- "10000:10000"
depends_on:
- "consul"
+ - "tls-init"
labels:
- "SERVICE_10000_NAME=config_binding_service"
- "SERVICE_10000_CHECK_HTTP=/healthcheck"
- "SERVICE_10000_CHECK_INTERVAL=15s"
- "SERVICE_10000_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
+
+ tls-init:
+ image: "{{ nexus_docker_repo }}/onap/org.onap.dcaegen2.deployments.tls-init-container:{{ dcae_docker_tls }}"
+ container_name: "tls-init"
+ hostname: "tls-init"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
- "SERVICE_8080_CHECK_HTTP=/healthcheck"
- "SERVICE_8080_CHECK_INTERVAL=15s"
- "SERVICE_8080_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
mvp-dcaegen2-analytics-tca:
- "SERVICE_11011_CHECK_HTTP=/cdap/ns/cdap_tca_hi_lo"
- "SERVICE_11011_CHECK_INTERVAL=15s"
- "SERVICE_11011_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
mvp-dcaegen2-analytics-holmes-engine-management:
image: "{{ nexus_docker_repo }}/onap/holmes/engine-management:{{ holmes_docker_em }}"
- "9102:9102"
labels:
- "SERVICE_9102_IGNORE=true"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
mvp-dcaegen2-analytics-holmes-rule-management:
image: "{{ nexus_docker_repo }}/onap/holmes/rule-management:{{ holmes_docker_rm }}"
- "9101:9101"
labels:
- "SERVICE_9101_IGNORE=true"
-
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
- "SERVICE_8080_CHECK_HTTP=/dcae-service-types"
- "SERVICE_8080_CHECK_INTERVAL=15s"
- "SERVICE_8080_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
service-change-handler:
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/health.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
deployment_handler:
- "SERVICE_8443_CHECK_HTTP=/"
- "SERVICE_8443_CHECK_INTERVAL=15s"
- "SERVICE_8443_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/app/dh/etc/cert/"
policy_handler:
- "SERVICE_25577_CHECK_HTTP=/healthcheck"
- "SERVICE_25577_CHECK_INTERVAL=15s"
- "SERVICE_25577_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/app/policy_handler/etc/tls/certs/"
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/snmptrap/bin/snmptrapd.sh status"
- "SERVICE_CHECK_INTERVAL=300s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
prh:
- "SERVICE_8082_CHECK_HTTP=/heartbeat"
- "SERVICE_8082_CHECK_INTERVAL=15s"
- "SERVICE_8082_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
hvves:
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/hvves/bin/healthcheck.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
datafile:
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/datafile/bin/healthcheck.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
mapper-universalvesadaptor:
image: "{{ nexus_docker_repo }}/onap/org.onap.dcaegen2.services.mapper.vesadapter.universalvesadaptor:{{ dcae_docker_mua }}"
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/datafile/bin/healthcheck.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
mapper-snmp:
image: "{{ nexus_docker_repo }}/onap/org.onap.dcaegen2.services.mapper.vesadapter.snmpmapper:{{ dcae_docker_msnmp }}"
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/datafile/bin/healthcheck.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
heartbeat:
- "SERVICE_CHECK_DOCKER_SCRIPT=/opt/app/datafile/bin/healthcheck.sh"
- "SERVICE_CHECK_INTERVAL=15s"
- "SERVICE_CHECK_INITIAL_STATUS=passing"
+ volumes:
+ - "./tls/shared:/opt/tls/shared"
"policy_handler": {
"deploy_handler": {
"target_entity": "deployment_handler",
+ "tls_ca_mode": "do_not_verify",
"max_msg_length_mb": 5,
+ "url" : "https://{{ dcae_ip_addr }}:8188",
+ "tls_ca_mode" : "cert_directory",
"query": {
"cfy_tenant_name": "default_tenant"
}
},
"policy_engine": {
"path_api": "/pdp/api/",
+ "path_notifications" : "/pdp/notifications",
+ "tls_ca_mode" : "cert_directory",
+ "tls_wss_ca_mode" : "cert_directory",
"headers": {
"Environment": "TEST",
"ClientAuth": "cHl0aG9uOnRlc3Q=",
"Authorization": "Basic dGVzdHBkcDphbHBoYTEyMw=="
},
"path_pdp": "/pdp/",
- "url": "http://{{ policy_ip_addr }}:8081",
- "target_entity": "policy_engine"
+ "url": "https://{{ policy_ip_addr }}:8081",
+ "target_entity": "policy_engine",
+ "tls_wss_ca_mode": "do_not_verify",
+ "tls_ca_mode": "do_not_verify"
}
}
}'