Versions Compared

Version Old Version 50 New Version Current
Changes made by

Michael O'Brien

Keong Lim

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

Note
titleWarning: Draft Content

This wiki is under construction

Motivation: Having issues with MSO provisioning on Rackspace - need all REST API endpoints

Use or combine with Overall Deployment Architecture to determine what a fully functional set of VMs, processes and containers should look like for 1.0.0 and 1.1.0 - so we can be sure that the ONAP deployment is sound as much as possible before provisioning VFs.

http://onap.readthedocs.io/en/latest/index.html

ONAP GUIs

...

Jira Legacy
serverSystem Jira
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keyOOM-347

...

Monitoring

watch for DCAE collector traffic - 

tcpdump -i eth0 port not 22 | grep 3904

We have monitoring currently in DCAE (5/11/17).  Proposed monitoring functionality is in Holmes (5/11/17) and ONAP Operations Manager / ONAP on Containers.  For the purposes of this demo, we would like to see some overall system/jvm/rest level monitoring while we exercise the demo.

One option is using New Relic agents.

Run the following (use your own account/token) on each VM (Note: JVM processes in docker containers will be visible to the host - so currently - until I run into issues - we don't need to expose extra ports on the containers)

...

    echo deb http://apt.newrelic.com/debian/ newrelic non-free >> /etc/apt/sources.list.d/newrelic.list

    wget -O- https://download.newrelic.com/548CIEEE16BF.gpg | apt-key add -

    apt-get update

    apt-get install newrelic-sysmond

    nrsysmond-config --set license_key=<akey>

    /etc/init.d/newrelic-sysmond start

Image Removed

Postman/Curl REST calls

Passwords in /testsuite/properties/integration_robot_properties.py

Remember to load each server URL in chrome to accept the cert (save it for curls) 

Note AAI V11 is a flat model (no child nodes) - V8 is deep - IE the region contains the tenant

...

{"service-instance": [{
"service-instance-id": "4ed1d78a-00c7-4493-89bc-a4d3e98247f7",
"service-instance-name": "DemoInstance",
"persona-model-id": "ea53cfa6-4429-41bc-8672-c36c4336aa75",
"persona-model-version": "1.0","resource-version": "1497379146",
"relationship-list": {"relationship": [{"related-to": "generic-vnf",
"related-link": "https://aai:8443/aai/v8/network/generic-vnfs/generic-vnf/724feb61-37b0-4d40-bbbe-dc3655d27937/",
"relationship-data": [{"relationship-key": "generic-vnf.vnf-id","relationship-value": "724feb61-37b0-4d40-bbbe-dc3655d27937"}],
"related-to-property": [{"property-key": "generic-vnf.vnf-name","property-value": "DemoVNF"}]}]}}]}

...

CURL (will require the aai certificate (export it from firefox)

root@ip-172-31-82-46:~# curl -X GET https://127.0.0.1:30233/aai/v11/cloud-infrastructure/cloud-regions/ -H "authorization: Basic TW9kZWxMb2FkZXI6TW9kZWxMb2FkZXI=" -H "X-TransactionId:jimmy-postman" -H "X-FromAppId:AAI" -H "Content-Type:application/json" -H "Accept:application/json" --cacert aaiapisimpledemoopenecomporg_20171003.crt -k

{"requestError":{"serviceException":{"messageId":"SVC3001","text":"Resource not found for %1 using id %2 (msg=%3) (ec=%4)","variables":["GET","cloud-infrastructure/cloud-regions/","Node Not Found:No Node of type cloud-region found at: cloud-infrastructure/cloud-regions/","ERR.5.4.6114"]}}}root@ip-172-31-82-46:~#

View file
nameaaiapisimpledemoopenecomporg_20171003.crt
height250
update after

...

cloud-region put - to fix above - and before we run init

PUT /aai/v11/cloud-infrastructure/cloud-regions/cloud-region/CloudOwner/RegionOne HTTP/1.1
Host: 34.194.214.186:30233
Accept: application/json
Content-Type: application/json
X-FromAppId: AAI
X-TransactionId: get_aai_subscr
Authorization: Basic QUFJOkFBSQ==
Cache-Control: no-cache
Postman-Token: 9f71f570-043c-ec79-6685-d0d599fb2c6f

