Page Comparison

Table of Contents

Jira Legacy

server	System Jira
serverId	4733707d-2057-3a0f-ae5e-4fd8aff50176
key	UCA-20

...

Seq

Name

Source

Target

Actor

REST write

REST read

REST delete

deploy service model

vid

aai

demo user

9023f592-5c64-4a5b-9333-3287fdc9d304

create service instance

vid

aai

demo user

Input:

InstanceName=DemoInstance
Subscriber=Demonstration
ServiceType=vFW

Output:
SIID=c54316d8-464e-4967-bece-8c2b2f458b66

07/27/17 12:10:39 HTTP Status: OK (200)
{
  "request": {
    "requestId": "96dcaa23-88cb-41ac-bf8c-e1e5bb423232",
    "startTime": "Wed, 26 Jul 2017 16:10:26 GMT",
    "requestScope": "service",
    "requestType": "createInstance",
    "requestDetails": {
      "modelInfo": {
        "modelCustomizationName": null,
        "modelInvariantId": "43d59b70-8829-4a50-a3f7-d261b220ceef",
        "modelType": "service",
        "modelNameVersionId": "dcb40136-9cec-45be-b080-2a36b31c2f06",
        "modelName": "vfservice",
        "modelVersion": "1.0"
      },
      "requestInfo": {
        "billingAccountNumber": null,
        "callbackUrl": null,
        "correlator": null,
        "orderNumber": null,
        "productFamilyId": null,
        "orderVersion": null,
        "source": "VID",
        "instanceName": "DemoInstance",
        "suppressRollback": false
      },
      "relatedInstanceList": null,
      "subscriberInfo": {
        "globalSubscriberId": "Demonstration",
        "subscriberName": null
      },
      "cloudConfiguration": null,
      "requestParameters": {
        "subscriptionServiceType": "vFW",
        "userParams": []
      }
    },
    "instanceReferences": {
      "serviceInstanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
      "serviceInstanceName": "DemoInstance",
      "vnfInstanceId": null,
      "vnfInstanceName": null,
      "vfModuleInstanceId": null,
      "vfModuleInstanceName": null,
      "volumeGroupInstanceId": null,
      "volumeGroupInstanceName": null,
      "networkInstanceId": null,
      "networkInstanceName": null
    },
    "requestStatus": {
      "requestState": "COMPLETE",
      "statusMessage": "Service Instance has been created successfully.",
      "percentProgress": 100,
      "finishTime": "Wed, 26 Jul 2017 16:10:31 GMT"
    }
  }
}

07/27/17 12:10:28 HTTP Status: Accepted (202)
{
  "requestReferences": {
    "instanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
    "requestId": "96dcaa23-88cb-41ac-bf8c-e1e5bb423232"
  }
}

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/

{ "service-instance": [{
"service-instance-id": "c54316d8-464e-4967-bece-8c2b2f458b66",
"service-instance-name": "DemoInstance",
"persona-model-id": "2a01ef12-9bb1-4205-9941-a506cbae99c9",

http://{{mso_ip}}:8080/ecomp/mso/infra/serviceInstances/v2/cd2eb659-2463-461b-9c3b-3bf03619c167

{
"requestReferences": {
"instanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
"requestId": "1764e091-7d43-4eb0-92d6-b449a85926d2"
}
}

...

Seq

Name

Source

Target

Actor

REST write

REST read

REST delete

create Vf module <DemoModule>

vid

demo user

Success without running VID! - workaround for

Jira Legacy

server	System Jira
serverId	4733707d-2057-3a0f-ae5e-4fd8aff50176
key	VID-19

Output:

