Age | Commit message (Collapse) | Author | Files | Lines |
|
Removed requestParameters and reverted name.
Change-Id: Ife2f6855a1f9977d06a881e9b243226aed99a53d
Issue-ID: POLICY-1240
Signed-off-by: Jim Hahn <jrh3@att.com>
|
|
The docker repo (for heat) by default will come with
AAF configuration flag set to false. An installer
could simply set it to true to enable AAF.
The main reason for this default in heat installs
is to not deal with routinely failures of CSIT tests
(as they will need either an AAF running or divergent
installations scripts).
OOM installations instead will have AAF enabled by default.
Change-Id: I2014877285ea776b057b45cf8875d4da6a6730a9
Issue-ID: POLICY-1216
Signed-off-by: Jorge Hernandez <jorge.hernandez-herrero@att.com>
|
|
Change-Id: I7efadaf3f8230a8433ea7a6fe8367459581043e5
Issue-ID: POLICY-1194
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: I113094a4357ad1e9678f297054f31d4e02cfffe7
Issue-ID: POLICY-1183
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Default heat installation credentials to be the same regardless
aaf is in use or not. This will allow transparent
switching from AAF to non-AAF support without requiring
clients (robot, consul, etc ..) reconfiguring themselves
regardless of what we are using.
Change-Id: I2f3c0cbf93d6369168fb0317ff78a13e35c08c12
Signed-off-by: Jorge Hernandez <jh1730@att.com>
Issue-ID: POLICY-1156
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Added variables for cadi properties
Changed property values based on comments and removed resource property
Change-Id: I5d7ea2383e306c251f129625b9e9a671c2704ed5
Issue-ID: POLICY-913
Signed-off-by: Michael Mokry <mm117s@att.com>
|
|
Change-Id: If5f1344cb0e9468fe8a807bd4dc7cb205d3f1bb1
Signed-off-by: Jorge Hernandez <jh1730@att.com>
Issue-ID: POLICY-1043
|
|
Modified push_policies.sh to create and push Guard Min/Max and Frequency
Limiter policies
I also converted tabs to spaces throughout the file while I was in
there
Change-Id: Idcf5059988c9f291e6be44a069894fd2b864436f
Issue-ID: POLICY-968
Signed-off-by: Michael Mokry <mm117s@att.com>
|
|
Following config policies to be defined for
OOF PCI use case for Casablanca:
PCI-Handler MS config policy
OOF config policy
Control loop policy
Change-Id: I0e6e0370a875dbd8eb4857d0c15e4219c252efac
Issue-ID: POLICY-1086
Signed-off-by: Saravanan A<saravanan.a75@wipro.com>
|
|
Following config policies to be defined for
OOF PCI use case for Casablanca:
PCI-Handler MS config policy
OOF config policy
Control loop policy
Change-Id: I2cd0c2221ee0b950463ab939b6426def14c8b69a
Issue-ID: POLICY-1086
Signed-off-by: Saravanan A<saravanan.a75@wipro.com>
|
|
Added curl commands to created and push SDNC vFW and vPG Naming policies
during installation
Change-Id: I01b1254199b96dbea5558a31ba8900d76c655ded
Issue-ID: POLICY-983
Signed-off-by: Michael Mokry <mm117s@att.com>
|
|
This should also fix the issues with the CSIT tests. I made changes to
the push-policies.sh script to add option -k and bypass certificate
errors
Change-Id: I5b8bdc1161bc0bc88122884eedd7e63042d9ba42
Issue-ID: POLICY-781
Signed-off-by: Michael Mokry <mm117s@att.com>
|
|
Made changes to conf files and push-policies.sh to set variables and use
https in urls
Change-Id: I319e800a33756e771f57a8ef8bd611925fdd9299
Issue-ID: POLICY-781
Signed-off-by: Michael Mokry <mm117s@att.com>
|
|
Change-Id: I5402135e561477522aa23ec0551bcd24dad60120
Issue-ID: POLICY-1057
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: Ia5ae42f19930e34bac49b556e3217988e613bcb0
Issue-ID: POLICY-877
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
The changes are cosmetics to leave the docker repo
a bit more tidy for release.