{
"cloud-owner": "CloudOwner",
"cloud-region-id": "RegionOne",
"cloud-region-version": "v2",
"cloud-type": "SharedNode",
"cloud-zone": "CloudZone",
"owner-defined-type": "OwnerType",
"tenants": {
"tenant": [{
"tenant-id": "1035022",
"tenant-name": "ecomp-dev"
}]
}
}

on the CD server

curl -X PUT https://127.0.0.1:30233/aai/v11/cloud-infrastructurFkZXI=" -H "X-TransactionId:jimmy-postman" -H "X-FromAppId:AAI" -H "Content-Type:application/json" -H "Accept:application/json" --cacert aaiapisimpledemoopenecomporg_20171003.crt -k

...

customer post demo.sh init

https://{{aai_ip}}:8443/aai/v8/business/customers

auth: AAI:AAI or Basic QUFJOkFBSQ==

rootTarget.request().header("X-FromAppId", "AAI").get(String.class)

...

Table of Contents

Note
titleWarning: Draft Content

This wiki is under construction

Motivation: Having issues with MSO provisioning on Rackspace - need all REST API endpoints

Use or combine with Overall Deployment Architecture to determine what a fully functional set of VMs, processes and containers should look like for 1.0.0 and 1.1.0 - so we can be sure that the ONAP deployment is sound as much as possible before provisioning VFs.

http://onap.readthedocs.io/en/latest/index.html

ONAP GUIs

see https://kubernetes.io/docs/tasks/administer-cluster/access-cluster-services/

APPNameURLDocker portKubernetes portHeat port
AAI
http://146.20.65.5:9517/services/aai/webapp/index.html#/viewInspect

Jira Legacy
serverSystem Jira
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keyOOM-347

9517






GrafanaGrafana

Part of the Kubernetes distribution -

https://aws.onap.info:8880/r/projects/1a7/kubernetes:6443/api/v1/namespaces/kube-system/services/monitoring-grafana/proxy

expose via last lines of

https://git.onap.org/logging-analytics/tree/deploy/rancher/oom_rancher_setup.sh

Code Block
languagebash
themeMidnight
linenumberstrue
kubectl expose -n kube-system deployment monitoring-grafana --type=LoadBalancer --name monitoring-grafana-client







Monitoring

watch for DCAE collector traffic - 

tcpdump -i eth0 port not 22 | grep 3904


We have monitoring currently in DCAE Project Proposal (5/11/17).  Proposed monitoring functionality is in Holmes (5/11/17) and ONAP Operations Manager / ONAP on Containers.  For the purposes of this demo, we would like to see some overall system/jvm/rest level monitoring while we exercise the demo.

One option is using New Relic agents.

Run the following (use your own account/token) on each VM (Note: JVM processes in docker containers will be visible to the host - so currently - until I run into issues - we don't need to expose extra ports on the containers)

    echo deb http://apt.newrelic.com/debian/ newrelic non-free >> /etc/apt/sources.list.d/newrelic.list

    wget -O- https://download.newrelic.com/548CIEEE16BF.gpg | apt-key add -

    apt-get update

    apt-get install newrelic-sysmond

    nrsysmond-config --set license_key=<akey>

    /etc/init.d/newrelic-sysmond start

Image Added

Postman/Curl REST calls

Passwords in /testsuite/properties/integration_robot_properties.py

Remember to load each server URL in chrome to accept the cert (save it for curls) 

Note AAI V11 is a flat model (no child nodes) - V8 is deep - IE the region contains the tenant

VMNameReqRes
AAI
https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/

{"service-instance": [{
"service-instance-id": "4ed1d78a-00c7-4493-89bc-a4d3e98247f7",
"service-instance-name": "DemoInstance",
"persona-model-id": "ea53cfa6-4429-41bc-8672-c36c4336aa75",
"persona-model-version": "1.0","resource-version": "1497379146",
"relationship-list": {"relationship": [{"related-to": "generic-vnf",
"related-link": "https://aai:8443/aai/v8/network/generic-vnfs/generic-vnf/724feb61-37b0-4d40-bbbe-dc3655d27937/",
"relationship-data": [{"relationship-key": "generic-vnf.vnf-id","relationship-value": "724feb61-37b0-4d40-bbbe-dc3655d27937"}],
"related-to-property": [{"property-key": "generic-vnf.vnf-name","property-value": "DemoVNF"}]}]}}]}


