[OJSI-138] so exposes plain text HTTP endpoint using port 30277 - ONAP JIRA

Clone

Clone+

Clone++

XML

Word

Printable

Details

Type: Task
Status: Confirmed
Priority: Highest
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: Frankfurt Release
Labels:
- DependencyOnAAF
- PENTEST032019

OJSI Grant Project Access:
OJSI-SO
Epic Link:
Unsecured communication (HTTP)

Description

'api-handler-infra' application exposes port 30277 with plaintext HTTP.
There are two possible solutions:
1. if the port/api is not used/needed -> close it
2. if it is needed - move communication to HTTPS only

FYI: may be fixed by introduction of Ingress Controller with ~~OOM-1508~~

Attachments

Issue Links

relates to

SO-2063 AAF integration

In Progress

OOM-1434 VID should use http port to communicate with SO

Closed

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(5 mentioned in)

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Krzysztof Opasiak

Reporter:: Krzysztof Opasiak

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 25/Apr/19 10:15 PM

Updated:: 31/Mar/20 1:13 PM

Resolved:: 25/Apr/19 10:15 PM