VfModuleID=5a08199b-4161-4181-9b2d-da29f6df1410
HeatStackID=DemoModule/55bd16d6-6bac-4638-9e87-9063df6d03c3

via OpenStack

openstack server list

4be336b3-a31c-4be0-9261-0cb1cb51227d | demofwl01fwl | ACTIVE | oam_ecomp_LbMf=10.1.0.11; demofwl_unprotected=192.168.110.100; public=104.239.230.93, | || | | | 2001:4802:7803:104:be76:4eff:fe20:377b; demofwl_protected=192.168.120.100

post call

http://{{mso_ip}}:8080/ecomp/mso/infra/serviceInstances/v2/<id>/vnfs/<id>/vfModules

inputs:

serviceInstance id = c543... from relatedInstance:type=service

vnf id = 6229.. from relatedInstance:type=vnf

using

https://{{aai_ip}}:8443/aai/v8/network/generic-vnfs

get: "relatedInstance": { "instanceId": "6229cdee-10f6-4ec4-a5e0-0593154e6d83",

from: {"generic-vnf": [{"vnf-id": "6229cdee-10f6-4ec4-a5e0-0593154e6d83"

get: modelInvariantId": "7425ba97-e159-4c0f-87dd-3af3b439148b"

from: "persona-model-id": "7425ba97-e159-4c0f-87dd-3af3b439148b"

using

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/

get: "instanceReferences": { "serviceInstanceId": "c54316d8-464e-4967-bece-8c2b2f458b66"

from: { "service-instance": [{"service-instance-id": "c54316d8-464e-4967-bece-8c2b2f458b66",

body :

{ "requestDetails": {
"requestInfo": {
"instanceName": "DemoModule",
"source": "VID",
"suppressRollback": false
},
"modelInfo": {
"modelType": "vfModule",
"modelInvariantId": "1051e887-365f-4e90-b4cc-3f5c6f588188",
"modelNameVersionId": "02b1cf61-2dc9-4be9-869c-354395670faf",
"modelName": "Vsp..base_vfw..module-0",
"modelVersion": "1.0"
},
"requestParameters": {
"userParams": []
},
"relatedInstanceList": [
{"relatedInstance": {
"instanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167", // from "service-instance-id" of https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/
"modelInfo": {
"modelType":"service",
"modelName":"vfservice", // from vnf-type of https://{{aai_ip}}:8443/aai/v8/network/generic-vnfs
"modelInvariantId":"43d59b70-8829-4a50-a3f7-d261b220ceef", // from "persona-model-id" of https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/
"modelVersion":"1.0",
"modelNameVersionId":"831ed809-345e-4ed0-b216-6308c0f0d8e4"
} } },
{"relatedInstance": {
"instanceId": "110f0e9c-52f9-4b12-8bd8-fa2980e48454", // from "vnf-id" of https://{{aai_ip}}:8443/aai/v8/network/generic-vnfs
"modelInfo": {
"modelType":"vnf",
"modelName":"vsp",
"modelInvariantId":"27036887-1053-48e8-a55e-3d2a7264a658", // from "persona-model-id" ofhttps://{{aai_ip}}:8443/aai/v8/network/generic-vnfs
"modelVersion":"1.0",
"modelNameVersionId":"9c265d0b-e606-4242-9ace-98962a1b93e7",
"modelCustomizationName":"vsp 1"
} } }],
"cloudConfiguration": {
"lcpCloudRegionId": "DFW",
"tenantId": "{{tenant_id}}"
} }}

however there is more to this than just a rest call - no heat stack means no vf instances yet

http://{{mso_ip}}:8080/ecomp/mso/infra/serviceInstances/v2/cd2eb659-2463-461b-9c3b-3bf03619c167/vnfs/110f0e9c-52f9-4b12-8bd8-fa2980e48454/vfModules

{
"requestReferences": {
"instanceId": "52d939c6-e603-4782-92e8-962387ae5de8",
"requestId": "8869bc00-f07e-48d2-a55b-c725cfca44f4"
}
}

however a call to the following - shows we need to get the right network name in the preload

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vnfInstanceId%3AEQUALS%3A110f0e9c-52f9-4b12-8bd8-fa2980e48454

"requestStatus": {
"requestState": "FAILED",
"statusMessage": "Received vfModuleException from VnfAdapter: category='INTERNAL' message='Exception during create VF 400 Bad Request: The server could not comply with the request since it is either malformed or otherwise incorrect., error.type=StackValidationFailed, error.message=Property error: : resources.vfw_private_2_port.properties.fixed_ips[0].subnet: : Error validating value 'oam_ecomp_LbMf': Unable to find subnet with name or id 'oam_ecomp_LbMf'' rolledBack='true'",

retry after redoing preload with proper subnet name oam_ecomp_QbZ1

200 OK

{ "requestReferences": {
"instanceId": "d5508965-35c6-4720-a7f0-4b0e17f25c9d",
"requestId": "9a3510d2-9aa7-486a-8b39-fab543c718ec"
}}

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vfModuleInstanceId%3AEQUALS%3A5a08199b-4161-4181-9b2d-da29f6df1410

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vnfInstanceId%3AEQUALS%3A110f0e9c-52f9-4b12-8bd8-fa2980e48454

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vfModuleInstanceId%3AEQUALS%3Ad5508965-35c6-4720-a7f0-4b0e17f25c9d

{ "requestList": [{

"request": {
"requestId": "9a3510d2-9aa7-486a-8b39-fab543c718ec",
"startTime": "Wed, 26 Jul 2017 21:10:37 GMT",
"requestScope": "vfModule",
"requestType": "createInstance",
"requestDetails": {
"modelInfo": {
"modelCustomizationName": null,
"modelInvariantId": "1051e887-365f-4e90-b4cc-3f5c6f588188",
"modelType": "vfModule",
"modelNameVersionId": "02b1cf61-2dc9-4be9-869c-354395670faf",
"modelName": "Vsp..base_vfw..module-0",
"modelVersion": "1.0"
}, "requestInfo": {
"billingAccountNumber": null,
"callbackUrl": null,
"correlator": null,
"orderNumber": null,
"productFamilyId": null,
"orderVersion": null,
"source": "VID",
"instanceName": "DemoModule",
"suppressRollback": false
}, "relatedInstanceList": [
{ "relatedInstance": {
"instanceName": null,
"instanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
"modelInfo": {
"modelCustomizationName": null,
"modelInvariantId": "43d59b70-8829-4a50-a3f7-d261b220ceef",
"modelType": "service",
"modelNameVersionId": "15eb2af8-766c-4e53-9038-a4a95e79f105",
"modelName": "vfservice",
"modelVersion": "1.0"
} } }, {
"relatedInstance": {
"instanceName": null,
"instanceId": "110f0e9c-52f9-4b12-8bd8-fa2980e48454",
"modelInfo": {
"modelCustomizationName": "vsp 1",
"modelInvariantId": "27036887-1053-48e8-a55e-3d2a7264a658",
"modelType": "vnf",
"modelNameVersionId": "2e5273f3-a6a4-4c50-9b0a-bc9b25749ca3",
"modelName": "vsp",
"modelVersion": "1.0"
} } } ],
"subscriberInfo": null,
"cloudConfiguration": {
"aicNodeClli": null,
"tenantId": "your_tenant_id",
"lcpCloudRegionId": "DFW"
},
"requestParameters": {
"subscriptionServiceType": null,
"userParams": []
} },
"instanceReferences": {
"serviceInstanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
"serviceInstanceName": null,
"vnfInstanceId": "110f0e9c-52f9-4b12-8bd8-fa2980e48454",
"vnfInstanceName": null,
"vfModuleInstanceId": "d5508965-35c6-4720-a7f0-4b0e17f25c9d",
"vfModuleInstanceName": "DemoModule",
"volumeGroupInstanceId": null,
"volumeGroupInstanceName": null,
"networkInstanceId": null,
"networkInstanceName": null
}, "requestStatus": {
"requestState": "COMPLETE",
"statusMessage": "Vf Module has been created successfully.",
"percentProgress": 100,
"finishTime": "Wed, 26 Jul 2017 21:14:26 GMT"
} } } ]}

get ID via

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vfModuleInstanceId%3AEQUALS%3Ad5508965-35c6-4720-a7f0-4b0e17f25c9d

{ ...
} }, "instanceReferences": {
"serviceInstanceId": "cd2eb659-2463-461b-9c3b-3bf03619c167",
"serviceInstanceName": null,
"vnfInstanceId": "110f0e9c-52f9-4b12-8bd8-fa2980e48454",
"vnfInstanceName": null,
"vfModuleInstanceId": "d5508965-35c6-4720-a7f0-4b0e17f25c9d",
"vfModuleInstanceName": "DemoModule",
"volumeGroupInstanceId": null,
"volumeGroupInstanceName": null,
"networkInstanceId": null,
"networkInstanceName": null
},
"requestStatus": {
"requestState": "COMPLETE",
"statusMessage": "Vf Module has been created successfully.",
"percentProgress": 100,
"finishTime": "Wed, 26 Jul 2017 21:14:26 GMT"
} } } ]}

DEL to

http://{{mso_ip}}:8080/ecomp/mso/infra/serviceInstances/v2/cd2eb659-2463-461b-9c3b-3bf03619c167/vnfs/110f0e9c-52f9-4b12-8bd8-fa2980e48454/vfModules/d5508965-35c6-4720-a7f0-4b0e17f25c9d

fails - referencing an older preload

{
"serviceException": {
"messageId": "SVC0002",
"text": "Error parsing request. No valid serviceInstanceId matching the serviceInstanceId in request URI is specified"
}
}

...

Below we import the cert into the default keystore. Where did I get the cert? by extracting it from Firefox - however it is in the code base - looking it up

Note: we will need to replace the AAI Certificate before 1 Dec 2017 -

Jira Legacy

server	System Jira
serverId	4733707d-2057-3a0f-ae5e-4fd8aff50176
key	AAI-94

$ ls $JAVA_HOME/jre/lib/security/cacerts

/Library/Java/JavaVirtualMachines/jdk1.8.0_121.jdk/Contents/Home/jre/lib/security/cacerts

sudo keytool -import -trustcacerts -alias aai -file /config/certs/aai/aaiapisimpledemoopenecomporg.cer -keystore $JAVA_HOME/jre/lib/security/cacerts

on robot

root@vm1-robot:~# keytool -list -keystore /usr/lib/jvm/java-1.8.0-openjdk-amd64/jre/lib/security/cacerts -v

sudo scp aaiapisimpledemoopenecomporg.cer root@robot:/opt

keytool -import -trustcacerts -alias aai -file aaiapisimpledemoopenecomporg.cer -keystore /usr/lib/jvm/java-1.8.0-openjdk-amd64/jre/lib/security/cacerts

the aai keystore password does not work - I will use my own truststore

"AAI_KEYSTORE_PASSWD_X": "OBF:1vn21ugu1saj1v9i1v941sar1ugw1vo0"

Installing the AAI certificate in your own keystore on the Robot VM

root@vm1-robot:/opt# keytool -import -trustcacerts -alias aai -file aaiapisimpledemoopenecomporg.cer -keystore /usr/lib/jvm/java-1.8.0-openjdk-amd64/jre/lib/security/cacerts

Enter keystore password:

// use our own

keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect

root@vm1-robot:/opt# keytool -genkey -alias onap -keyalg RSA -keystore KeyStore.jks -keysize 2048

Enter keystore password:

Is CN=Michael OBrien, OU=onap, O=onap, L=Unknown, ST=Unknown, C=Unknown correct?

Enter key password for <onap>

(RETURN if same as keystore password):

Re-enter new password:

// import cer

root@vm1-robot:/opt# keytool -import -trustcacerts -alias aai -file aaiapisimpledemoopenecomporg.cer -keystore KeyStore.jks

Enter keystore password:

Owner: EMAILADDRESS=aai-host@api.simpledemo.openecomp.org, CN=aai.api.simpledemo.openecomp.org, OU=SimpleDemo, O=OpenECOMP, L=Bedminster, ST=NJ, C=US

Issuer: EMAILADDRESS=simpledemo@openecomp.org, CN=OpenECOMP simpledemo Server CA X1, OU=simpledemo, O=OpenECOMP, L=Bedminster, ST=NJ, C=US

Serial number: 83ca7c32dc9f7329

Valid from: Wed Nov 30 15:38:39 UTC 2016 until: Thu Nov 30 15:38:39 UTC 2017

Trust this certificate? [no]: yes

Certificate was added to keystore

Running an https rest target using this certificate - if the cert is in a default keystore - you dont need to define it.