AAI

CURL (will require the aai certificate (export it from firefox)

root@ip-172-31-82-46:~# curl -X GET https://127.0.0.1:30233/aai/v11/cloud-infrastructure/cloud-regions/ -H "authorization: Basic TW9kZWxMb2FkZXI6TW9kZWxMb2FkZXI=" -H "X-TransactionId:jimmy-postman" -H "X-FromAppId:AAI" -H "Content-Type:application/json" -H "Accept:application/json" --cacert aaiapisimpledemoopenecomporg_20171003.crt -k

{"requestError":{"serviceException":{"messageId":"SVC3001","text":"Resource not found for %1 using id %2 (msg=%3) (ec=%4)","variables":["GET","cloud-infrastructure/cloud-regions/","Node Not Found:No Node of type cloud-region found at: cloud-infrastructure/cloud-regions/","ERR.5.4.6114"]}}}root@ip-172-31-82-46:~#

View file
nameaaiapisimpledemoopenecomporg_20171003.crt
height250
update after


AAI

cloud-region put - to fix above - and before we run init

PUT /aai/v11/cloud-infrastructure/cloud-regions/cloud-region/CloudOwner/RegionOne HTTP/1.1
Host: 34.194.214.186:30233
Accept: application/json
Content-Type: application/json
X-FromAppId: AAI
X-TransactionId: get_aai_subscr
Authorization: Basic QUFJOkFBSQ==
Cache-Control: no-cache
Postman-Token: 9f71f570-043c-ec79-6685-d0d599fb2c6f

{
"cloud-owner": "CloudOwner",
"cloud-region-id": "RegionOne",
"cloud-region-version": "v2",
"cloud-type": "SharedNode",
"cloud-zone": "CloudZone",
"owner-defined-type": "OwnerType",
"tenants": {
"tenant": [{
"tenant-id": "1035022",
"tenant-name": "ecomp-dev"
}]
}
}

on the CD server

curl -X PUT https://127.0.0.1:30233/aai/v11/cloud-infrastructure/cloud-regions/cloud-region/CloudOwner/RegionOne --data "@aai-cloud-region-put.json" -H "authorization: Basic TW9kZWxMb2FkZXI6TW9kZWxMb2FkZXI=" -H "X-TransactionId:jimmy-postman" -H "X-FromAppId:AAI" -H "Content-Type:application/json" -H "Accept:application/json" --cacert aaiapisimpledemoopenecomporg_20171003.crt -k




AAI

customer post demo.sh init

https://{{aai_ip}}:8443/aai/v8/business/customers

auth: AAI:AAI or Basic QUFJOkFBSQ==


rootTarget.request().header("X-FromAppId", "AAI").get(String.class)


{ "customer": [ {
"global-customer-id": "Demonstration","subscriber-name": "Demonstration", "subscriber-type": "INFRA", "resource-version": "1499992251",
"service-subscriptions": {"service-subscription": [ {
"service-type": "vFW","resource-version": "1499992251",
"relationship-list": {"relationship": [{"related-to": "tenant",
"related-link": "https://aai:8443/aai/v8/cloud-infrastructure/cloud-regions/cloud-region/Rackspace/DFW/tenants/tenant/1035021/",
"relationship-data": [ { "relationship-key": "cloud-region.cloud-owner",
"relationship-value": "Rackspace" }, {
"relationship-key": "cloud-region.cloud-region-id",
"relationship-value": "DFW" }, {
"relationship-key": "tenant.tenant-id",
"relationship-value": "1035021"} ],
"related-to-property": [{ "property-key": "tenant.tenant-name",
"property-value": "1035021"} ] } ] } } ] } } ]}

AAI

Same as above - but different customer endpoint

https://{{aai_ip}}:8443/aai/v8/business/customers/customer

{"global-customer-id": "Demonstration","subscriber-name": "Demonstration","subscriber-type": "INFRA",

