summaryrefslogtreecommitdiffstats
path: root/packages/policy-xacmlpdp-tarball/src/main
AgeCommit message (Collapse)AuthorFilesLines
2022-10-31Fix mishandling of special characters in passwordsjhh2-2/+2
OperationsHistory creation is skipped in OOM settings since cannot process passwords with containing "=". Issue-ID: POLICY-4429 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I41ba9cf451aecd62fb0090d721685da9ce6e2f2e
2022-09-01Compatibility with mariadb 10.x and mysql 8.xjhh3-20/+79
Additional support for extra flags for example is secured mysql/mariadb server is desired when provisioning tables at initialization. Issue-ID: POLICY-4183 Issue-ID: POLICY-4340 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Id873b3692237cd867815f2928b56492c9261082e
2022-07-13Reduce size of docker images for XACML-PDPdanielhanrahan1-0/+2
Avoid creating extra layers when extracting tarball Remove redundant chown/chmod commands Reduce size of Alpine image by 32% (379MB to 259MB) Reduce size of OpenSuse image by 23% (546MB to 423MB) Issue-ID: POLICY-4273 Signed-off-by: danielhanrahan <daniel.hanrahan@est.tech> Change-Id: I5b141b27d9db855c0b624612a54fc525845a02d7
2022-05-17Support postgres in XACML-PDPwaynedunican5-5/+171
Issue-ID: POLICY-4187 Change-Id: Ifed655e214ce95b9cc8208cd5b0907e7bb00b463 Signed-off-by: Wayne Dunican <wayne.dunican@est.tech>
2021-08-23Enable prometheus by default in xacml-pdpa.sreekumar1-1/+2
Change-Id: Ifae3e0bd9eac90ce843e7b987088dc86907dbd23 Issue-ID: POLICY-3538 Signed-off-by: a.sreekumar <ajith.sreekumar@bell.ca>
2021-07-13Change config to add Application groupPamela Dragosh1-1/+3
First step for configuration which applications should be loaded and mapped to actions is to add a new parameter group for application parameters. Issue-ID: POLICY-3326 Change-Id: I3867b4e927d57e1e81519dee32d10eed3dabc667 Signed-off-by: Pamela Dragosh <pd1248@att.com>
2021-05-25Change indexes on Op History tableJim Hahn1-3/+3
This is the companion change to that made in policy-models. Per review comments: - added index to s3p sql script Issue-ID: POLICY-2874 Change-Id: Ic270b8da92be8b921b3a865ff1ce923af21faaab Signed-off-by: Jim Hahn <jrh3@att.com>
2021-04-07Use sh instead of ash in xacml-pdpJim Hahn1-2/+2
Issue-ID: POLICY-3160 Change-Id: I168a7d4630c487dd9d219f25383cd2f4fd781028 Signed-off-by: Jim Hahn <jrh3@att.com>
2021-03-19Delete keystores from xacmlJim Hahn1-0/+0
The Keystore is no longer needed in the tarball, as it is supplied externally by the CSITs and Helm charts. Deleted that file. Also modified the junits to use utils-test to generates keystores at runtime, thus deleted the junit keystore file, too. Issue-ID: POLICY-3143 Change-Id: If4966538452a16b22ea3a338eb9656a295641402 Signed-off-by: Jim Hahn <jrh3@att.com>
2021-03-17Change RestServerParameters to BusTopicParamsJim Hahn1-2/+2
HTTP client parameters should be based on BusTopicParams instead of RestServerParameters, modified the policyApiParameters. Issue-ID: POLICY-3147 Change-Id: I73aa34bec3ab7e27e7a3474260f411ed55b6f933 Signed-off-by: Jim Hahn <jrh3@att.com>
2021-03-16Update policy-keystore with newer certificatesjhh1-0/+0
Issue-ID: POLICY-3139 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Ia0c86441b1c95b45959be070015ea57f106d7002
2021-02-16Make xacml pdpType configurablePamela Dragosh2-0/+2
Adding code to enable the pdp type to be configurable. Issue-ID: POLICY-3071 Change-Id: I51c873f68bff1866c6b2e96958b6c33872aea2c8 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2021-02-10Upgrade dependenciesJim Hahn1-0/+1
Updated properties to work with the new version of eclipselink. Issue-ID: POLICY-3005 Change-Id: I88091a90387e235ef5c168de7a3275056327d83e Signed-off-by: Jim Hahn <jrh3@att.com>
2020-11-30move all bash to ash shell scripts - xacmlTaka Cho1-10/+6
bash scripts convert to ash Issue-ID: POLICY-2847 Change-Id: I181e353997d8874eaadd73d6c39594c04a856e4c Signed-off-by: Taka Cho <takamune.cho@att.com>
2020-09-24update default keystoresjhh1-0/+0
Issue-ID: POLICY-2827 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: Icbe559ceb51f34ec7596516ba0ebe735e086b312
2020-09-16Remove base64 encoding of password from xacmlRam Krishna Verma2-2/+3
Issue-ID: POLICY-2550 Change-Id: I05d9af99401991ea867e7ab8d697692c9020b3b7 Signed-off-by: Ram Krishna Verma <ram_krishna.verma@bell.ca>
