diff options
Diffstat (limited to 'readme.md')
-rw-r--r-- | readme.md | 173 |
1 files changed, 88 insertions, 85 deletions
@@ -1,79 +1,102 @@ -# ONAP MSO +# ONAP SO ---- ---- # Introduction -ONAP MSO is delivered with **2 Docker containers**, 1 hosting the **database** (MariaDB) and 1 hosting the **JBoss** application server running all ONAP MSO code. +SO (Service Orchestrator) project is mostly composed of java & groovy code along with camunda BPMN code flow. -Both containers runs on the same machine and can be started with **`docker-compose`**. +SO consists of following sub-components: + - API Handler (*/mso-api-handlers*) set of REST services for incoming requests (northbound clients) + - BPMN Execution Engine (*/bpmn*) contains all business logic of service order execution and interact with AAI, SDNC, requestdb, catalogdb etc. Exposes rest interface for Api Handler + - Set of adapters (*/adapters*) adapters that interact with ONAP components (SDNC, VFC, Request DB, Catalog DB) or external components (VNFM, Openstack) + - Data Stores: Catalog DB (configuration is here */mso-catalog-db*) to store service and resource models, recipes and workflows + - SDC Client and Controller (*/asdc-controller) to receive updated models from SDC and populate Catalog DB + - SO Monitoring (*/so-monitoring) service to monitor BPMN workflow execution status -# Compiling MSO +# Compiling SO -MSO can be compiled with `mvn clean install`. Integration tests are started with the following profile -`-P with-integration-tests` +SO can be compiled with `mvn clean install`. By default it executes: + - the standard unit tests + - the Spring integration tests + - javadoc and doclint creation + - BUT *does not build the docker images* -**to be edited for rrelease** -Docker containers are build with the following profile -`-P docker -Ddocker.buildArg.chef_repo_branch_name=bugfix/external_adress -Ddocker.buildArg.chef_repo_git_username=git -Ddocker.buildArg.chef_repo_address=23.253.149.175/mso -Ddocker.buildArg.chef_repo_git_name=chef-repo` +Integration tests are started with the following profile `-P with-integration-tests` -# Getting the containers +You can disable the integration tests by executing: `mvn clean install -DskipTests=true -Dmaven.test.skip=true` -ONAP MSO containers are stored on [here](https://nexus3.onap.org:10002) for the releases, and [here](https://nexus3.onap.org:10003) for the snapshots +You can disable the javadoc or doclint creation by executing `mvn clean install -Dmaven.javadoc.skip=true -Dadditionalparam=-Xdoclint:none` -The following Docker images are the actual deployment images used for running MSO +# Code Formatting -| Name | Tag | Description | -|-----------------|---------|-------------------------------------------------------------------------------------------------------------------------------| -| onap/mso | 1.0.0 | Contains **JBoss** + **OpenJDK** + **MSO** components (BPMN engine and MSO API handlers and adapters) | -| library/mariadb | 10.1.11 | **MariaDB** image from Docker.io, this image hosts the database and is preloaded with MSO schema and configuration at startup | +Your build may fail if you don't follow Code Guidelines. In order to format files run `mvn process-sources -P format` -# Starting MSO +# Building Docker images -### docker-compose +You can build docker images by executing profile "docker": `mvn clean install -P docker` -You can use `docker-compose` to start MSO. -The file is as the root of the directory. -See `Getting the containers` to pull the images +If you want to build docker images with out executing test and javadoc, then run the below command `mvn clean install -U -DskipTests=true -Dmaven.test.skip=true -Dmaven.javadoc.skip=true -Dadditionalparam=-Xdoclint:none -P docker` -### Heat template +# Getting the containers -A heat template that can be used on RackSpace to spin up the MSO Host VM and run docker-compose is currently being built by the Demo Team. +ONAP SO containers are stored on [here](https://nexus3.onap.org:10002) for the releases, and [here](https://nexus3.onap.org:10003) for the snapshots -# Accessing MSO +The following Docker images are the actual deployment images used for running SO -MSO UIs are not really used for operating MSO, but they provide information on what is currently happening and get an insight on the components. +| Name | Tag | Description | +|-----------------|---------|-------------------------------------------------------------------------------------------------------------------------------| +| onap/so/api-handler-infra | 1.4.4 | MSO Api handler for SO REST service entry point | +| onap/so/bpmn-infra | 1.4.4 | BPMN-Infra contains business logic of execution flow | +| onap/so/catalog-db-adapter | 1.4.4 | CatalogDB to interact with mariaDB catalogdb