Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »


UCA-20 - Getting issue details... STATUS

Analysis

vFirewall Demo Sequence of Events

All the events during a VF creation so we can understand all the orchestration steps at a granular REST level.

Passwords in /testsuite/properties/integration_robot_properties.py

Variables

IAD region

keynamevalue

servicec54316d8-464e-4967-bece-8c2b2f458b66

VNF6229cdee-10f6-4ec4-a5e0-0593154e6d83

VfModule5a08199b-4161-4181-9b2d-da29f6df1410


Prerequisites 

SeqNameSourceTargetActorREST writeREST read

License Model



http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-license-models

FD0FBEDB1AB64D1CA1A4E266862CAEE7


Licence Key Group



where id is from LM above

http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-license-models/FD0FBEDB1AB64D1CA1A4E266862CAEE7/license-key-groups


Entitlement Pool



where id is from LM above

http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-license-models/FD0FBEDB1AB64D1CA1A4E266862CAEE7/entitlement-pools


Feature Group



where id is from LM above

http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-license-models/FD0FBEDB1AB64D1CA1A4E266862CAEE7/feature-groups


License Aggreement



where id is from LM above

http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-license-models/FD0FBEDB1AB64D1CA1A4E266862CAEE7/license-agreements


VSP



http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-software-products

get index by LM id "vendorId": "FD0FBEDB1AB64D1CA1A4E266862CAEE7"

Config

SeqNameSourceTargetActorREST writeREST read

create customerrobotaai./demo.sh init

PUT

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/ONAP-User

{ "global-customer-id": "ONAP-User",
"service-subscriptions": {
"service-subscription": [{
"relationship-list": {
"relationship": [{
"related-to": "tenant",
"relationship-data": [{
"relationship-key": "cloud-region.cloud-owner",
"relationship-value": "Rackspace"
}, {
"relationship-key": "cloud-region.cloud-region-id",
"relationship-value": "DFW"
}, {
"relationship-key": "tenant.tenant-id",
"relationship-value": "{{tenant_id}}"
}] }]},
"service-type": "vFW"
}] },
"subscriber-name": "ONAP-User",
"subscriber-type": "INFRA"}

https://{{aai_ip}}:8443/aai/v8/business/customers/customer

{ "global-customer-id": "Demonstration","subscriber-name": "Demonstration",


create service modelrobotaai./demo.sh init
PUT aai/v8/service-design-and-creation/services
{   "service-id": "${UUID}",
"service-description": "${service_type}"}

https://{{aai_ip}}:8443/aai/v8/service-design-and-creation/models

"model-name-version-id": "dcb40136-9cec-45be-b080-2a36b31c2f06",
"model-type": "service", "model-name": "vfservice",
"model-id": "43d59b70-8829-4a50-a3f7-d261b220ceef"


Service Deployment

SeqNameSourceTargetActorREST writeREST read

deploy service modelvidaaidemo user
9023f592-5c64-4a5b-9333-3287fdc9d304

create service instancevidaaidemo user

Input:

InstanceName=DemoInstance
Subscriber=Demonstration
ServiceType=vFW

Output:
SIID=c54316d8-464e-4967-bece-8c2b2f458b66

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW

https://{{aai_ip}}:8443/aai/v8/business/customers/customer/Demonstration/service-subscriptions/service-subscription/vFW/service-instances/

{ "service-instance": [{
"service-instance-id": "c54316d8-464e-4967-bece-8c2b2f458b66",
"service-instance-name": "DemoInstance",
"persona-model-id": "2a01ef12-9bb1-4205-9941-a506cbae99c9",

VNF Creation

SeqNameSourceTargetActorREST writeREST read

Add VNF to

Service Instance

vidsdc

demo user




get VSPs

http://{{sdc_ip}}:8080/onboarding-api/v1.0/vendor-software-products

"name": "vsp",
"description": "vsp",
"category": "resourceNewCategory.application l4+",








VfModule Preload

SeqNameSourceTargetActorREST writeREST read

preload vnfrobot

./demo.sh preload <DemoVNF> <DemoModule>

or

http://sdnc:8843/signup

http://sdnc:8843/login
Add VNF Profile

http://{{sdnc_ip}}:8282/restconf/operations/VNF-API:preload-vnf-topology-operation

Accept:application/json

Content-Type:application/json

X-TransactionId:0a3f6713-ba96-4971-a6f8-c2da85a3176e

X-FromAppId:API client

Authorization:Basic YWRtaW46S3A4Yko0U1hzek0wV1hsaGFrM2VIbGNzZTJnQXc4NHZhb0dHbUp2VXkyVQ==


{

    "input": {

        "request-information": {

            "notification-url": "openecomp.org",

            "order-number": "1",

            "order-version": "1",

            "request-action": "PreloadVNFRequest",

            "request-id": "test"

        },

        "sdnc-request-header": {

            "svc-action": "reserve",

            "svc-notification-url": "http:\/\/openecomp.org:8080\/adapters\/rest\/SDNCNotify",

            "svc-request-id": "test"

        },

        "vnf-topology-information": {

            "vnf-assignments": {

                "availability-zones": [],

                "vnf-networks": [],

                "vnf-vms": []

            },

            "vnf-parameters": [

                        {

                            "vnf-parameter-name": "vfw_private_ip_0",

                            "vnf-parameter-value": "192.168.110.100"

                        },

                        {

                            "vnf-parameter-name": "vfw_private_ip_1",

                            "vnf-parameter-value": "192.168.120.100"

                        },

                        {

                            "vnf-parameter-name": "vfw_private_ip_2",

                            "vnf-parameter-value": "10.1.0.11"

                        },

                        {

                            "vnf-parameter-name": "vpg_name_0",

                            "vnf-parameter-value": "demofwl01pgn"

                        },

                        {

                            "vnf-parameter-name": "demo_artifacts_version",

                            "vnf-parameter-value": "1.0.0"

                        },

                        {

                            "vnf-parameter-name": "ecomp_private_net_cidr",

                            "vnf-parameter-value": "10.0.0.0/8"

                        },

                        {

                            "vnf-parameter-name": "key_name",

                            "vnf-parameter-value": "vfw_keydemo"

                        },

                        {

                            "vnf-parameter-name": "repo_url_artifacts",

                            "vnf-parameter-value": "https://nexus.onap.org/content/groups/staging"

                        },

                        {

                            "vnf-parameter-name": "protected_private_net_id",

                            "vnf-parameter-value": "demofwl_protected"

                        },

                        {

                            "vnf-parameter-name": "vpg_private_ip_0",

                            "vnf-parameter-value": "192.168.110.200"

                        },

                        {

                            "vnf-parameter-name": "vpg_private_ip_1",

                            "vnf-parameter-value": "10.1.0.12"

                        },

                        {

                            "vnf-parameter-name": "unprotected_private_net_cidr",

                            "vnf-parameter-value": "192.168.110.0/24"

                        },

                        {

                            "vnf-parameter-name": "dcae_collector_ip",

                            "vnf-parameter-value": "10.0.4.102"

                        },

                        {

                            "vnf-parameter-name": "repo_url_blob",

                            "vnf-parameter-value": "https://nexus.onap.org/content/repositories/raw"

                        },

                        {

                            "vnf-parameter-name": "vsn_private_ip_0",

                            "vnf-parameter-value": "192.168.120.250"

                        },

                        {

                            "vnf-parameter-name": "vsn_private_ip_1",

                            "vnf-parameter-value": "10.1.0.13"

                        },

                        {

                            "vnf-parameter-name": "vsn_name_0",

                            "vnf-parameter-value": "demofwl01snk"

                        },

                        {

                            "vnf-parameter-name": "vfw_name_0",

                            "vnf-parameter-value": "demofwl01fwl"