2020-08-25Add new Match application to XACMLPamela Dragosh2-0/+40
Add new generic match application to XACML PDP. This app will allow ONAP users to design their own matchable policy types and use StdMatchableTranslator out-of-the box without any modification. Fills the gap left behind since "configure" via the Monitoring can support StdCombinedResultsTranslator, but the Optimization policy types have a specific "closest match" algorithm tied to them. Gives flexibility. removed unused import Issue-ID: POLICY-2596 Change-Id: I0aebae706fb9634e7bb13d78eff0ccc1ae4d752f Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2020-07-07Add fetch timeout to xacml-pdp propertiesJim Hahn1-1/+2
When an error occurs fetching from DMaaP, xacml-pdp should not try again immediately, but should wait a little bit before retrying. Added the the fetch timeout property to prevent it from defaulting to -1 when retrying. Issue-ID: POLICY-2702 Change-Id: I1b3432854d1e3c68836cf81779e22105a6236fca Signed-off-by: Jim Hahn <jrh3@att.com>
2020-05-26Create secondary indicesJim Hahn1-2/+8
Modified the sql script to create the secondary indices. Issue-ID: POLICY-2581 Change-Id: If0bdaa9d8769e99bd47b8780251d96dba172b3e2 Signed-off-by: Jim Hahn <jrh3@att.com>
2020-03-18renew policy certs till 03/17/2021jhh1-0/+0
Issue-ID: POLICY-2402 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I111f60b9ef60ee9524808653be020f94ae9db170
2020-03-05Added xacml.properties to packages for native appChenfei Gao2-0/+40
Issue-ID: POLICY-2182 Change-Id: Ife38e989aeda445c9fc2531bb92426f2d28bb818 Signed-off-by: Chenfei Gao <cgao@research.att.com>
2020-01-21Remove assembly warningPamela Dragosh1-10/+10
Use ${file.separator} Issue-ID: POLICY-2329 Change-Id: I1bca4f17ea562d656edc368aa8fc34d59206203d Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2020-01-16Add missing property file to xacml tarballJim Hahn1-2/+11
When attempting to run the xacml-pdp CSIT, the log file contains a complain about a missing apps/naming/xacml.properties file; it was missing from the tarball. Issue-ID: POLICY-1586 Signed-off-by: Jim Hahn <jrh3@att.com> Change-Id: Ie967efb9b82b0aabe513df9ea213867faca06840
2019-12-17Add SDNC naming applicationPamela Dragosh1-0/+31
Requires changes to StdMatchableTranslator to go deeper when searching for matchable attributes. NOTE: will re-visit the StdMatchableTranslator at a later date in order to support more robust Policy Types. And document best practices for defining matchables. Issue-ID: POLICY-1740 Change-Id: I291cf1c2e6eba0a677a3312dd11f0e56178a805b Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-11-15Changed Xacml-pdp to report pdp group defined in XacmlPdpParameters config fileHOCKLA2-2/+4
Ignore the pdp group specified in the PdpUpdate message. Updated junits and test resources. Issue-ID: POLICY-2229 Change-Id: I0c7a33c45424cef6440b0837e1dd22a7487c5d44 Signed-off-by: HOCKLA <ah999m@att.com>
2019-09-09Integrate using Policy Type to find MatchablePamela Dragosh1-0/+2
Utilize's Jim's helper class to pull from API policy types definitions so that Xacml PDP can determine which properties are "matchable". Override initialize to set translator parameters. Utilize the metadata section of ToscaProperties to store the matchable field. Updated Matchable Request to be dynamic with respect to the incoming resource attributes. Stored the policy types as JSON. Issue-ID: POLICY-1899 Change-Id: Icff3605495b0a34ebfcdfa54346095ce2d8468a4 Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-09-03Change "pap" to "policy-api" in xacml-pdp configJim Hahn1-1/+1
The json config file is really only an example, but the example leads users down the wrong path, because it implies that xacml-pdp connects to "pap" to get policy type information, when it actually talks to "policy-api". Updated the config file. Change-Id: Id2a42264591acd37b7813673fdcaa790257a9d8a Issue-ID: POLICY-1911 Signed-off-by: Jim Hahn <jrh3@att.com>
2019-08-30Get policy type from policy-apiJim Hahn1-0/+8
Added a class to retrieve a policy type from the policy-api. Updated property files to include parameters that are needed to configure it. Updates per review comments: - change PolicyApi to PolicyApiCaller - use HttpClientFactory - removed superfluous constructors from exception classes - changed parameters to use RestServerParameters instead of BusTopicParams Change-Id: I8aad6ca5a733c8ad9cc983496e745ebe7400dd17 Issue-ID: POLICY-1911 Signed-off-by: Jim Hahn <jrh3@att.com>
