Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Drawio
3
bordertrue
diagramNameLondon (Production)
simpleViewerfalse
width
linksauto
tbstyletop
lboxtrue
diagramWidth886724
revision5

  • ONAP pods provide non-TLS (HTTP) interfaces
  • Encrypted communication via Envoy Proxies (nTLS) provided by ServiceMesh (Istio)
  • ONAP pod interface is exposed through Ingress (Istio-Gateway)
  • Service access via hostname (configured by Gateway/VirtualService in Ingress GW)
  • External TLS interface on Ingress Gateway
  • Authentication/Authorisation via oauth2-proxy and Keycloak
  • Example (SDC-UI):