                        },

                        {

                            "vnf-parameter-name": "pub_key",

                            "vnf-parameter-value": "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAqqnA9BAiMLtjOPSYBfhzLu4CiBolWoskDg4KVwhTJVTTeB6CqrQNcadlGXxOHhCYuNCKkUmIVF4WTOisVOJ75Z1c4OMoZLL85xVPKSIeH63kgVugwgPYQu55NbbWX+rsbUha3LnElDhNviMM3iTPbD5nnhKixNERAJMTLKXvZZZGqxW94bREknYPQTT2qrk3YRqwldncopp6Nkgv3AnSJz2gc9tjxnWF0poTQnQm/3D6hiJICrzKfAV0EaPN0KdtYjPhKrYoy6Qb/tKOVaaqsvwfKBJGrT9LfcA7D7M/yj292RT1XN63hI84WC383LsaPJ6eWdDTE6zUP1eGTWCoOw== rsa-key-20161026"

                        },

                        {

                            "vnf-parameter-name": "ecomp_private_net_id",

                            "vnf-parameter-value": "oam_ecomp_LbMf"

                        },

                        {

                            "vnf-parameter-name": "dcae_collector_port",

                            "vnf-parameter-value": "8080"

                        },

                        {

                            "vnf-parameter-name": "unprotected_private_net_id",

                            "vnf-parameter-value": "demofwl_unprotected"

                        },

                        {

                            "vnf-parameter-name": "ecomp_private_subnet_id",

                            "vnf-parameter-value": "oam_ecomp_LbMf"

                        },

                        {

                            "vnf-parameter-name": "protected_private_net_cidr",

                            "vnf-parameter-value": "192.168.120.0/24"

                        }

            ],

            "vnf-topology-identifier": {

                "generic-vnf-name": "DemoVNF",

                "generic-vnf-type": "service/vsp 1",

                "service-type": "c54316d8-464e-4967-bece-8c2b2f458b66",

                "vnf-name": "DemoModule",

                "vnf-type": "Vsp..base_vfw..module-0"

            }

        }

    }

}

http://{{sdnc_ip}}:8282/restconf/config/VNF-API:preload-vnfs

{ "preload-vnfs": {
"vnf-preload-list": [
{ "vnf-name": "DemoModule",
"vnf-type": "Vsp..base_vfw..module-0",

http://{{sdnc_ip}}:8282/restconf/config/VNF-API:preload-vnfs/vnf-preload-list/DemoModule/Vsp..base_vfw..module-0

{"vnf-preload-list": [{
"vnf-name": "DemoModule",
"vnf-type": "Vsp..base_vfw..module-0",








VfModule Creation

SeqNameSourceTargetActorREST writeREST read

create Vf module <DemoModule>vid
demo user

Output:

VfModuleID=5a08199b-4161-4181-9b2d-da29f6df1410
HeatStackID=DemoModule/55bd16d6-6bac-4638-9e87-9063df6d03c3

via OpenStack

openstack server list

4be336b3-a31c-4be0-9261-0cb1cb51227d | demofwl01fwl  | ACTIVE | oam_ecomp_LbMf=10.1.0.11; demofwl_unprotected=192.168.110.100; public=104.239.230.93, | ||  | |  | 2001:4802:7803:104:be76:4eff:fe20:377b; demofwl_protected=192.168.120.100 










Closed Loop

SeqNameSourceTargetActorREST writeREST read

appcrobot
./demo.sh appc <DemoModule>




DMaaP

http://{{collector_ip}}:3904/events/unauthenticated.SEC_MEASUREMENT_OUTPUT/group3/sub1?timeout=9000

see JSON.parse(returnedData[i].event.commonEventHeader.eventId

["{\"event\":{\"measurementsForVfScalingFields\":{\"measurementInterval\":10,\"measurementsForVfScalingVersion\":1.1,\"vNicUsageArray\":[{\"multicastPacketsIn\":0,\"bytesIn\":14500,\"unicastPacketsIn\":0,\"multicastPacketsOut\":0,\"broadcastPacketsOut\":0,\"packetsOut\":0,\"bytesOut\":0,\"broadcastPacketsIn\":0,\"packetsIn\":500,\"unicastPacketsOut\":0,\"vNicIdentifier\":\"eth1\"}]},\"commonEventHeader\":{\"reportingEntityName\":\"demofwl01fwl\",\"startEpochMicrosec\":1500849487268085,\"lastEpochMicrosec\":1500849497268085,\"eventId\":\"43434\",\"sourceName\":\"Dummy VM name - No Metadata available\",\"sequence\":43434,\"priority\":\"Normal\",\"functionalRole\":\"vFirewall\",\"domain\":\"measurementsForVfScaling\",\"reportingEntityId\":\"No UUID available\",\"sourceId\":\"Dummy VM UUID - No Metadata available\",\"version\":1.2}}}",





