summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2018-10-23Remove unused commons-fileuploadPamela Dragosh1-5/+0
This flags a security vulnerability. But it is unused so we can remove it. Issue-ID: POLICY-1212 Change-Id: I8343d56324cc94d7a163f26d0af322d232c5c02e Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-10-11Merge "Policy Doc: Removed Beijing Controller"Pamela Dragosh1-1/+0
2018-10-11Merge "Updated the keystore to include pdp wildcard."Pamela Dragosh1-0/+0
2018-10-11Updated the keystore to include pdp wildcard.Jorge Hernandez1-0/+0
This allows to talk directly to OOM PDP-X pods without going through the service. Change-Id: I09bd5253a79142f6566806b97be4bb6c223826f4 Issue-ID: POLICY-1198 Signed-off-by: Jorge Hernandez <jorge.hernandez-herrero@att.com>
2018-10-11Policy Doc: Removed Beijing ControllerSaryu Shah1-1/+0
Removed "Installation of Beijing Controller and Policies" from index ------------------------------------------------------------- Issue-ID: POLICY-1196 (remove Beijing controller doc) Change-Id: I7531e3a9074792542799fdc92179cca41592875f Signed-off-by: Saryu Shah <ss3917@att.com>
2018-10-11Updated rst doc for clsimulation.rstSaryu Shah1-195/+351
A short description eg. Updated policy documentation ------------------------------------------------------------- Change-Id: Ibc2426f9b6befc2c750290f2685427a47318e012 Issue-ID: POLICY-1169 Signed-off-by: Saryu Shah <ss3917@att.com>
2018-10-09Regenerate policy keystore1.3.0Jorge Hernandez1-0/+0
The keystore has been regenerated using the latest tooling from AAF. Previous versions seem to add a bogus " fqdn" which makes the particular policy.api.simpledemo.onap.org invalid. The latest version does not append it. Change-Id: I96e4d272e8f0ab6eb84a12384645bf9a49dbbd09 Issue-ID: POLICY-1193 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-10-09Modify portal properties in PEMichael Mokry2-4/+3
Modified the portal.properties with new role_access_centralized property. Modified the conf file with updated values for the ONAP redirect and REST URL properties Made changes for comments Change-Id: Id2624cbb440ea5830520c5e82436d112989b62c4 Issue-ID: POLICY-1192 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2018-10-09Update local dependency jsonPamela Dragosh1-0/+24
For local testing these need to be added. Issue-ID: POLICY-1190 Change-Id: I2827aebe9faf04ff38e0781376b4553d34c88930 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-10-08Initial Draft of Release NotesSaryu Shah1-0/+172
Initial Draft of Release Notes ------------------------------------------------------------- Change-Id: I76d9c4cdd4cef570a4e4bf6fc149cf28dd447297 Issue-ID: POLICY-1162 Signed-off-by: Saryu Shah <ss3917@att.com>
2018-10-05Fix sonar bugPamela Dragosh1-243/+274
Somehow this creeped into sonar. Not sure why it wasn't flagged before. Fixed tabs and indentation. Removed unnecessary close() statement for a try-with- resources statement. Issue-ID: POLICY-1186 Change-Id: I5499279fe7adf642a7f7dc8a53c1a27c24a0dcb3 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-10-05Add SDNC actor to dependencyPamela Dragosh1-0/+8
So BRMS gateway can add this dependency during runtime. Issue-ID: POLICY-1183 Change-Id: I82127fca5e0d644463e82d543b6331dde8c32042 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-10-04Fixed issue with springframework dependenciesMichael Mokry2-0/+92
Added exclusions to epsdk dependencies and added dependencies for springframework jars that were needed to the ONAP-SDK-APP Change-Id: I037ffa76d3d32b2db5ea2c439f40e8a86e1665f5 Issue-ID: POLICY-1154 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2018-10-02Recreate latest keystore.Jorge Hernandez1-0/+0
Some changes have been made since the first set of stores were generated from the cert manager tooling in the windriver test instance used for this purpose. Change-Id: I976333df7e020bda76c5cbdc9c0be752e5a88778 Issue-ID: POLICY-1156 Signed-off-by: Jorge Hernandez <jh1730@att.com>
2018-09-27Add Sdnr Actor codePamela Dragosh1-0/+8
These need to be defined for BRMS Gateway to re-created the artifacts. Issue-ID: POLICY-1155 Change-Id: I424be9976fa129a42e0020870af01ba30e0c0d47 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-25CADI AAF changes for policy/engineMichael Mokry5-225/+267
