Merge "[SDNC] Use common aaf template in sdnc"

author Krzysztof Opasiak <k.opasiak@samsung.com>

Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)
author Krzysztof Opasiak <k.opasiak@samsung.com>
Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)
diff --git a/kubernetes/aaf/charts/aaf-cass/values.yaml b/kubernetes/aaf/charts/aaf-cass/values.yaml

index 3d9f21e..e347df2 100644 (file)
--- a/kubernetes/aaf/charts/aaf-cass/values.yaml
+++ b/kubernetes/aaf/charts/aaf-cass/values.yaml
@@ -34,7 +34,7 @@ liveness:
    enabled: true
    port: tcp-cql
  
-image: onap/aaf/aaf_cass:2.1.20
+image: onap/aaf/aaf_cass:2.1.22
  
  config:
    cluster_name: osaaf
diff --git a/kubernetes/aaf/charts/aaf-hello/values.yaml b/kubernetes/aaf/charts/aaf-hello/values.yaml

index aeb6590..786f0b0 100644 (file)
--- a/kubernetes/aaf/charts/aaf-hello/values.yaml
+++ b/kubernetes/aaf/charts/aaf-hello/values.yaml
@@ -41,7 +41,7 @@ aaf_init:
  
  replicaCount: 0
  
-image: onap/aaf/aaf_hello:2.1.20
+image: onap/aaf/aaf_hello:2.1.22
  
  service:
    name: aaf-hello
diff --git a/kubernetes/aaf/values.yaml b/kubernetes/aaf/values.yaml

index bedf243..cc97e98 100644 (file)
--- a/kubernetes/aaf/values.yaml
+++ b/kubernetes/aaf/values.yaml
@@ -42,10 +42,10 @@ global:
  
    aaf:
      readiness: false
-    image: onap/aaf/aaf_core:2.1.20
+    image: onap/aaf/aaf_core:2.1.22
      aaf_env: "DEV"
      public_fqdn: "aaf.osaaf.org"
-    aaf_release: "El Alto"
+    aaf_release: "Frankfurt"
    # DUBLIN ONLY - for M4 compatibility with Casablanca
    #  aaf_locator_name: "public.%NS.%N"
    #  aaf_locator_name_oom: "%NS.%N"
@@ -57,7 +57,7 @@ global:
      cadi_x509_issuers: "CN=intermediateCA_1, OU=OSAAF, O=ONAP, C=US:CN=intermediateCA_7, OU=OSAAF, O=ONAP, C=US"
  
      config:
-      image: onap/aaf/aaf_config:2.1.20
+      image: onap/aaf/aaf_config:2.1.22
  
      service:
        fqdn: "aaf-service"
diff --git a/kubernetes/common/network-name-gen/templates/deployment.yaml b/kubernetes/common/network-name-gen/templates/deployment.yaml

index 3e9e849..b9550c7 100644 (file)
--- a/kubernetes/common/network-name-gen/templates/deployment.yaml
+++ b/kubernetes/common/network-name-gen/templates/deployment.yaml
@@ -57,6 +57,11 @@ spec:
          name: {{ include "common.name" . }}-readiness
        containers:
        - name: {{ include "common.name" . }}
+        command:
+          - bash
+        args:
+          - '-c'
+          - 'export POL_BASIC_AUTH=`echo -n $POL_BASIC_AUTH_USER:$POL_BASIC_AUTH_PASSWORD | base64`; /startService.sh'
          image: "{{ include "common.repository" . }}/{{ .Values.image }}"
          imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}
          env:
@@ -70,8 +75,10 @@ spec:
            value: jdbc:mysql://{{ include "common.mariadbService" . }}:{{ include "common.mariadbPort" . }}/{{ index .Values "mariadb-galera" "config" "mysqlDatabase" }}
          - name: POL_CLIENT_AUTH
            value: "{{ .Values.config.polClientAuth }}"
-        - name: POL_BASIC_AUTH
-          value: "{{ .Values.config.polBasicAuth }}"
+        - name: POL_BASIC_AUTH_USER
+          {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "pol-basic-auth-secret" "key" "login") | indent 10}}
+        - name: POL_BASIC_AUTH_PASSWORD
+          {{- include "common.secret.envFromSecretFast" (dict "global" . "uid" "pol-basic-auth-secret" "key" "password") | indent 10}}
          - name: POL_URL
            value: "{{ .Values.config.polUrl }}"
          - name: POL_ENV
diff --git a/kubernetes/common/network-name-gen/values.yaml b/kubernetes/common/network-name-gen/values.yaml