DMaaP

http://{{collector_ip}}:3904/events/unauthenticated.TCA_EVENT_OUTPUT/group3/sub1?timeout=30000



API History

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=serviceInstanceId%3AEQUALS%3Ac54316d8-464e-4967-bece-8c2b2f458b66

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vnfInstanceId%3AEQUALS%3A6229cdee-10f6-4ec4-a5e0-0593154e6d83

http://{{mso_ip}}:8080/ecomp/mso/infra/orchestrationRequests/v2/?filter=vfModuleInstanceId%3AEQUALS%3A5a08199b-4161-4181-9b2d-da29f6df1410


see also

http://{{sdc_ip}}:8080/sdc2/rest/v1/catalog/services/latestversion/notabstract/uidonly?internalComponentType=SERVICE

feeds

http://{{sdc_ip}}:8080/sdc2/rest/v1/catalog/services/378bc9b7-2b7d-4a4f-96d9-1c654c2242fa


Design Issues

DI 1: 20170712: AAI Cert required for HTTPS REST calls

Use postman for adhoc rest calls - but if you want to code up call chains or hammer an endpoint use Spring RestController or the Rest client in JAX-RS 2.0

Calls to AAI such as the following require both the authentication header and an imported certificate.  When running Postman - because it is a Chrome app - this is a simple case of loading a REST url in the browser and importing the certificate after an authentication challenge (AAI:AAI).  However for a java client like a JAX-RS 2.0 client we need the certificate in a keystore (the default or a specially defined one).

Below we import the cert into the default keystore.  Where did I get the cert? by extracting it from Firefox - however it is in the code base - looking it up


obrienbiometrics:onap michaelobrien$ ls $JAVA_HOME/jre/lib/security/cacerts

/Library/Java/JavaVirtualMachines/jdk1.8.0_121.jdk/Contents/Home/jre/lib/security/cacerts

sudo keytool -import -trustcacerts -alias aai -file /Users/michaelobrien/Dropbox/_amdocs/config/certs/aai/aaiapisimpledemoopenecomporg.cer -keystore $JAVA_HOME/jre/lib/security/cacerts

Running an https rest target using this certificate - if the cert is in a default keystore - you dont need to define it.


// require: cert, username, password, headers(X-FromAppId,Accept), Authenticator
public String run(boolean isSSL, String url, String port, String path) {
  String record = null;
Client client = null;
WebTarget latestTarget = null;
WebTarget rootTarget = null;
if(isSSL) {
SslConfigurator sslConfig = SslConfigurator.newInstance();
SSLContext sslContext = sslConfig.createSSLContext();
HostnameVerifier verifier = new HostnameVerifier() {
public boolean verify(String hostname, SSLSession sslSession) {
return true; // TODO: security breach
}};
client = ClientBuilder.newBuilder().sslContext(sslContext).hostnameVerifier(verifier).build();
client.register(new Authenticator("AAI","AAI"));
} else {
      client = ClientBuilder.newClient();
}
rootTarget = client.target(url);
latestTarget = rootTarget.path(path);
try {
try { Thread.sleep(1); } catch (InterruptedException ie) { Thread.currentThread().interrupt(); }
record = finalTarget.request()
.header("X-FromAppId", "AAI").header("Accept", "application/json")
.get(String.class);
public class Authenticator implements ClientRequestFilter {
private final String user;
private final String pass;

public Authenticator(String user, String password) {
this.user = user; this.pass = password;
}

public void filter(ClientRequestContext requestContext) throws IOException {
MultivaluedMap<String, Object> headMap = requestContext.getHeaders();
String basicAuth = null;
try {
String aToken = user + ":" + pass;
basicAuth = "BASIC " + DatatypeConverter.printBase64Binary(aToken.getBytes("UTF-8"));
} catch (UnsupportedEncodingException uee) { throw new IllegalStateException("Encoding with UTF-8 failed", uee);}
headMap.add("Authorization", basicAuth);
}
}

