POLICY-302 Change-Id: Iabb01f065645983bd8010337deabe3007dd93c5c Signed-off-by: Tej, Tarun <tt3868@att.com>
2017-10-10Merge "Rename actor from MSO 2 SO in vDNS policy creation"Pamela Dragosh1-1/+1