index a9f2a5b..81c596c 100644 (file)
--- a/kubernetes/common/network-name-gen/values.yaml
+++ b/kubernetes/common/network-name-gen/values.yaml
@@ -49,6 +49,12 @@ secrets:
      externalSecret: '{{ tpl (default "" .Values.config.db.userCredentialsExternalSecret) . }}'
      login: '{{ .Values.config.db.userName }}'
      password: '{{ .Values.config.db.userPassword }}'
+  - uid: pol-basic-auth-secret
+    name: '{{ include "common.release" . }}-pol-basic-auth-secret'
+    type: basicAuth
+    externalSecret: '{{ tpl (default "" .Values.config.polBasicAuthSecret) . }}'
+    login: '{{ .Values.config.polBasicAuthUser }}'
+    password: '{{ .Values.config.polBasicAuthPassword }}'
  
  # sub-chart config
  mariadb-galera:
@@ -84,8 +90,9 @@ config:
      # userCredentialsExternalSecret: some-secret
    springProfile: live
    polClientAuth: cHl0aG9uOnRlc3Q=
-  polBasicAuth: dGVzdHBkcDphbHBoYTEyMw==
-  polUrl: https://pdp:8081/pdp/api/getConfig
+  polBasicAuthUser: healthcheck
+  polBasicAuthPassword: zb!XztG34
+  polUrl: https://policy-xacml-pdp:6969/policy/pdpx/v1/decision
    polEnv: TEST
    polReqId: xx
    aaiCertPass: changeit
diff --git a/kubernetes/policy/charts/pap/templates/service.yaml b/kubernetes/policy/charts/pap/templates/service.yaml

index a23352a..b6deb5c 100644 (file)
--- a/kubernetes/policy/charts/pap/templates/service.yaml
+++ b/kubernetes/policy/charts/pap/templates/service.yaml
@@ -1,6 +1,7 @@
  #  ============LICENSE_START=======================================================
  #   Copyright (C) 2019 Nordix Foundation.
  #   Modifications Copyright (C) 2019 AT&T Intellectual Property.
+#   Modifications Copyright (C) 2020 Bell Canada.
  #  ================================================================================
  #  Licensed under the Apache License, Version 2.0 (the "License");
  #  you may not use this file except in compliance with the License.
@@ -28,10 +29,17 @@ metadata:
      release: {{ include "common.release" . }}
      heritage: {{ .Release.Service }}
  spec:
+  type: {{ .Values.service.type }}
    ports:
+    {{if eq .Values.service.type "NodePort" -}}
+    - port: {{ .Values.service.internalPort }}
+      nodePort: {{ .Values.global.nodePortPrefixExt | default .Values.nodePortPrefixExt }}{{ .Values.service.nodePort }}
+      name: {{ .Values.service.portName }}
+    {{- else -}}
      - port: {{ .Values.service.externalPort }}
        targetPort: {{ .Values.service.internalPort }}
        name: {{ .Values.service.portName }}
+    {{- end}}
    selector:
      app: {{ include "common.name" . }}
      release: {{ include "common.release" . }}
diff --git a/kubernetes/policy/charts/pap/values.yaml b/kubernetes/policy/charts/pap/values.yaml

index 630b205..e5eef01 100644 (file)
--- a/kubernetes/policy/charts/pap/values.yaml
+++ b/kubernetes/policy/charts/pap/values.yaml
@@ -1,6 +1,7 @@
  #  ============LICENSE_START=======================================================
  #   Copyright (C) 2019 Nordix Foundation.
  #   Modifications Copyright (C) 2019-2020 AT&T Intellectual Property.
+#   Modifications Copyright (C) 2020 Bell Canada.
  #  ================================================================================
  #  Licensed under the Apache License, Version 2.0 (the "License");
  #  you may not use this file except in compliance with the License.
@@ -21,6 +22,7 @@
  # Global configuration defaults.
  #################################################################
  global:
+  nodePortPrefixExt: 304
    persistence: {}
    envsubstImage: dibi/envsubst
  
@@ -105,6 +107,7 @@ service:
    portName: policy-pap
    internalPort: 6969
    externalPort: 6969
+  nodePort: 42
  
  ingress:
    enabled: false
diff --git a/kubernetes/portal/charts/portal-app/resources/config/deliveries/properties/ONAPPORTAL/system.properties b/kubernetes/portal/charts/portal-app/resources/config/deliveries/properties/ONAPPORTAL/system.properties

index aeef85e..b5b4e48 100755 (executable)
--- a/kubernetes/portal/charts/portal-app/resources/config/deliveries/properties/ONAPPORTAL/system.properties
+++ b/kubernetes/portal/charts/portal-app/resources/config/deliveries/properties/ONAPPORTAL/system.properties
@@ -119,8 +119,7 @@ cookie_domain = onap.org
  remote_centralized_system_access = {{.Values.global.aafEnabled}}
  