AAI

PUT

https://{{aai_ip}}:{{aai_port}}

, {
"service-type": "vLB",
"resource-version": "1499992251","relationship-list": { "relationship": [ { "related-to": "tenant",
"related-link": "https://aai:8443/aai/v8/cloud-infrastructure/cloud-regions/cloud-region/Rackspace/

IAD

body

{
"cloud-owner": "Rackspace

DFW/tenants/tenant/1035021/",
"relationship-data": [ { "relationship-key": "cloud-region.cloud-owner",
"

cloud

relationship-

region-id

value": "

IAD

Rackspace"

,

}, {
"relationship-key": "cloud-region

-version": "v1"

.cloud-region-id",
"

cloud

relationship-

type

value": "

SharedNode

DFW" }, {
"

cloud

relationship-

zone

key": "

CloudZone

tenant.tenant-id",
"

owner

relationship-

defined-type

value": "

OwnerType

1035021" } ],
"

tenants

related-to-property":

{
"tenant":

[ {


"

tenant

property-

id

key": "

{{tenant_id}}

tenant.tenant-name",
"

tenant

property-

name

value": "

ecomp-dev"

1035021" } ] } ] } } ]


} }


}

HEADERS

Accept:application/json
Content-Type:application/json
X-FromAppId:AAI
X-TransactionId:get_aai_subscr
Authorization:Basic QUFJOkFBSQ==

Will fix any VID issues that require a customer like

Jira Legacy
serverSystem Jira
serverId4733707d-2057-3a0f-ae5e-4fd8aff50176
keyVID-78

201

]}


AAI

Same as above - but different customer endpoint

https://{{aai_ip}}:8443/aai/v8/business/customers/customer

{"global-customer-id": "Demonstration","subscriber-name": "Demonstration","subscriber-type": "INFRA",


aai

GET

https://{{aai_ip}}:{{aai_port}}/aai/v8/cloud-infrastructure/cloud-regions/cloud-region/IAD/RegionOne


{
"cloud-owner": "IAD",
"cloud-region-id": "RegionOne",
"cloud-type": "SharedNode",
"owner-defined-type": "OwnerType",
"cloud-region-version": "v1",
"cloud-zone": "CloudZone",
"resource-version": "1507147808029",
"tenants": {
"tenant": [
{
"tenant-id": "6f2d976d3e1649dc844a13012863d1f2",
"tenant-name": "ecomp-dev",
"resource-version": "1507147808109""
}
]
}
}


appc

]
}
}restconf

http://{{appc_ip}}:30230/restconf/config/network-topology:network-topology/topology/topology-netconf

user:pass ?




DCAE
DCAE API Documentation

DCAE DMaaP
http://{{collector_ip}}:3904/events/unauthenticated.TCA_EVENT_OUTPUT/group3/sub1?timeout=30000

DCAE DMaaP
http://{{collector_ip}}:3904/events/unauthenticated.SEC_MEASUREMENT_OUTPUT/group3/sub1?timeout=3000

[ "{\"event\":{\"measurementsForVfScalingFields\":{\"measurementInterval\":10,\"measurementsForVfScalingVersion\":1.1,\"vNicUsageArray\":[{\"multicastPacketsIn\":0,\"bytesIn\":10,\"unicastPacketsIn\":0,\"multicastPacketsOut\":0,\"broadcastPacketsOut\":0,\"packetsOut\":0,\"bytesOut\":0,\"packetsIn\":500,\"broadcastPacketsIn\":0,\"vNicIdentifier\":\"eth1\",\"unicastPacketsOut\":0}]},\"commonEventHeader\":{\"reportingEntityName\":\"mux1-vnf\",\"startEpochMicrosec\":1486118565570584,\"lastEpochMicrosec\":1486118575570584,\"eventId\":\"1\",\"sourceName\":\"mux_key_gIr3\",\"sequence\":1,\"priority\":\"Normal\",\"functionalRole\":\"vFirewall\",\"domain\":\"measurementsForVfScaling\",\"reportingEntityId\":\"No UUID available\",\"version\":1.1,\"sourceId\":\"b49a2e0e-ee40-48c0-8f9e-842712bea52a\"}}}"]1.1,\"sourceId\":\"b49a2e0e-ee40-48c0-8f9e-842712bea52a\"}}}"]


dmaap

Get the list of topics with this: 

curl -X GET http://dmaap-hostname:3904/topics 

Create a missing topic with this:

curl -X POST -H "content-type: application/json" --data @bogus-empty-event.json http://dmaap-hostname:3904/events/POA-AUDIT-INIT