schema | +| onap/so/openstack-adapter | 1.4.4 | Adapter to interact with Openstack as a VIM | +| onap/so/request-db-adapter | 1.4.4 | RequestDB to interact with mariaDB requestdb schema | +| onap/so/sdc-controller | 1.4.4 | SDC-controller to interact with SDC module | +| onap/so/sdnc-adapter | 1.4.4 | SDNC Adapter to interacts with SDNC module | +| onap/so/so-monitoring | 1.4.4 | SO Monitoring for monitoring the SO workflows | +| onap/so/vfc-adapter | 1.4.4 | Adapter to interact with VFC module | +| onap/so/vnfm-adapter | 1.4.4 | Adapter to interact with external VNFMs through SOL003 interface | +| library/mariadb | 10.1.11 | MariaDB image from Docker.io, this image hosts the database and is preloaded with SO schema and configuration at startup | + +# Starting SO -### MSO JBoss console +### docker-compose -JBoss Wildly provides administrative functions through the application [server console](https://docs.jboss.org/author/display/WFLY10/Admin+Guide#AdminGuide-Accessingthewebconsole]. +You can use docker-compose to start SO. For running docker-compose, you need to checkout docker-config project. -Said console can be used to have a look at the status of MSO. It is providing details on deployed artifacts and gives a remote access to the main server log file +docker-config code is located in a single git repository named *so/docker-config* -The UI can be accessed trough http://containerHostName:9990/ +To start SO: + - `cd docker-config` + - set up DOCKER_HOST env variable with your specific host+port i.e. `export DOCKER_HOST=tcp://127.0.0.1:2375` + - run helper script `./deploy.sh` (OR `docker-compose up -d`) -The configuration preloads a default user (admin) with the standard `placeholder` password. +You can also run / restart independent docker, like to run bpmn-infra docker, use command `docker-compose up -d bpmn-infra` -The configuration of JBoss should not be touched. But it is possible to look at the two following sections for insights on the MSO health : +**NOTE**: container *onap/so/vnfm-adapter* is not started via docker-compose script -![deployments or runtime](http://img11.hostingpics.net/pics/332403image2016112412225.png) +### Heat template -Deployments shows what is deployed and running on the application server, you should see the following once MSO is up and running (Actual names of the War files may differ but their numbers and general format should be the same) +A heat template that can be used on RackSpace to spin up the SO Host VM and run docker-compose is currently being built by the Demo Team. -***to be upload when rrelease*** +# Accessing SO -Runtime can be used to have a look a the main server log files, see JVM status and parameters, environment settings etc,... +SO UIs are not really used for operating SO, but they provide information on what is currently happening and get an insight on the components. -![runtime monitor](http://img11.hostingpics.net/pics/244948image20161124123216.png) +### Spring Boot Actuator Endpoints -See the logging section below for more details about other logfiles (EELF framework) +Some of SO components (Api Handler, SO monitoring) use Embedded Tomcat from Spring boot to run application. +To monitor the app, Actuator endpoint can be used: -### MSO Camunda Cockpit console + - /manage/health - Shows application health information + - /manage/info - Displays arbitrary application info -MSO orchestration processes can be monitored with the [Camunda Engine cockpit UI](https://camunda.org/features/cockpit/). It gives an insight about the available processes, allows to trigger them manually and provides monitoring of the currently running processes +### SO Camunda Cockpit console -**IMPORTANT NOTE** : since ONAP MSO only uses Camunda Community version it is not possible to see history of running process as this is an Enterprise feature only. +SO orchestration processes can be monitored with the [Camunda Engine cockpit UI](https://camunda.org/features/cockpit/). It gives an insight about the available processes, allows to trigger them manually and provides monitoring of the currently running processes + +**IMPORTANT NOTE** : since ONAP SO only uses Camunda Community version, which don't show history of running processes - SO-Monitoring component was developed for that purpose. #### Accessing the Cockpit @@ -86,15 +109,15 @@ It is also possible to trigger them from the UI if you know the parameters that ***screenshots to be uploaded when rrelease*** -### MSO APIs +### SO APIs -Most of the MSO features within ONAP MSO are triggered by using **RESTful interfaces**. MSO supports both **HTTP** and **HTTPS**, but is configured on this release with HTTP only using Basic Authentification. +Most of the SO features within ONAP SO are triggered by using **RESTful interfaces**. SO supports both **HTTP** and **HTTPS**, but is configured on this release with HTTP only using Basic Authentification. -The MSO APIs are configured to accept requests having a **basic auth. header** set with various **username and password** depending on which API is being triggered. +The SO APIs are configured to accept requests having a **basic auth. header** set with various **username and password** depending on which API is being triggered. -All API endpoints are exposed on port **8080**, it is possible to reach all MSO subsystems directly with the proper query (see more information below on how to test MSO functions) +All API endpoints are exposed on port **8080**, it is possible to reach all SO subsystems directly with the proper query (see more information below on how to test SO functions) -##### Main API endpoints in the first open source release +##### Main API endpoints - ***to be completed*** APIHandler health checks - ***to be completed*** VID API @@ -103,15 +126,15 @@ VID endpoint : http://vm1.mso.simpledemo.onap.org:8080/ecomp/mso/infra/serviceIn The typical easy way to trigger these endpoints is to use a RESTful client or automation framework. -# Configuration of MSO +# Configuration of SO -It is important to understand that the Docker containers are using a configuration file (JSON) in order to provision MSO basic configuration, in the above Jenkins Job, Jenkins pulls that JSON file from the MSO repository, any other mean to provide that JSON file (for specific environments) would also work. +It is important to understand that the Docker containers are using a configuration file (JSON) in order to provision SO basic configuration, in the above Jenkins Job, Jenkins pulls that JSON file from the SO repository, any other mean to provide that JSON file (for specific environments) would also work. -Once the deployment of the docker images is done, you will need to configure your installation to be able to interact with all the components that MSO needs. +Once the deployment of the docker images is done, you will need to configure your installation to be able to interact with all the components that SO needs. Change the environment file located here : **/shared/mso-docker.json** then run the following command `chef-solo -c /var/berks-cookbooks/chef-repo/solo.rb -o recipe[mso-config::apih],recipe[mso-config::bpmn],recipe[mso-config::jra]` -**Important note:** The host mso is mapped automatically to c1.vm1.mso.simpledemo.onap.org in /etc/host of the docker image so you can keep mso:8080 when you want to mention the APIH, JRA or Camunda host. +**Important note:** The host SO is mapped automatically to c1.vm1.mso.simpledemo.onap.org in /etc/host of the docker image so you can keep mso:8080 when you want to mention the APIH, JRA or Camunda host. Here are the main parameters you could change: @@ -126,29 +149,22 @@ Here are the main parameters you could change: The credentials are defined in 2 places: -- JBoss users credentials are defined in /opt/jboss/standalone/configuration/application-users.properties and are associated to the corresponding role in application-roles.properties (you should not change this file except if you add a new user) -- In the environment. Replace the authorisation key in the file /shared/mso-docker.json and run the command to apply the configuration as explained above. +- In the application.yaml in projects +- application.yaml can be overriden in two places: in *so/docker-config* repository and directories *so/docker-config/volumes/so/config/so-monitoring/onapheat/override.yaml* +- In *oom* repository (if intstallation is done via oom) -You can encrypt the JBoss user with the following command `echo -n 'LOGIN:ApplicationRealm:PASSWORD' |openssl dgst -md5` and replace the line corresponding to this user in /opt/jboss/standalone/configuration/application-users.properties +You can find default users there for specific so component. +**Note** that these default users should be changed. You can replace the authentication in the environment by the value returned by the following API `GET on http://c1.vm1.mso.simpledemo.onap.org:8080/asdc/properties/encrypt/{value}/{cryptKey}` where {value} is the string login:password and cryptKey (also defined in the environment) is the key to use to encrypt the credentials -Exemple of credentials you could change: -- BPELClient: if you change this credentials, you have to change it in JBoss users AND environment file (+ apply the new config) and be careful to set the same password. In the environment it is the parameter "adaptersPoAuth" under the section "mso-bpmn-urn-config". The cryptKey to use is 07a7159d3bf51a0e53be7a8f89699be7 -- BPMNClient: if you change this credentials, you have to change it in JBoss users AND environment file (+ apply the new config) and be careful