Attendee-List:
- Andreas Geißler
- Jack Lucas
- Byung-Woo Jun
- Andrew Lamb
- Vladimir Turok
- Marek Szwalkiewicz
Agenda
Video:
Todays topic:
- ONAP/OSC discussion Byung-Woo Jun
Current activities:
- vladimir turok Patch for CPU limits:
- https://gerrit.onap.org/r/c/oom/+/135863 → need to check the gating results
- AAF Certificate Fix (< London)
- Notes: Create AAF CA certificates
- 1st patch: https://gerrit.onap.org/r/c/oom/+/135975?usp=search
- asked stakeholders to check the results in their labs → If OK, we try to merge it for Kohn
- DB Update (Cassandra, MariaDB,...)
-
OOM-3183Getting issue details...
STATUS
- MariaDB-Operator in progress (https://gerrit.onap.org/r/c/oom/+/135759)
- Merged
- Issues found in Daily:
- Maybe problems with Istio 1.18 (Peer Authentication for port 3306)
- MariaDB-Operator in progress (https://gerrit.onap.org/r/c/oom/+/135759)
- Reminder: DCAE SNMP trap collector patch for Ingress route !
- Reminder: contact InfoSys !!
- SDNC:
- https://gerrit.onap.org/r/c/oom/+/135308 [SDNC] Change SDNR DB from elasticsearch to maria DB → need to be checked
- alexander.dehn Question if cmpV2 support is discontinued ?
Old activities:
- Request to add RAN simulator chart to OOM (Vishal Varvate )
- Question:
- Should we separate the ONAP testing component charts ? ( - OOM-3085Getting issue details... STATUS )
- → Proposed to add the charts to Integration repo → reply from Vishal
Thank you Marek and Andreas for your reply.
Yes, I see integration repo is having all the simulator charts ,so for consistency purpose, we can add the ran sim chart on the integration repo ,that’s also ok for us.
@N. K. Shankar, Any comment if you want to add.
- Question:
- S2S Authorization (
-
OOM-3191Getting issue details...
STATUS
):
- InfoSys support (check with Girish Kumar )
- SO, AAI analyzed and discussions will be started
- Presentation: https://wiki.onap.org/download/attachments/177079452/Service_Mesh_Basic_Auth_Elimination_Analysis.pdf?api=v2
- Seshu will be contacted to discuss the SO changes (roles/users,,...)
- SDC will be contacted by Andreas Geißler and Portal Team
- Jira tasks are created under - OOM-3191Getting issue details... STATUS
- Urgent issue with AAF certificate expire:
- - AAF-1217Getting issue details... STATUS
- https://lists.onap.org/g/onap-discuss/topic/certificates_retrieval/100888379?p=,,,20,0,0,0::recentpostdate/sticky,,,20,2,0,100888379,previd%3D9223372036854775807,nextid%3D1688663764978684781&previd=9223372036854775807&nextid=1688663764978684781
- Problem:
- no description available to re-generate the CA certitficate or how to extend its expiry date
- Files:
- ONAP streamlining
- new charts: https://jira.onap.org/secure/attachment/18969/ONAP%20-%20Streamlining%20the%20process%20Report-2023-9-7-v1.pptx
- Jira tickets will be added to the different components
- need to check with Thomas Kulik about documentation versioning
- External ONAP Access using Authentication
-
OOM-3192Getting issue details...
STATUS
- Patch for _ingress.tpl to add "AuthorizationPolicy"
- Test it with SDC FE
- Adding charts for portal-ng
- Planned for the next week (Fiete Ostkamp )
- Helm Chart Updates - OOM-3082Getting issue details... STATUS
- Others:
- Should we separate the ONAP testing component charts ?
- Resource Limits correction vladimir turok
- to be checked, whether CPU limits should be used again (https://gerrit.onap.org/r/c/oom/+/135433)
- MessageRouter removal (to be checked with Fiachra Corcoran
- Should we add charts for ONAP-Base (strimzi, keycloak,...) ?