The switch from openecom.org to onap.org is
functionally noop .conf files as both domain names are
supported.
The BRMS_DEPENDENCY_VERSION is noop as it will
be properly substituted by the underlying docker-install.sh
invocation during docker brmsgw container instantation
bringup.
Change-Id: I154a1e1560dd7083609080d8f56e47e4d62b99eb
Issue-ID: POLICY-877
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Because this shares the log4j.properties embedded within policy/common,
the target for the IntegrityMonitor.log cannot be changed. Thus the
PARSERLOGPATH was modified to point to that location.
Change-Id: Ib68ddb327aa9ef7520314dad354d52c2f409d42e
Issue-ID: POLICY-759
Signed-off-by: Jim Hahn <jrh3@att.com>
|
|
Replace ${{POLICY_LOGS}} with hard-coded path in conf
files, as the former does not get expanded.
Change-Id: I7686ba75656086ffccb714289b927cf75f8b3e72
Issue-ID: POLICY-759
Signed-off-by: Jim Hahn <jrh3@att.com>
|
|
Cosmetic in heat install as openecom.org still works.
Better to use onap.org domain moving forward though.
Change-Id: Ic3f843beb7c58326c5d6db1d8cba70c6e43a65db
Issue-ID: POLICY-853
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: Id096c43bb3cb7e88ba1ec2e3ca1a788bd01847a4
Issue-ID: POLICY-797
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
The databases to which the non-root policy user are
granted access are: operationshistory10 (guard) and
pooling (pooling feature).
Change-Id: Id8653e872a7750fe9e037ad2872b5541241ef4e7
Issue-ID: POLICY-788
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: I890daecb9b24bbc21c989f4e3c5fe9c4d1aa2005
Issue-ID: POLICY-788
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Added pooling topic for amsterdam-closed-loop feature. Only used
when pooling is enabled.
Moved property to feature-specific conf file and renamed the
property so it isn't specific to amsterdam-cl.
Change-Id: I98ad8ca5bbcf910d204b460cadd15345a1d71370
Issue-ID: POLICY-782
Signed-off-by: Jim Hahn <jrh3@att.com>
|
|
The idea is that by default all pdp-ds will share the
same dcae topic, therefore load-balanced in onsets.
Change-Id: Id92906f123c4b8b21f84629bdf0a7fe03dc70aa1
Issue-ID: POLICY-766
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
I hope this fixes all DB related issues that
are being seen by integration teams.
The failOver jdbc parameters + perhaps some changes in underlying
code and persistence libraries may have been causing the
PAP to become useless. A thread dump shows that a significant
number of threads were in timed-wait state, waiting on a lock
trying to acquire a connection. In SB07, the system became
useless in terms wouldn't accept any transaction.
These changes to the PE provided jdbc parameters seems
to be behaving in the expected way, and the expectation is
that fixes the problems (behavior is good in own OOM lab).
It is thought that this may perhaps solve
POLICY-773, POLICY-775, POLICY-779, and perhaps POLICY-776.
Change-Id: Ib2319b68b5a503f61c2cb04998c549b7b97f9f31
Issue-ID: POLICY-777
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
These are companion changes to
https://gerrit.onap.org/r/#/c/44687/
https://gerrit.onap.org/r/#/c/44715/
The docker-compose instance still could add
a policy-keystore of its liking here, in which
case it will be honored and replaced the default
one cooked in the image.
Change-Id: I9f8aba7bdeb232a38b971ea60d7b88c135d08a7d
Issue-ID: POLICY-747
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
swap truststore with AAF provided one,
changed the password from the default jdk
one to the default one used in policy installations
Change-Id: I106408e7fdbf87e3bd2a4822387db05c79a0524c
Issue-ID: POLICY-747
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
I know some of these files should be removed, but let's
do that in a different JIRa.
Issue-ID: POLICY-741
Change-Id: Id974ff1bcfa9d34d8828e644dce337d8cdc056eb
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Change-Id: I25cdf1bb728c381395e5531913be6f51979dfb20
Issue-ID: POLICY-735
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
use dockerhub image for nexus instead of producing our
own. 9081 is exposed in the host.
