The following describes how to configure authentication for the VNFM adapter.\r
\r
+TLS should always be configured to ensure secure communication between the VNFM-adapter <-> BPMN infra and VNFM-adapter <-> VNFM\r
+If two-way TLS is configured then there is no need for any further authentication (i.e. no need for token or basic auth).\r
+If two-way TLS is NOT configured then authentication is REQUIRED. Oauth token based authentication must be used for requests, while for notifications either oauth tokens or basic auth can be used.\r
+\r
\r
==========================================\r
To confgure TLS\r
server:\r
ssl:\r
key-alias: so@so.onap.org\r
- key--store-password: 'I,re7WWEJR$e]x370wRgx?qE'\r
- key-store: classpath:org.onap.so.p12\r
+ key--store-password: 'ywsqCy:EEo#j}HJHM7z^Rk[L'\r
+ key-store: classpath:so-vnfm-adapter.p12\r
key-store-type: PKCS12\r
The values shown above relate to the certificate included in the VNFM adapter jar which has been generated from AAF. If a different certificate is to be used then these values should be changed accordingly.\r
\r
http:\r
client:\r
ssl:\r
- trust-store: org.onap.so.trust.jks\r
- trust-store-password: NyRD](z:EJJNIt?},QgM3o7H\r
+ trust-store: classpath:org.onap.so.trust.jks\r
+ trust-store-password: ',sx#.C*W)]wVgJC6ccFHI#:H'\r
The values shown above relate to the trust store included in the VNFM adapter jar which has been generated from AAI. If a different trust store is to be used then these values should be changed accordingly.\r
\r
Ensure the value for the below parameter uses https instead of http\r
http:
converters:
preferred-json-mapper: gson
-
-http:
- client:
- ssl:
- trust-store: classpath:org.onap.so.trust.jks
- trust-store-password: ',sx#.C*W)]wVgJC6ccFHI#:H'
server:
port: 9092
tomcat:
max-threads: 50
- ssl:
- key-alias: so@so.onap.org
- key--store-password: 'ywsqCy:EEo#j}HJHM7z^Rk[L'
- key-store: classpath:so-vnfm-adapter.p12
- key-store-type: PKCS12
mso:
key: 07a7159d3bf51a0e53be7a8f89699be7
endpoint: http://sdc.onap/1234A
vnfmadapter:
- endpoint: https://so-vnfm-adapter.onap:9092
+ endpoint: http://so-vnfm-adapter.onap:9092
#Actuator
management: