Versions Compared

Old Version 36

changes.mady.by.user Benjamin Cheung

Saved on

compared with

New Version 37

changes.mady.by.user Benjamin Cheung

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Controller Association

PnP DUBLIN WORK ITEM

DESCRIPTION

SO1:

[SDC/SO] The PNF controller caused quite a stir in Casablanca, the tension between Design/Platform Model vs Run-Time/Deployment Model.
As a result the SO controller design was sub-optimal and should be addressed in Dublin.

SO2: SO support of A&AI creation

[SO] A&AI UI can create an inactive PNF (inactive) A&AI entry.
A Service provider might use an inventory system and A&AI UI to create a PNF A&AI entry.

In Step #19A instead of EXITING, SO would go into WAIT STATE pending rehydration of RLF w/ pnfReady

DEVELOPMENT STATUS:
This is already covered in ONAP/Casablanca:

Jira Legacy
serverSystem Jira
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keySO-797

SO3SO2: SO support for already existing PNF A&AI entries

[SO] Support of SO for an already existing PNF (active) A&AI Entry

(use case with a deleted & recreated service or instantiating 2nd service using the same PNF)
Within ONAP/Beijing - In Step #19B SO would exit and service creation would continue

DEVELOPMENT STATUS:

In ONAP/Casablanca this was updated, and irrespective of AAI entry existence for a PNF instance, the workflow execution always waits to receive a PNF registration event.

Jira Legacy
serverSystem Jira
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keySO-797

This is not planned to be changed in ONAP/Dublin release.

SO4SO3: SO to support updated A&AI PNF schema

[SO] Support of SO for updated AAI PNF instance model.
PNF-ID is going to be used as unique PNF idenitifcator, instead of PNF-Name, used in ONAP/Casablanca.
PNF PnP sub-flow might need modifications related to how PNF instance objects are created.

ASSOCIATED DEVELOPMENT:

See task A&AI1 and PRH1.

FUTURE (El Alto)

SO-future: Controller Association

[FUTURE MOVED TO EL ALTO]

[SDC/SO] The PNF controller caused quite a stir in Casablanca, the tension between Design/Platform Model vs Run-Time/Deployment Model.
As a result the SO controller design was sub-optimal and should be addressed in Dublin.


AAF SECURITY IMPACTS


PnP DUBLIN WORK ITEM

DESCRIPTION

AAF1: Security Enhancement

[AAF] Security enhancements slated for Dublin will need to be working for PnP Use Case. Discussing with DCAE about supporting TLS authentication just with Certificate without Username & Password. If the NF already uses the UN&P for the HTTP connection (that should still work).

Certificate use should be working in Dublin to setup the HTTPS connection.

PROPOSAL: Thus, both Certificate & Username & Password will be supported. (This is suggested for backward compatibility). i.e. there are already existing deployment.

PROPOSAL: It is recommended to use the Certificate.

Certificates as part of the authorization? Subject of the certificate is something that can be used as authorization, the proposal to DCAE is that there is a list of authorized users/subjects. Initially it could be manually configured, but the objective is that this would come from AAF.

Start with Certificates local check: subjects against a list (w/ wildcards). Agree w/ appropriate interface w/ AAF then integrate w/ AAF. If identity not found use basic authentication a second check w/ username & password. otherwise access is rejected (HTTP return code).

ASSOCIATED DEVELOPMENT:

VNFRQTS - Certificate Authentication for HTTPS/TLS -

Jira Legacy
serverSystem Jira
columnskey,summary,type,created,updated,due,assignee,reporter,priority,status,resolution
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keyVNFRQTS-524

DCAE Development for Authentication for HTTPS/TLS -


...