  # External Access System Basic Auth Credentials & Rest endpoint
-# The credentials are placeholders as these are replaced by AAF X509 identity at runtime
-ext_central_access_user_name = portal@portal.onap.org
-ext_central_access_password = thisfakepasswordwillbereplacedbythex509cert
+ext_central_access_user_name = aaf_admin@people.osaaf.org
+ext_central_access_password = demo123456!
  ext_central_access_url = {{.Values.aafURL}}
  ext_central_access_user_domain = @people.osaaf.org
 \ No newline at end of file
diff --git a/kubernetes/portal/charts/portal-app/values.yaml b/kubernetes/portal/charts/portal-app/values.yaml

index 01bc0da..b0d2f5d 100644 (file)
--- a/kubernetes/portal/charts/portal-app/values.yaml
+++ b/kubernetes/portal/charts/portal-app/values.yaml
@@ -32,7 +32,7 @@ global:
  
  # application image
  repository: nexus3.onap.org:10001
-image: onap/portal-app:3.2.1
+image: onap/portal-app:3.2.2
  pullPolicy: Always
  
  #AAF local config
diff --git a/kubernetes/portal/charts/portal-mariadb/values.yaml b/kubernetes/portal/charts/portal-mariadb/values.yaml

index 1234b6b..0ae7f4e 100644 (file)
--- a/kubernetes/portal/charts/portal-mariadb/values.yaml
+++ b/kubernetes/portal/charts/portal-mariadb/values.yaml
@@ -25,7 +25,7 @@ global: # global defaults
  
  # application image
  repository: nexus3.onap.org:10001
-image: onap/portal-db:3.2.0
+image: onap/portal-db:3.2.2
  pullPolicy: Always
  
  
diff --git a/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties b/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties

index 45ea9b7..2a2ec59 100755 (executable)
--- a/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties
+++ b/kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties
@@ -86,8 +86,8 @@ cookie_domain = onap.org
  remote_centralized_system_access = {{.Values.global.aafEnabled}}
  
  # External Access System Basic Auth Credentials & Rest endpoint
-# The credentials are placeholders as these are replaced by AAF X509 identity at runtime
-ext_central_access_user_name = portal@portal.onap.org
-ext_central_access_password = thisfakepasswordwillbereplacedbythex509cert
+# External Access System Basic Auth Credentials & Rest endpoint
+ext_central_access_user_name = aaf_admin@people.osaaf.org
+ext_central_access_password = demo123456!
  ext_central_access_url = {{.Values.aafURL}}
  ext_central_access_user_domain = @people.osaaf.org
 \ No newline at end of file
diff --git a/kubernetes/portal/charts/portal-widget/values.yaml b/kubernetes/portal/charts/portal-widget/values.yaml

index 3d63cd8..3692579 100644 (file)
--- a/kubernetes/portal/charts/portal-widget/values.yaml
+++ b/kubernetes/portal/charts/portal-widget/values.yaml
@@ -29,7 +29,7 @@ global:
  #################################################################
  # application image
  repository: nexus3.onap.org:10001
-image: onap/portal-wms:3.2.0
+image: onap/portal-wms:3.2.2
  pullPolicy: Always
  
  # flag to enable debugging - application support required
author	Krzysztof Opasiak <k.opasiak@samsung.com>
	Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Thu, 21 May 2020 16:50:27 +0000 (16:50 +0000)
kubernetes/aaf/charts/aaf-cass/values.yaml		patch \| blob \| history
kubernetes/aaf/charts/aaf-hello/values.yaml		patch \| blob \| history
kubernetes/aaf/values.yaml		patch \| blob \| history
kubernetes/common/network-name-gen/templates/deployment.yaml		patch \| blob \| history
kubernetes/common/network-name-gen/values.yaml		patch \| blob \| history
kubernetes/policy/charts/pap/templates/service.yaml		patch \| blob \| history
kubernetes/policy/charts/pap/values.yaml		patch \| blob \| history
kubernetes/portal/charts/portal-app/resources/config/deliveries/properties/ONAPPORTAL/system.properties		patch \| blob \| history
kubernetes/portal/charts/portal-app/values.yaml		patch \| blob \| history
kubernetes/portal/charts/portal-mariadb/values.yaml		patch \| blob \| history
kubernetes/portal/charts/portal-sdk/resources/config/deliveries/properties/ONAPPORTALSDK/system.properties		patch \| blob \| history
kubernetes/portal/charts/portal-widget/values.yaml		patch \| blob \| history