...

// require: cert, username, password, headers(X-FromAppId,Accept), Authenticator

public String run(boolean isSSL, String url, String port, String path) {

  String record = null;
  Client client = null;
  WebTarget latestTarget = null;
  WebTarget rootTarget = null;
  if(isSSL) {
    SslConfigurator sslConfig = SslConfigurator.newInstance();
    SSLContext sslContext = sslConfig.createSSLContext();
    HostnameVerifier verifier = new HostnameVerifier() {
    public boolean verify(String hostname, SSLSession sslSession) {
      return true; // TODO: security breach
    }};
    client = ClientBuilder.newBuilder().sslContext(sslContext).hostnameVerifier(verifier).build();
    client.register(new Authenticator("AAI","AAI"));
  } else {

      client = ClientBuilder.newClient();
    }
    rootTarget = client.target(url);
    latestTarget = rootTarget.path(path);
    try {
      try { Thread.sleep(1); } catch (InterruptedException ie) { Thread.currentThread().interrupt(); }
        record = finalTarget.request()
          .header("X-FromAppId", "AAI").header("Accept", "application/json")
          .get(String.class);

public class Authenticator implements ClientRequestFilter {
 private final String user;
 private final String pass;

 public Authenticator(String user, String password) {
      this.user = user; this.pass = password;
 }

 public void filter(ClientRequestContext requestContext) throws IOException {
   MultivaluedMap<String, Object> headMap = requestContext.getHeaders();
 String basicAuth = null;
 try {
         String aToken = user + ":" + pass;
 basicAuth = "BASIC " + DatatypeConverter.printBase64Binary(aToken.getBytes("UTF-8"));
 } catch (UnsupportedEncodingException uee) { throw new IllegalStateException("Encoding with UTF-8 failed", uee);}
   headMap.add("Authorization", basicAuth);
 }
}

Creating a custom keystore on the robot VM

...

/testsuite/properties/demo.sh not /testsuite/docker/demo.sh

/testsuite/runtags.sh

/testsuite/resources/demo_preload.robot "Load Customer And Models"

"Create Customer For VNF Demo"

create_customer.robot (aai put /aai/v8//business/customers/customer/)

create_service.robot (aai put /aai/v8/service-design-and-creation/services

"Load Models" | Distribute Model | Model Distribution For Directory in model_test_template.robot | Distribute Model From ASDC in addc_interface.robot

(Add ASDC Catalog Service, Setup ASDC Catalog Resource, Get ASDC Catalog Resource,

Add ASDC Resource Instance, Get ASDC Catalog Service, Checkin ASDC Catalog Service,

Request Certify ASDC Catalog Service, Start Certify ASDC Catalog Service, Certify ASDC Catalog Service, Approve ASDC Catalog Service,

Distribute ASDC Catalog Service, Get ASDC Catalog Service, Check Catalog Service Distributed)

Preload VNF:demo.robot (

  Preload User Model:demo_preload.robot (

    Get Service Instance

    Get Relationship Data

    Get Persona Model Id

    Login To VID GUI

    Get Module Names from VID

    Preload Vnf:sdngc_interface.robot(

      Update Module Name

      Preload Vnf Profile(

        Login To SDNGC Admin GUI

goto sdnc:8843/mobility/getVnfProfile

        click add_vnf_profile

inserts directly to the DB from the client (for now)

/sdnc-oam/admportal/mobility.js

router.post('/addVnfNetwork', csp.checkAuth, function(req,res){
 var sql = "INSERT INTO VNF_NETWORKS (vnf_type,network_role) VALUES ("
 + "'" + req.body.nf_vnf_type + "'," + "'" + req.body.nf_network_role + "')";
 tasks.push( function(callback) { dbRoutes.executeSQL(sql,req,res,callback); } );

)

      Preload One Vnf Topology

)))

...

Versions Compared

Old Version 27

New Version 28

Key

Installing the AAI certificate in your own keystore on the Robot VM