Added cadi properties and modified policy aaf client code. Fixed issue with namespace and modified code to reverse it for structuring the username sent in AAF API call Added properties for keystore and keystore password after getting error response from AAF when setting up the connection to AAF Missed a fix for one of Jorge's comments in last patch, here it is. Change-Id: Ic164ade8aa34da95a560c1592656e0caf990a595 Issue-ID: POLICY-913 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-20BRMSGW HTTPS support for DMaaP/UEB interfacesMichael Mokry1-1/+1
Modified BrmsPush UEB interface implementation to use HTTPS Change-Id: Id8ae68f23ee371142da3f9d8aa0a2b2e7988ff36 Issue-ID: POLICY-942 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-20Upgrade javax.mail to 1.6.2Pamela Dragosh1-3/+3
The former version was frozen in github. It looks like they moved to another website and the changes were transparent codewise. So let's see what the CLM results are for this. I believe this does remove the security vulnerability. Issue-ID: POLICY-1127 Change-Id: Ib659eddc2808131c8dded3782fcf1d382060fc29 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Fixes for oparent upgradePamela Dragosh7-7/+2
Clean up mariadb so that it is consistent, allow jetty to be defined by oparent, and fixes to fully support google guava upgrade. Issue-ID: POLICY-1126 Change-Id: Ic0c2fba5f6f5f1a41e53770b95861606a5b4bbe6 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Merge "Fixing issue with validation errors"Pamela Dragosh2-500/+736
2018-09-18Merge "Remove override of parent aaf version"Liam Fallon2-2/+5
2018-09-18Merge "Fix Policy GUI Template Issue"Pamela Dragosh1-1/+1
2018-09-18Fixing issue with validation errorsMichael Mokry2-500/+736
I found this change internally that was committed to fix an issue with validating required fields when creating some Config MS policies. This should fix the CSIT tests and the pre-loaded policies for SDNC Naming policies Change-Id: I04406b8efbef173a6ab967a32cfbd86e17b7c59e Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-18Fix Policy GUI Template IssueWang, Frank(gw1218)1-1/+1
Fix the a bug in this html file by adding msPolicyloader Issue-ID: POLICY-1118 Change-Id: I7a45b232ed0680f1c8233b8ed71fdde685fbb9c9 Signed-off-by: Wang, Frank(gw1218) <gw1218@att.com>
2018-09-18Remove override of parent aaf versionPamela Dragosh2-2/+5
policy/parent now declares the aaf dependency so consistency is maintained in all the repositories. Removing the version declaration in order to pull in the declared version. The constructor changes to add a namespace. A null value is still possible to be used. If we are given a namespace then we will have to add that in. Preferrably via a properties file. I also noticed there is a hard-coded URL in here in the setupAAF() method on line 212. That should be moved to a property file. Issue-ID: POLICY-1119 Change-Id: I97dcd7d669d3d05db7c6597be6f3038183fa4e17 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-18Merge "Added validation on matching required fields"Jorge Hernandez2-436/+777
2018-09-18Merge "AAF integration in Policy SDK"Pamela Dragosh7-1005/+1186
2018-09-17Added validation on matching required fieldsWang,Frank(gw1218)2-436/+777
Import policy should report to end users if there are missing required matching fields in policy template. Issue-ID: POLICY-1117 Change-Id: Iac4485259b73784e641f42a22d5a12c524f4b8e2 Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com> Signed-off-by: Wang, Frank(gw1218) <gw1218@att.com>
2018-09-17AAF integration in Policy SDKrb71477-1005/+1186
Upgraded SDK version. Added SQL script with encrypt key. Added a function to save role on reading from session in PolicyController.java Addressed Check Style warnings in PolicyController.java Issue-ID: POLICY-1088 Change-Id: I446b6c1a0db2a989ad3f4e982e5cdba845f81045 Signed-off-by: rb7147 <rb7147@att.com>
2018-09-17Upgrade elasticsearch v6.3.0Pamela Dragosh3-3/+4
Resolves a security issue around information disclosure. The recommendation is to upgrade to this version for the fix. Issue-ID: POLICY-1063 Change-Id: Idebb19d2c530b716a25aa91832c053e6b2d0ffce Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-17Merge "Upgrade commons-compress v1.18"Liam Fallon3-2/+3
2018-09-14Fixed incorrect model nameMichael Mokry1-1/+1
Changed the model name of the script to be the correct SDNC-GenerateName version CSIT to fix the failed CSIT test cases Change-Id: I8974202cfc8cea3a19e102813fbf2a4f449cd11b Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-14Upgrade commons-compress v1.18Pamela Dragosh3-2/+3