Holmes
Health Check - Beijing

MSO

API history for service instance

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=serviceInstanceId%3AEQUALS%3Ac54316d8-464e-4967-bece-8c2b2f458b66

auth: InfraPortalClient:password1$ or Basic SW5mcmFQb3J0YWxDbGllbnQ6cGFzc3dvcmQxJA==

...
"instanceReferences": {
"serviceInstanceId": "c54316d8-464e-4967-bece-8c2b2f458b66",
"serviceInstanceName": null,
"vnfInstanceId": "6229cdee-10f6-4ec4-a5e0-0593154e6d83",
"vnfInstanceName": null,
"vfModuleInstanceId": "5a08199b-4161-4181-9b2d-da29f6df1410",
"vfModuleInstanceName": "DemoModule",
"volumeGroupInstanceId": null,
"volumeGroupInstanceName": null,
"networkInstanceId": null,
"networkInstanceName": null
}, "requestStatus": {
"requestState": "COMPLETE",
"statusMessage": "Vf Module has been created successfully.",
"percentProgress": 100,
"finishTime": "Tue, 18 Jul 2017 21:35:47 GMT"


Policy
auth: testrest:3c0mpU#h01@N1c3 or Basic dGVzdHJlc3Q6M2MwbXBVI2gwMUBOMWMz

SDC

Consumer creation

SDC API

auth: sdcclient:password or Basic c2RjY2xpZW50OnBhc3N3b3Jk

Example: A GET query sent from VID to SDC to retrieve a service metadata

URL: http://{sdc_ip}:8080/sdc/v1/catalog/services/1eec58c0-d5e2-45c5-be9c-c873a1749541/metadata

Headers:

Authorization:Basic dmlkOktwOGJKNFNYc3pNMFdYbGhhazNlSGxjc2UyZ0F3ODR2YW9HR21KdlV5MlU=
X-ECOMP-InstanceID:VID


verify

curl -X GET  http://{{your-server}}:8080/sdc2/rest/v1/catalog/services/serviceName/vepc/serviceVersion/1.0   -H 'user_id: cs0008'


verify

$ curl -X GET http://sdc:8080/sdc/v1/catalog/resources -H "authorization: Basic YWFpOktwOGJKNFNYc3pNMFdYbGhhazNlSGxjc2UyZ0F3ODR2YW9HR21KdlV5MlU=" -H "x-ecomp-instanceid:AAI"

{
"uuid": "1eec58c0-d5e2-45c5-be9c-c873a1749541",
"invariantUUID": "87c579fe-14de-44ff-81c2-5e2f731e54ab",
"name": "tutorial service",
"version": "1.0",
"toscaModelURL": "/sdc/v1/catalog/services/1eec58c0-d5e2-45c5-be9c-c873a1749541/toscaModel",
"category": "Network L4+",
"lifecycleState": "CERTIFIED",
"lastUpdaterUserId": "jm0007",
"distributionStatus": "DISTRIBUTED",
"lastUpdaterFullName": "Joni Mitchell",
"resources": [
{
"resourceInstanceName": "tutorial firewall 0",
"resourceName": "tutorial firewall",
"resourceInvariantUUID": "b574fdf8-4551-4d94-ba29-efbaf1dded10",
"resourceVersion": "1.0",
"resoucreType": "VF",
"resourceUUID": "0605d080-9210-48ff-8fc0-8685ed087acf",
"artifacts": [
{
"artifactName": "vf-license-model.xml",
"artifactType": "VF_LICENSE",
"artifactURL": "/sdc/v1/catalog/services/1eec58c0-d5e2-45c5-be9c-c873a1749541/resourceInstances/tutorialfirewall0/artifacts/e7c06878-d8de-4364-8cf8-4c81d7b733b3",
"artifactDescription": "VF license file",
"artifactChecksum": "NjdiNzdlYWEwMjM4NDcwZjI2NzJjY2M0OGFjYzdlNDE=",
"artifactUUID": "e7c06878-d8de-4364-8cf8-4c81d7b733b3",
"artifactVersion": "1",
"artifactLabel": "vflicense",
"artifactGroupType": "DEPLOYMENT"
},
...


