Multi-tenancy needs authentication and authorization. Keycloack serves these two features.
In order to provide multi-tenancy of A&AI, A&AI can leverage Springboot security feature to interact with Keycloak. This document explains how to set up Keycloak and A&AI to provide essential authentication and authorization services for multi-tenancy
...
kubectl rollout restart deployments/dev-aai-resources -n onap
Test Multi-tenancy
...
Locally
In order to test multi-tenancy locally, you need to run aai-resource and aai-traversal locally, along with Keycloak and Cassandra, following steps below:
Setup Keycloak and Cassandra by downloading a configuration zip file attached and run
Code Block docker-compose up
- Clone required repositories, aai-common, aai-resource and aai-traversal.
Install aai-common with
Code Block mvn clean install -DskipTests=true
- Modify application.properties file under resources/aai-resources/src/main/resources directory. Change spring.profiles.active=production, one-way-ssl line to
# Switch to keycloak
spring.profiles.active=production, keycloak - Modify application.properties file under traversal/aai-traversal/src/main/resources directory. Change spring.profiles.active=production, one-way-ssl line to
# Switch to keycloak
spring.profiles.active=production, keycloak Run resources and traversal with the command commands below:
Code Block cd aai-resources mvn -N -P runAjsc -Dserver.local.startpath=src/main/resources/ cd aai-traversal mvn -N -P runAjsc -Dserver.local.startpath=src/main/resources/
...