Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Security Enhancements
    • Internal AuthorizationPolicies (continue and test inter-component policies)
    • External OAuth2 proxy integration and AuthorizationPolicies for Ingress
  • Ingress enhancements
    • Gateway-API support → should replace Istio Gateway/VirtualService
    • template enhancement for AuthorizationPolicies
  • Chart Cleanup
    • MSB removal
    • ...
  • DB Operator introduction and update of DB versions
    • k8ssandra-operator
    • mariadb-operator
    • postgres
    • mongodb
    • ...
  • Helm versioning concept 
  • (DMaaP) MessageRouter removal → all clients should use native Kafka


Global requirements:

  • ONAP component external API/UIs should provide an oauth profile (Ingress interfaces should use an AuthorizatioPolicy to use Keycloak Authentication via Oauth2-proxy)
  • ONAP component internal APIs should not use authentication (AuthorizationPolicy is provided instead)