Fixes 2 security issues and brings the common property value to the root pom.xml for easier management. Issue-ID: POLICY-1063 Change-Id: I56e3318bdfae2d205c61a5ad7af70a79bd70dada Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-14Upgrade springframework 4.3.18.RELEASEPamela Dragosh6-6/+3
To resolve security issue for 4.3.15.RELEASE and also have a single place where the dependency is defined for the sub-modules. NOTE: 4.2.0.RELEASE is left alone in Policy SDK App due to Portal SDK dependency. Issue-ID: POLICY-1063 Change-Id: Ibdc464b16b4771faccb2c8c472efa7fbcbf3352c Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-12Merge "Upgrade dmaap client"Jorge Hernandez3-3/+4
2018-09-12Upgrade dmaap clientPamela Dragosh3-3/+4
Upgrading to dmaap 1.1.8 for Casablanca. Hoping they have removed some license issues. Also, policy/parent has the version property definition now because this dependency is shared across multiple repos. Issue-ID: POLICY-1116 Change-Id: I6ffe7b7cf4b46b12b3ec8d534a58f0be40bb97b9 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-09-12Added SQL to import SDNC naming modelMichael Mokry1-0/+3
Modified the script to inlcude an insert statement to add the SDNCGenerate Naming model to the microservicemodels table during installation This will need to be merged before I add the CSIT test to Integration Change-Id: I1620ce3f1097d45111bddb08c12b5b8c12bb1b2e Issue-ID: POLICY-983 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-11Modified Min Max Guard xacml templateMichael Mokry1-36/+32
Changed the condition to remove not from permit and have only one not for deny Change-Id: Ie4563aba000fa5366095fe23d23c37019b5224d4 Issue-ID: POLICY-1038 Signed-off-by: Michael Mokry <mm117s@att.com>
2018-09-11Merge "New min/max Guard Policy"Pamela Dragosh13-50/+468
2018-09-11New min/max Guard PolicyMichael Mokry13-50/+468
Made changes to support Guard policy create/update and other policy manager functions including deletePolicy and pushPolicy. Includes changes for new Guard policy support using GUI and API (Rest and Java Client) Made changes to address Jim's comments Made changes to address Liam's comments Change-Id: I133fe1fd9287ea77ea41a2788de90c7642c36b6a Issue-ID: POLICY-1038 Signed-off-by: Mike Mokry <mm117s@att.com>
2018-09-11Change websockets to managed versionliamfallon1-1/+0
Change-Id: Iff8f9053640752f86e6f5aa94c1f16f6d3e01d6a Issue-ID: POLICY-884 Signed-off-by: liamfallon <liam.fallon@ericsson.com>
2018-09-10Resolved XACML Platform Sonar issuesrb71476-163/+128
Issue-ID: POLICY-902 Change-Id: If22627dfe7df993b5c725ddf3a66c10ebbaa73ca Signed-off-by: rb7147 <rb7147@att.com>
2018-09-06Merge "XACML Platform Enhancements"Jorge Hernandez20-2557/+3352
2018-09-06Merge "TOSCA model enhancements"Pamela Dragosh2-423/+653
2018-09-05XACML Platform Enhancementsrb714720-2557/+3352
To Support Raw Policy Creation from GUI and API. GetDecision on combining algorithim with Policy Set. Issue-ID: POLICY-902 Change-Id: Ie3189f8ded2e03366bc7d65d15b95b88c89b0acd Signed-off-by: rb7147 <rb7147@att.com>
2018-08-30TOSCA model enhancementsWang,Frank(gw1218)2-423/+653
Add those features below to existing TOSCA Policy model: 1. Set default value to HTML element 2. Set description of a property as a tooltip 3. Support Boolean type 4. User defined object can be re-used by different properties in the same yaml file Issue-ID: POLICY-900 Change-Id: I337107828ce8130b9a68a2ba000ee719bbcb923e Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com>
2018-08-30Upgrade to policy/parentPamela Dragosh14-2349/+2361
Change from oparent to policy/parent which inherit from the latest oparent. The latest oparent has dependencyManagement recommendations from the ONAP Security sub committee that the policy team is adhering as part of the effort to consolidate security work across projects. Change-Id: I1a43fc5a04dbc8c4cb2b7bedbca67ad3e9dd120b Issue-ID: INT-619 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2018-08-28Merge "Enhancement on Dashboard"Pamela Dragosh10-425/+1140
2018-08-27Modified Blacklist documentationSaryu Shah1-0/+0
Modified Blacklist documentation ------------------------------------------------------------- Issue-ID: POLICY-947 Change-Id: Ie31d45c302c51abc09705df8e714fb42d9ced1a6 Signed-off-by: Saryu Shah <ss3917@att.com>
2018-08-23Enhancement on DashboardWang,Frank(gw1218)10-425/+1140
Enhancement on dashboard by including more info related to CRUD actions on policies and also providing an advanced search feature. Issue-ID: POLICY-1042 Change-Id: I987e0ca13824413f90299a366fb4464fca7de06a Signed-off-by: Wang,Frank(gw1218) <gw1218@att.com>