Open Jira issues:
T | Key | Summary | Assignee | Reporter | P | Status | Resolution | Created | Updated | Due |
---|---|---|---|---|---|---|---|---|---|---|
OOM-3172 | [Common] rendering issue of template "common.nginxIngress" | Alexander Dehn | Alexander Dehn | In Progress | Unresolved | Apr 27, 2023 | Apr 27, 2023 | |||
OOM-3171 | service-mesh-wait-for-job-container fails, when no sidecar exists | Andreas Geissler | Andreas Geissler | Open | Unresolved | Apr 27, 2023 | Apr 27, 2023 | |||
OOM-3170 | [SDNC] Support kafka native interface | Alexander Dehn | Alexander Dehn | In Progress | Unresolved | Apr 25, 2023 | Apr 26, 2023 | |||
OOM-3169 | For SDNC setup consider new Websocketport | Alexander Dehn | Herbert Eiselt | In Progress | Unresolved | Apr 24, 2023 | Apr 27, 2023 | |||
OOM-3168 | Introduce cassandra-operator to OOM | Andreas Geissler | Andreas Geissler | Open | Unresolved | Apr 24, 2023 | Apr 24, 2023 | |||
OOM-3167 | DOC: change the plugin installation instructions | Marek Szwałkiewicz | Marek Szwałkiewicz | Open | Unresolved | Apr 24, 2023 | Apr 24, 2023 | |||
OOM-3166 | Kiali Validation - KIA0601 - Port name must follow [-suffix] form | Fiete Ostkamp | Fiete Ostkamp | In Progress | Unresolved | Apr 19, 2023 | Apr 19, 2023 | |||
OOM-3165 | Policy-gui Ingress target is wrong | Andreas Geissler | Andreas Geissler | Open | Unresolved | Apr 19, 2023 | Apr 19, 2023 | |||
OOM-3162 | Update Strimzi Operator to 0.34.0 and Kafka to 3.4.3 | Fiachra Corcoran | Andreas Geissler | Open | Unresolved | Apr 13, 2023 | Apr 13, 2023 | |||
OOM-3161 | [COMMON] Add monitoring to postgres | Miroslav Masaryk | Miroslav Masaryk | Open | Unresolved | Apr 12, 2023 | Apr 13, 2023 | |||
OOM-3159 | Update OOM documentation | Andreas Geissler | Andreas Geissler | Open | Unresolved | Mar 31, 2023 | Apr 13, 2023 | |||
OOM-3155 | Review license scan issues | Andreas Geissler | David McBride | In Progress | Unresolved | Mar 30, 2023 | Apr 26, 2023 | |||
OOM-3153 | Feature Freeze | Andreas Geissler | David McBride | Open | Unresolved | Mar 30, 2023 | Mar 30, 2023 | Mar 23, 2023 | ||
OOM-3151 | Improve stability in Daily Master Deployments | Andreas Geissler | Andreas Geissler | Open | Unresolved | Mar 21, 2023 | Mar 21, 2023 | |||
OOM-3149 | The chartmuseum binary download URL not working in OOM deployment | Andreas Geissler | Sankar Palanivel | Open | Unresolved | Mar 09, 2023 | Apr 13, 2023 | |||
OOM-3147 | Create authorization policy for platform | Unassigned | Andrew Lamb | Open | Unresolved | Mar 06, 2023 | Mar 08, 2023 | |||
OOM-3146 | Create authorization policy for Holmes | Unassigned | Andrew Lamb | Open | Unresolved | Mar 06, 2023 | Mar 08, 2023 | |||
OOM-3145 | Create authorization policy for CPS | Unassigned | Andrew Lamb | Open | Unresolved | Mar 06, 2023 | Mar 08, 2023 | |||
OOM-3144 | Create authorization policy for Cassandra | Unassigned | Andrew Lamb | Open | Unresolved | Mar 06, 2023 | Mar 08, 2023 | |||
OOM-3143 | Create authorization policy for Consul | Unassigned | Andrew Lamb | Open | Unresolved | Mar 06, 2023 | Mar 08, 2023 |
Showing 20 out of 103 issues Refresh
Backlog from older meetings (to be cleaned up)
Pending component fixes:
(2023-05-03: No update)
- CDS-UI - CCSDK-3814CDS-UI must be able to listen on HTTP Open → DT /TM has a look
- maybe postpone to M
- SO Monitor - SO-4027Make SO-Service-Monitor ServiceMesh compatible Open → Byung mentioned, that E/// team try to resolve the issue (Byung's note: It was assigned to Viresh Navalli, Capgemini. E/// plans to assist Viresh as needed.)
→ postpone to Montreal - CLI will not work without fix... ( - OOM-3096[CLI] Remove AAF dependency Delivered )
- UUI - not clear if working
Helm chart cleanup: - OOM-2975Remove dependencies on AAF Open
(2023-05-10: No update)
- Common → Andreas
- Platform
- MSB
- VFC
Ingress enhancements for non-HTTP interfaces:
- External Kafka access → https://gerrit.onap.org/r/c/oom/+/133767
- SDNC CallHome (SSH) → part of https://gerrit.onap.org/r/c/oom/+/133861
- Plan to update _ingress.tpl for Gateway-API support and AuthorizationPolicy
Oauth2-proxy setup (Andreas):
(2023-05-03: No update)
- Documentation: Oauth2-Proxy implementation and configuration
- Oauth2-Proxy: https://gerrit.onap.org/r/c/oom/+/130445
- Adding Oauth2-proxy client to ONAP realm: https://gerrit.onap.org/r/c/oom/+/133699
To be started:
(2023-05-03: No update)
- Ingress template improvements:
- Remove unused components:
- MariaDB:
- Remove NodePort in Ingress environments:
- UDP Ingress support:
Others:
(2023-05-03: No update)
- SDC Listener HTTP issue - SDC-4233SDC Distribution Client should work with lower-case Header entries Closed → Marek provided patch → merged, need to be released and can be used in the clients
- When released, all clients need to be updated (CDS, AAI, Policy, SO, ...)
- Create tickets for all clients....
2023-05-31: Discussed presentation to TSC/PTL meeting proposing a new global requirement to rely (exclusively) on service mesh mechanisms for intra-ONAP authentication and authorization (get rid of HTTP basic auth). To be presented to TSC on 2023-06-01.