2019-08-22update keystorejhh1-0/+0
Issue-ID: POLICY-1988 Signed-off-by: jhh <jorge.hernandez-herrero@att.com> Change-Id: I544a0bdf63582cdff74765d7fad1b7f993d0bfa0 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2019-07-30Fix guard table creation during startup issueMichael Mokry1-2/+40
- Added -hpolicydb to the mysql command in the script - Made this configurable by utilizing the existing parameters in xacml.properties for db connections. No OOM or CSIT changes should be needed now. PATCH UPDATE: - used Awk to extract property values - removed echo except one needed for the base64 command, as far as I can tell it is needed when assigning output to a variable, I tried to get it to work unsuccessfully. - added exit code 2 for missing properties as suggested by Jorge and Jim PATCH UPDATE: - remove echo from base64 using Jim's suggestion - Added code to remove escape backslashes from properties file, I didn't see these locally but when testing in windriver they show up in the xacml.properties file on OOM installs - More changes per Jorge's latest review Change-Id: I79c0502d8a4fadd2160785014fcb9db3c0faab5e Issue-ID: POLICY-1934 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2019-07-04Remove topic.properties and incorporate into overall config file for xacmla.sreekumar2-23/+13
Change-Id: I3be6248db65041f5d9b7acfcf0fcd2f49d9d70f8 Issue-ID: POLICY-1744 Signed-off-by: a.sreekumar <ajith.sreekumar@est.tech>
2019-06-18Create the operationshistory table from pdpxMichael Mokry3-0/+73
Added create table sql statement to the policy-pdpx.sh to create the operationshistory table during xacml-pdp installation Added changes per Jorge's review 1) Added sql file with create table statement 2) Added bash script to execute sql file 3) modified policy-pdpx.sh to execute new bash script 4) other changes Change-Id: Iaae63dc65db1ff9181de12928e072f04c87e50e7 Issue-ID: POLICY-1827 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2019-04-26Refactor xacml-pdp to remove various statics3.0.2-ONAPjh73581-82/+21
Refactored xacml-pdp to eliminate a number of static fields. Modified junit tests to allocate new ports for each test. Also modified XacmlPolicyUtilsTest to convert path names to match the file system so that the junit will work in OSs other than linux. Replaced logback.xml with a copy of the one from PAP to resolve some issues. Don't print entire message when discarding, as each PDP receives messages for ALL PDPs. Remove shutdown class from Main - just invoke this.shutdown() directly. Added additional comments to CommonRest. Also modified port test parameters. Change-Id: Id8bf7216cdcb59a1a2cb4cb957fa44f640315cfe Issue-ID: POLICY-1645 Signed-off-by: Jim Hahn <jrh3@att.com>
2019-04-15One year cert with new component namesjhh1-0/+0
Change-Id: I3c3a9174b2d90b4139f9ab4e805f9a87bb6d5d39 Issue-ID: POLICY-1580 Signed-off-by: jhh <jorge.hernandez-herrero@att.com>
2019-04-15DmaaP topic properties change for xacml-pdpMichael Mokry1-7/+4
Updated the topic.properties file with proper dmaap properties and values Change-Id: I691374eeed28c1f6235956a3a27c04e860411c4f Issue-ID: POLICY-1451 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2019-04-12Add statistics and sonar cleanup and blacklistPamela Dragosh1-14/+21
* Adding in the statistics for decisions and errors. * Cleaned up sonar issues and added code coverage. * Sped up JUnit tests * Fix JUnit issues with not finding application path * Fix TestDecision not finding persistence.xml * Fix for lingering statistics from previous runs. That needs to be addressed at a later time. * Changed persistence to use properties for configuration of database rather than hard coding the persistence.xml * Fix for Josh's comment to use else-if * Changed to use apache Pair * Added blacklist guard policy Issue-ID: POLICY-1440 Change-Id: I56af8c3dcc82463f7381f1eaea7f1440b76200bd Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-04-11Merge "Changes to handle PDPX deploy/undeploy"Pamela Dragosh1-0/+27
2019-04-11Changes to handle PDPX deploy/undeployMichael Mokry1-0/+27