DI 2: 20170712: Spring Boot Backend Framework

Instead of using a full Tomcat deployment server - we will use an embedded Jetty container.

pom.xml 

  <parent><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-parent</artifactId><version>1.5.3.RELEASE</version></parent>

    <dependencies>
<dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-web</artifactId></dependency>       

        <!-- avoid restarts --><dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-devtools</artifactId><optional>true</optional></dependency>

        <dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-actuator</artifactId></dependency>
<dependency><groupId>org.springframework.boot</groupId><artifactId>spring-boot-starter-test</artifactId><scope>test</scope></dependency>
    </dependencies>

    <build><plugins><plugin><groupId>org.springframework.boot</groupId><artifactId>spring-boot-maven-plugin</artifactId>
                <!-- may not be required --><configuration><addResources>true</addResources> </configuration></plugin></plugins></build>

DI 3: 20170712: JAX-RS 2.0 API Framework

DI 4: 20170712: 3D Framework: Three js OpenGL 3D wrapper on Canvas

Di 5: 20170712: Javascript Timer Framework

DI 6: 20170712: Three js Listener

DI 7: 20170712: Three js Edges between Nodes

DI 8: 20170712: Three js Click Context

DI 9: 20170712: AJAX JAX-RS Channel

DI 10: 20170712: WebSocket Channel

DI 11: 20170712: React.js Framework

DI 12: 20170712: Three js Text

DI 13: 20170721: Demo Robot REST extraction

Reverse engineer the orchestration rest calls coming out of demo.sh

/testsuite/properties/demo.sh not /testsuite/docker/demo.sh

/testsuite/runtags.sh

/testsuite/resources/demo_preload.robot "Load Customer And Models"
"Create Customer For VNF Demo"

create_customer.robot (aai put /aai/v8//business/customers/customer/)

create_service.robot (aai put /aai/v8/service-design-and-creation/services

"Load Models" | Distribute Model | Model Distribution For Directory in model_test_template.robot | Distribute Model From ASDC in addc_interface.robot

(Add ASDC Catalog Service, Setup ASDC Catalog Resource, Get ASDC Catalog Resource, 
Add ASDC Resource Instance, Get ASDC Catalog Service, Checkin ASDC Catalog Service,
Request Certify ASDC Catalog Service, Start Certify ASDC Catalog Service, Certify ASDC Catalog Service, Approve ASDC Catalog Service, 
Distribute ASDC Catalog Service, Get ASDC Catalog Service, Check Catalog Service Distributed)
 
Preload VNF:demo.robot (
  Preload User Model:demo_preload.robot (
    Get Service Instance
    Get Relationship Data
    Get Persona Model Id
    Login To VID GUI
    Get Module Names from VID
    Preload Vnf:sdngc_interface.robot(
      Update Module Name
      Preload Vnf Profile(
        Login To SDNGC Admin GUI

goto sdnc:8843/mobility/getVnfProfile

        click add_vnf_profile

inserts directly to the DB from the client (for now)

/sdnc-oam/admportal/mobility.js
router.post('/addVnfNetwork', csp.checkAuth, function(req,res){
var sql = "INSERT INTO VNF_NETWORKS (vnf_type,network_role) VALUES ("
+ "'" + req.body.nf_vnf_type + "'," + "'" + req.body.nf_network_role + "')";
tasks.push( function(callback) { dbRoutes.executeSQL(sql,req,res,callback); } );

)

      Preload One Vnf Topology

)))


  


DI 20: 20170721: Rest API Chaining


  • No labels