to set the same password. In the environment it is the parameter "camundaAuth" under the sections "mso-api-handler-config" AND "mso-api-handler-infra-config". The cryptKey to use is -aa3871669d893c7fb8abbcda31b88b4f - # Logging -### JBoss - -MSO log files are located the [JBoss log](https://docs.jboss.org/author/display/WFLY8/Logging+Configuration) folder in the container. - ### EELF -EELF framework is used for **specific logs** (audit, metric and error logs). They are tracking inter component logs (request and response) and allow to follow a complete flow through the MSO subsystem +EELF framework is used for **specific logs** (audit, metric and error logs). They are tracking inter component logs (request and response) and allow to follow a complete flow through the SO subsystem -EELF logs are located at the following location on the MSO JBoss container : +Logs are located at the following locations in SO containers : - /var/log/ecomp/MSO (each module has its own folder) @@ -156,27 +172,20 @@ The DEBUG mode is enabled by module and has to be re-enabled if the application It can be enabled with a GET on the following APIs: - Camunda (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/mso/logging/debug -- APIH Infra (use any jboss user with role InfraPortal-Client for authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/ecomp/mso/infra/logging/debug +- APIH Infra (use any user with role InfraPortal-Client for authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/ecomp/mso/infra/logging/debug - ASDC (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/asdc/logging/debug - DBAdapter (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/dbadapters/logging/debug - Network adapter (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/networks/rest/logging/debug -- SDNC adapter (use any jboss user with role MSO-Client for authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/adapters/rest/logging/debug +- SDNC adapter (use any user with role MSO-Client for authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/adapters/rest/logging/debug - VNF adapter (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/vnfs/rest/logging/debug - Tenant adapter (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/tenants/rest/logging/debug - APPC adapter (no authentication): http://c1.vm1.mso.simpledemo.onap.org:8080/appc/rest/logging/debug -Default JBoss users: -- with role CSI-Client: CSIClient/password1$ -- with role CSI-Client: InfraPortalClient/password1$ -- with role CSI-Client: MSOClient/password1$ - -Note that these default users should be changed. +# Testing SO Functionalities -# Testing MSO Functionalities +For this first release of SO, the queries to start the various VNFs should come first through API Handler. -For this first release of MSO, the queries to start the various VNFs should come first through API Handler. - -To help with the testing we are providing here a sample [SoapUI](https://www.soapui.org/) project [file](add link when rrealease) with the main queries that VID should send to MSO +To help with the testing we are providing here a sample [SoapUI](https://www.soapui.org/) project [file](add link when rrealease) with the main queries that VID should send to SO ### To simulate Loading of Artifacts & models (bypass ASDC)i @@ -184,11 +193,11 @@ The MariaDB container can load up special SQL scripts that simulates the loading Simply use the load ability embedded to run the 'preload SQL' script for vFirewall or vDNS -### Once the HEAT artifacts are loaded into MSO +### Once the HEAT artifacts are loaded into SO -It is also possible to simulate queries to the PO (platform orchestrator) adapter of MSO (thus bypassing BPMN flows and API handler) to verify MSO interaction with Rackspace and verify the behavior of the Adapter (so that it loads HEAT and connect to Rackspace and instantiate elements) +It is also possible to simulate queries to the PO (platform orchestrator) adapter of SO (thus bypassing BPMN flows and API handler) to verify SO interaction with Rackspace and verify the behavior of the Adapter (so that it loads HEAT and connect to Rackspace and instantiate elements) -Below is a query used from FireFox RESTClient plugin to trigger MSO adapter directly (replace values accordingly) +Below is a query used from FireFox RESTClient plugin to trigger SO adapter directly (replace values accordingly) ``` POST http://<containername>:8080/vnfs/rest/v1/vnfs/5259ba4a-cf0d-4791-9c60-9117faa5cdea/vf-modules @@ -201,11 +210,5 @@ login/password BPELClient/password1$F # Getting Help -*** to be completed on rrelease *** - -mso@lists.onap.org - -MSO Javadoc and Maven site - -*** to be completed on rrelease *** +Subscribe and post messages with SO tag in onap-discuss group at https://lists.onap.org/g/onap-discuss |