OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

tosca message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: [OASIS Issue Tracker] (TOSCA-180) Support of secured repositories for artifacts

    [ https://issues.oasis-open.org/browse/TOSCA-180?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=50341#comment-50341 ] 

Matthew Rutkowski  commented on TOSCA-180:
------------------------------------------

After discussion at the TOSCA YAML WG we have the following pseudocode and evaluation rules:

tosca_definitions_version: tosca_simple_yaml_1_0

imports:
  - option1-repositories.yaml.ste
  - 2.ste

node_templates:
  my_db:
    type: tosca.nodes.Database.MySQLDatabase
    properties:
	  db_name: { get_input: database_name }
	  db_user: { get_input: database_user }
	  db_password: { get_input: database_password }
	  db_port: { get_input: database_port }
    artifacts:
	  - tomcat_tar_gz: files/tomcat.tar.gz
	  - mysql_installation: < file relative to CSAR | URL >
            artifact_name: files/mysql.rpm  # path (last seg)
            url: http://non-secure.com/files/
            repos: [ my_repo1, my_repo2, ... ]
	  - jre: jre7.rpm
           

repositories: 
    my_repo1:
       xxx
    my_repo2:
       yyy

  
1) look in CSAR (manifest)
   ("file:" protocol is redundant but implies it is in CSAR)
2) look in all (named) repos (sequential) whether imported or in service template
   2a) If fully qualified URL directly access artifact 
   2b) use repos keyword for explicit (named) repos to look up artifact name
   2c) if NO repos keyword search all repos for artifact name
3) if duplicate names for artifact (error)



> Support of secured repositories for artifacts
> ---------------------------------------------
>
>                 Key: TOSCA-180
>                 URL: https://issues.oasis-open.org/browse/TOSCA-180
>             Project: OASIS Topology and Orchestration Specification for Cloud Applications (TOSCA) TC
>          Issue Type: New Feature
>          Components: Profile-YAML
>            Reporter: Moshe Elisha
>            Assignee: Moshe Elisha
>
> Currently, the DSL supports two types of artifacts locations:
> 1. In the CSAR - the artifact URI is relative to the location in the CSAR file.
> 2. In an external repository - the artifact URI is a public URL to some file server.
> The file server can require credentials that can be supplied in the URL in the format "protocol://username:password@hostname/" but because we don't have concatenation functions in the DSL, we can't use get_input and the username and password will need to be "hard-coded" inside the template.
> There is a concrete need for an external repository as the size of the deployments artifacts can sometimes reach several GBs and there is a requirement from customers that the repository should be secured.



--
This message was sent by Atlassian JIRA
(v6.2.2#6258)

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]