DCAE Services Component - Service Mesh Compatibility
- Vijay Kumar
DCAE Components | Protocol (based on K8S Service) | HTTPS if Optional | AAF Certificates if Optional | Client/Server (based on API if any exposed) | Secure Topic | SVC mesh complaint | Comment |
VESCollector | HTTPS/HTTP | YES | YES | Server | NO | YES | |
TCAgen2 | HTTP | NA | YES? | NA | NO | YES | Need to verify deployment with tlsServer: false AAF certificate required for AAI communication |
PRH | HTTP | NA | YES | Client | NO | YES | Need to verify deploy with tlsServer: false; possibly certificate required for AAI communication |
HV-VES | HTTPS/HTTP | YES | YES | Server | NO (message-router-kafka:9092) | YES | Need to verify deploy with tlsServer: false + security.sslDisable: true |
DFC | HTTPS/HTTP | YES | NO | Server | DR – Yes; MR – No | NO | DCAEGEN2-3039 - DFC - Make certificate dependencies configurable (planned in Kohn) |
PM-Mapper | HTTPS/HTTP | YES | NO | Client | DR – Yes, MR - Yes | NO | DCAEGEN2-3032 - Migrate PM-Mapper to use unauthenticated topic (Done - Jakarta) DCAEGEN2-3038 - PM-Mapper - Make certificate dependencies configurable (Done - Jakarta) DR feed will be switched to http in Kohn |
BBS-Eventprocessor | HTTP | NA | YES | Client | YES | YES? | Need to verify deploy with tlsServer: false + application.ssl.enableDmaapCertAuth: false Service deprecated with J release |
Heartbeat MS | HTTP | NA | YES | NA | NO | YES | Need to verify deploy with tlsServer: false |
DL-Feeder | HTTP | NA | YES | NA | NO | YES | Certificate probably not required |
DL-AdminUI | HTTP | NA | YES | Server | NA | YES | Certificate probably not required |
DL-DES | HTTP | NA | YES | Server | NA | YES | Certificate probably not required |
KPI-MS | HTTP | NA | YES | Client? | YES (cambria client) | YES | DCAEGEN2-3033 - Migrate KPI-MS to use unauthenticated topic - DONE (J) (has dependency on DCAEGEN2-3032) |
PMSH | HTTPS (default)/HTTP | YES | YES | Client | YES | YES | 12/3/21 - Port hardcoded to 8443 (supports as https or http) |
RESTConf | HTTP | YES | NO | Client | NO (cambria client) | NO | 03/04/22 - Dependent on AAF certs; if not mounted app/readiness fails. DCAEGEN2-3095 - RESTConf - Make certificate dependencies configurable |
SliceAnalysis MS | HTTP | YES | YES | Server? | YES (cambria client) | YES | DCAEGEN2-3034 - Migrate SliceAnalysis MS to use unauthenticated topic (has dependency on DCAEGEN2-3032) DONE (J) |
SNMPTRap Collector | UDP | NA | YES | NA | NO | YES | |
SON-Handler | HTTPS(helm)/HTTP (blueprint) | YES | YES | Client | YES (cambria client) | YES | DCAEGEN2-3035 - Migrate SON-Handler to use unauthenticated topic DONE (J) |
VES-Mapper | HTTP | NA | YES | NA | NO | YES | |
DCAE MS Healthcheck | HTTP | NA | YES | Server | NO | YES | |
VES-OpenAPI manager | HTTP | NA | YES | NA | NO | YES | |
CBS | HTTPS/HTTP | YES | YES | Server | NO | YES | Service deprecated with J release |