Added changes to handle incoming udpate for deploying or undeploying the policies by comparing both sets. STill need to add support for removing the policies and getting the deployed ToscaPolicyIdentifiers for PdpStatus response. * PLD - added functionality to unload policies in the applications and * PLD - added map of loaded policies * Mike - made change to address Jim's and Joshua's comments * Mike - Made change to use mapLoadedPolicies to get deployed policies from the applications * Mike - made change to assembly.xml to add support for apps directory. Change-Id: If7d119197171b68b905b7fd0f2b5be6cf6f609e7 Issue-ID: POLICY-1451 Signed-off-by: Michael Mokry <michael.mokry@att.com> Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-04-11The final fix for xacml-pdp CSIT failureMichael Mokry1-0/+1
Bilal found the issue in assembly.xml, we needed to add properties to the <include> Change-Id: Icb84db76b8a4ab240e3ad9c562334dab116a118b Issue-ID: POLICY-1449 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2019-04-10XACML PDP DmaaP Deploy/UnDeploy FunctionMichael Mokry2-35/+8
1. Added PDPUpdate listener 2. Added PDPUpdate Publisher 3. Added code to handle PdpUpdate messages and load policies being deployed 4. Modified Activator to register listener 5. Provided placeholder code to get policies from pdpx for return PdpStatus response to the PAP 6. Other minor modifications 7. Fix XacmlPdpApplicationManager to only load policy if supports policy type. 8. Checkstyle fixes 9. Updated applications to support loadPolicy(ToscaPolicy) and all the translators, JUnit tests. 10. Consolidated some duplicate code in the applications. Can probably do more in that area. 11. Fixed bug in Properties not really having a copy constructor. Change-Id: Ic29ad426061cbdb79c1339314667bb8ff8decb88 Issue-ID: POLICY-1451 Signed-off-by: Michael Mokry <michael.mokry@att.com> Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-04-10Test decision from main entryPamela Dragosh5-1/+137
Tests a decision upon startup. This also updates the use of ToscaPolicyTypeIdentifier for all the applications. Very basic packaging for applications and their properties. Added cleaning of unused imports to remove sonar issues. Added production persistence.xml file to guard application. Not sure if we need a copy in the application/common resource directory. Issue-ID: POLICY-1440 Change-Id: If96eef5a9e0a7c6cc5461c0bdb6f0cd708cc41bb Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
2019-04-05Xacml PDP Register/Unregister ChangesMichael Mokry1-0/+25
1) Modified activator - Extend and use ServiceManagerContainer - add topicSink and topicSource properties to TopicEndpoint manager 2) Added PAP registration class 3) Added PDP message formatting class 4) Added PDP State Change listener to listen for state change and send back PDP Status.. then start heartbeat if not started already 5) Added Heartbeat publisher code to send heartbeat status on periodic interval 6) UPDATE: Made changes to satisfy Jim's review comments 7) Added code to XacmlPdpApplicationManager to get supportedPolicyTypes 8) UPDATE: more changes to satisfy Jim's latest review comments 9) Fixed the failed Junits causing build failure 10) Made change to use NetworkUtil for getting PdpStatus name value per Jorge's comment Still need to in separate review: 1) Write Junits for new code Registration and heartbeat flow as I understand it: 1) PDP starts and sends initial status to PAP with PASSIVE state 2) PDP listens for State Change from the PAP 3) PDP sends updated Active state to the AP 4) PDP begins sending periodic heartbeat status to the PAP Change-Id: Iafa06ae3f1ee195c7da3710a12d9c095c5413ec2 Issue-ID: POLICY-1449 Signed-off-by: Michael Mokry <michael.mokry@att.com>
2019-03-07Use Alpine as base docker image in xacml-pdpshaoqiu1-1/+1
Issue-ID: POLICY-1554 Change-Id: Ia80f01317f2f224e55ddc18139ac49ca19883cd1 Signed-off-by: shaoqiu <tim.huang@est.tech>
2019-02-28Fix pdp-x docker image build problemsJorge Hernandez1-8/+0
Change-Id: I4023e4b5474b6ebb712179d134616f723e75432d Issue-ID: POLICY-1436 Signed-off-by: Jorge Hernandez <jorge.hernandez-herrero@att.com>
2019-02-13Package and Create Docker Image for Xacml PDPMichael Mokry6-0/+255
- Creates docker image of policy xacml-pdp - Creates zip package of policy xacml-pdp - Also committed changes from Healthcheck/Statitics review that were allowed to be deferred Change-Id: Ia5fb72be05a30a341692453fe4ff32c7b112e861 Issue-ID: POLICY-1436 Signed-off-by: Michael Mokry <michael.mokry@att.com>