Issue-ID: POLICY-575
Change-Id: Ia72303507aee071e0f12e9a77b3ce03bae8b3ed7
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: I21e71cd635b32186a507f9ba9e40fc85aa413339
Issue-ID: POLICY-533
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: Idada49011808038a195ef2c499688d0e88b301cd
Issue-ID: POLICY-554
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Change-Id: I083c09054916655bdbaeb50414b76f821fcd579a
Issue-ID: POLICY-554
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
1. use mariadb image from docker registry to simplify set up.
2. remove harcoded root and user mariadb accounts
3. restrict access to user account to just specific databases.
Change-Id: Iaa916dbf2de2474fcc483a4be6167b4b92a2de61
Issue-ID: POLICY-650
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Changed the keystore password on both drools and pe keystores to match the
changed default given in base.conf file.
Issue-ID: POLICY-520
Change-Id: Id052815f8bd84e866042eb93a1d2901d279d5115
Signed-off-by: Temoc Rodriguez <cr056n@att.com>
|
|
Added copy of drools keystore to config/pe so that container has
a copy of the self-signed cert to enable TLS encrpytion with automatic
install process. Added copy to do-start.sh to install keystore in final
destination in pap container.
Issue-ID: POLICY-520
Change-Id: Ie6394b5b79ec98cfa6231c46b21a0b4bfb20869a
Signed-off-by: Temoc Rodriguez <cr056n@att.com>
|
|
Bump minor version in preparation for Amsterdam
branching.
Change-Id: I95eba101b459e466bebca385c7a5ea1b686da0bb
Issue-ID: CIMAN-120
Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
|
|
Release 1.1.1, update to 1.1.2
Issue-ID: POLICY-436
Change-Id: I516e4644e759dc96712b5d7444ae700a21544592
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Change-Id: I4356091f168a9bb9ada7756611728e04f68e2a3e
Issue-ID: POLICY-436
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
xacml-att is a 3rd party library that should
not ve expanded to the onap version in
brms gw
Issue-ID: POLICY-406
Change-Id: Ifddcedd482094ba3cff5d21c8e6b327efc408fb9
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Issue-ID: POLICY-373
Change-Id: I7526a5a8f6a93587a9be4aacc4b8c596da8b0122
Signed-off-by: rb7147 <rb7147@att.com>
|
|
new default is vm1.mr.simpledemo.openecomp.org for
Amsterdam release.
Issue-ID: POLICY-363
Change-Id: I88f63058831a92e4c385743e85fcefaffd0bebbd
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Issue-ID: POLICY-354
Change-Id: I7451ed24988952eb387384fd52bfbb884493640b
Signed-off-by: rb7147 <rb7147@att.com>
|
|
Issue-ID: POLICY-342
Change-Id: Ia5c0c25cc15a4f6f2d5b7cb10b27729b9968d127
Signed-off-by: rb7147 <rb7147@att.com>
|
|
Updated the config policies to match operational policy controlloopname.
Issue-Id: POLICY-342
Change-Id: I1fd94efb43895bdee7d179644c1cbfb6f0725241
Signed-off-by: rb7147 <rb7147@att.com>
|
|
Change-Id: I99e55aa59018abeab1fe4fe77c35df724e4b5a92
Issue-ID: POLICY-313
Signed-off-by: Jorge Hernandez <jh1730@att.com>
|
|
Issue-Id: POLICY-313
Change-Id: Ie82a7b1ec92dc5b41d3a0deff54235fa7084126c
Signed-off-by: rb7147 <rb7147@att.com>
|
|
You can now set environment variable to override whether or not the
policies are pre-loaded by the engines during docker image startup.
The README.md is updated with instructions. Each docker-compose has
a different default set.
The .env file is set to load policies by default to true. You can override
by either changing this file or setting the environment:
export PRELOAD_POLICIES=false
Issue-ID: POLICY-304
Change-Id: Ia96788ac3b8d47814eea1046d96c4e3e4a0b9664
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Fixing the rule template to use PapParams instead of Params as new changes
from policy/engine
Issue-Id: POLICY-302
Change-Id: Iabb01f065645983bd8010337deabe3007dd93c5c
Signed-off-by: Tej, Tarun <tt3868@att.com>
|
|
|