Uploaded image for project: 'ONAP Operations Manager'
  1. ONAP Operations Manager
  2. OOM-2431

ONAP on Istio with authentication

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Medium Medium
    • London Release
    • None
    • None
    • None
    • ingressauth-mesh
    • To Do

      This Service Mesh PoC intent is to use Istio for encrypting inter pod traffic and to use JWT in conjunction with Istio for authN and authZ.
      Details see: https://wiki.onap.org/pages/viewpage.action?pageId=103417456&src=contextnavpagetreemode


      This contains:

      • Create ONAP Ingress
        • Add resources for Istio IngressGateway for components "Ingress" configuration:
          • Gateway
          • VirtualService
        • Add SSL certificate to allow HTTPS connections:
          • Use CertService to create selfsigned certificate(s)
          • Use the certificate in the Gateway configuration
      • Service Authentication/Authorisation
        • Add Keycloak and configuration
        • Add Oauth2 Proxy
        • Configure Policies for ONAP component access

        1. image-2022-07-25-17-44-28-875.png
          1.02 MB
          Andreas Geissler

            andreasgeissler Andreas Geissler
            sdesbure sdesbure
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: