From a8709a236ce96f310002d7de37363ae492d850c2 Mon Sep 17 00:00:00 2001 From: Michael Dürre Date: Fri, 22 Mar 2024 12:01:26 +0100 Subject: fix oauth startup issues MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit add boot feature into repo. fix oauth config Issue-ID: SDNC-1838 Change-Id: I638a2de35d7725d6e4136bf9f10e00102764acc2 Signed-off-by: Michael Dürre --- installation/sdnc/pom.xml | 3 ++- .../sdnc/src/main/resources/oauth-aaa-app-config.xml | 19 ++++++++----------- installation/sdnc/src/main/scripts/startODL.sh | 14 +++++++++++--- 3 files changed, 21 insertions(+), 15 deletions(-) (limited to 'installation') diff --git a/installation/sdnc/pom.xml b/installation/sdnc/pom.xml index 18994cdc..63c20f49 100644 --- a/installation/sdnc/pom.xml +++ b/installation/sdnc/pom.xml @@ -40,7 +40,8 @@ mvn:org.onap.ccsdk.features.sdnr.northbound/sdnr-northbound-all/${ccsdk.features.version}/xml/features,\ mvn:org.onap.ccsdk.features.sdnr.wt/sdnr-wt-feature-aggregator/${ccsdk.features.version}/xml/features,\ mvn:org.onap.ccsdk.features.sdnr.wt/sdnr-wt-feature-aggregator-devicemanager/${ccsdk.features.version}/xml/features,\ - mvn:org.onap.ccsdk.features.sdnr.wt/sdnr-wt-feature-aggregator-devicemanager-base/${ccsdk.features.version}/xml/features + mvn:org.onap.ccsdk.features.sdnr.wt/sdnr-wt-feature-aggregator-devicemanager-base/${ccsdk.features.version}/xml/features,\ + mvn:org.onap.ccsdk.features.sdnr.wt/sdnr-wt-feature-aggregator-oauth/${ccsdk.features.version}/xml/features diff --git a/installation/sdnc/src/main/resources/oauth-aaa-app-config.xml b/installation/sdnc/src/main/resources/oauth-aaa-app-config.xml index 643ed4de..65e34db7 100644 --- a/installation/sdnc/src/main/resources/oauth-aaa-app-config.xml +++ b/installation/sdnc/src/main/resources/oauth-aaa-app-config.xml @@ -26,6 +26,7 @@
tokenAuthRealm + org.onap.ccsdk.features.sdnr.wt.oauthprovider.OAuth2Realm
@@ -34,17 +35,14 @@ $tokenAuthRealm -
- authcBasic - org.opendaylight.aaa.shiro.filters.ODLHttpAuthenticationFilter -
anyroles - org.opendaylight.aaa.shiro.filters.AnyRoleHttpAuthenticationFilter + org.onap.ccsdk.features.sdnr.wt.oauthprovider.filters.AnyRoleHttpAuthenticationFilter
authcBearer - org.opendaylight.aaa.shiro.filters.ODLHttpAuthenticationFilter2 + + org.onap.ccsdk.features.sdnr.wt.oauthprovider.filters.BearerAndBasicHttpAuthenticationFilter
@@ -60,7 +58,7 @@
dynamicAuthorization - org.opendaylight.aaa.shiro.realm.MDSALDynamicAuthorizationFilter + org.onap.ccsdk.features.sdnr.wt.oauthprovider.filters.CustomizedMDSALDynamicAuthorizationFilter
@@ -70,11 +68,11 @@ /**/v1/** - authcBearer, roles[admin] + authcBasic, roles[admin] /**/config/aaa*/** - authcBearer, roles[admin] + authcBasic, roles[admin] /oauth/** @@ -94,7 +92,6 @@ /** - authcBearer, anyroles["admin,provision"] + authcBearer, roles[admin] - diff --git a/installation/sdnc/src/main/scripts/startODL.sh b/installation/sdnc/src/main/scripts/startODL.sh index eb27e0f8..7de8e508 100755 --- a/installation/sdnc/src/main/scripts/startODL.sh +++ b/installation/sdnc/src/main/scripts/startODL.sh @@ -90,11 +90,15 @@ initialize_sdnrdb() { printf "%s\n" "Execute: $INITCMD" n=0 until [ $n -ge 5 ] ; do - $INITCMD && break + $INITCMD + ret=$? + if [ $ret -eq 0 ] ; then + break; + fi n=$((n+1)) sleep 15 done - return $? + return $ret } install_sdnrwt_features() { @@ -340,6 +344,10 @@ if $SDNRINIT ; then init_result=$? printf "%s\n" "Result of init script: $init_result" if $SDNRWT ; then + if [ $init_result -ne 0 ]; then + echo "db not initialized. stopping container" + exit $init_result + fi printf "Proceed to initialize sdnr\n" else exit $init_result @@ -393,7 +401,7 @@ then if $SDNRWT ; then install_sdnrwt_features ; fi if $ENABLE_OAUTH ; then cp $SDNC_HOME/data/oauth-aaa-app-config.xml $(find $ODL_HOME/system/org/opendaylight/aaa/ -name *aaa-app-config.xml) - echo -e "\norg.ops4j.pax.web.session.cookie = none" >> $ODL_HOME/etc/org.ops4j.pax.web.cfg + echo -e "\norg.ops4j.pax.web.session.cookie.comment = disable" >> $ODL_HOME/etc/org.ops4j.pax.web.cfg install_sdnr_oauth_features fi -- cgit 1.2.3-korg