SDNC
auth: admin:Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U or Basic YWRtaW46S3A4Yko0U1hzek0wV1hsaGFrM2VIbGNzZTJnQXc4NHZhb0dHbUp2VXkyVQ==

VID

8080/vid

auth <null>:<null> or Basic Og==




...

For programmatic JAX-RS 2.0 clients add the following

// fix java.security.cert.CertificateException: No subject alternative names present
HostnameVerifier verifier = new HostnameVerifier() { public boolean verify(String hostname, SSLSession sslSession) { return true; // TODO: security breach }};

MSO VM

WIP: work in progress

...

VMContainerext portURLuser:passgerrit sourceGenerating ArtifactsAAIAAI API#GeneratingAAIAPIDocsArtifacts
AAI




AAI API#GeneratingAAIAPIDocs
Policypdp8081

<service>:8081/pdp/swagger-ui.html

oom

http://10.12.5.81:30220/pdp/swagger-ui.html#/policy-engine-services




SDNC

sdnc_controller_container

8282http://sdnc:8282/apidoc/explorer/index.htmladmin:Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U

...

IDVMContainerProcessHealthcheck

AAI



MSO



Policy

drools

docker exec -it -u 0 drools su - policy



note: escape any special chars like the exclamation point in the password

curl http://healthcheck:zb\!XztG34@policy:6969/healthcheck

{"healthy":true,"details":[{"name":"PDP-D","url":"self","healthy":true,"code":200,"message":"alive"},{"name":"PAP","url":"http://pap:9091/pap/test","healthy":true,"code":200,"message":""},{"name":"PDP","url":"http://pdp:8081/pdp/test","healthy":true,"code":200,"message":""}]}

for postman: Basic aGVhbHRoY2hlY2s6emIhWHp0RzM0

{ "healthy": true,
"details": [
{
"name": "PDP-D",
"url": "self",
"healthy": true,
"code": 200,
"message": "alive"
}, {
"name": "PAP",
"url": "http://pap:9091/pap/test",
"healthy": true,
"code": 200,
"message": ""
}, {
"name": "PDP",
"url": "http://pdp:8081/pdp/test",
"healthy": true,
"code": 200,
"message": ""
}]}

Portals

Portal

SDC - http://sdnc:8843/user/listUsers

Demo VMs

ssh keys

The private key for the 3 vFW demo VM's is in /testsuite/robot/assets/keys/robot_ssh_private_key.pvt

...

obrienbiometrics:onap michaelobrien$ ssh -i robot_ssh_private_key.pvt root@172.99.67.148 

root@demofwl01pgn:~# history

Artifacts Required

...

log files for each VM and set of docker containers - or how to aggregate them - not necessarily at the SumoLogic level

...

: 200,
"message": ""
}]}


Portals


Portal

SDC - http://sdnc:8843/user/listUsers

Demo VMs

ssh keys

The private key for the 3 vFW demo VM's is in /testsuite/robot/assets/keys/robot_ssh_private_key.pvt

obrienbiometrics:onap michaelobrien$ ssh -i robot_ssh_private_key.pvt root@172.99.67.148 

root@demofwl01pgn:~# history

Artifacts Required

  • log files for each VM and set of docker containers - or how to aggregate them - not necessarily at the SumoLogic level

  • VM/container or JVM health checks - ideally something like New Relic agents on the box
  • Would be nice to have something we can run on vm1-robot that would automate a healthcheck on all the containers


Get the list of topics with this: 

curl -X GET http://dmaap-hostname:3904/topics

 

Create a missing topic with this:

curl -X POST -H "content-type: application/json" --data @bogus-empty-event.json http://dmaap-hostname:3904/events/POA-AUDIT-INIT


Integration Sanity Tests