VMware Cloud Director Object Storage Extension (for short, OSE) is a standalone middleware service installed in a private data center or public cloud to provide object storage capabilities to VMware Cloud Director users.
OSIS (Object Storage Interoperability Service) is proposed to extend OSE to support other object storage platforms by defining unified administrative interfaces for storage platforms.
For the platforms integrated with OSE via OSIS, the data channel is between OSE and the platform, but the control channel is between OSE and the OSIS implementation (REST services implementing OSIS).
This project is for OSIS, which integrates Scality RING with vCloud Director OSE.
-
Docker images can be built locally or pulled locally from either dev namespace using the hash or production namespace.
Local build:
$ docker build -t <local_image_name> .
Dev:
docker pull ghcr.io/scality/osis:<short SHA-1 commit hash>
Production image:
docker pull ghcr.io/scality/osis:<tag>
-
Generate a self-signed SSL certificate and store it in a binary PKCS#12 format file with extension
.p12file. (Refer here) -
Create an
application.propertiesenvironment variables file.- A sample
application.propertiesfile can be found here. - Update
server.ssl.key-store-passwordandserver.ssl.key-aliaswith the.p12file's key-store password and key-store alias, respectively.
- A sample
-
Create an
crypto.ymlenvironment variables file.- A sample
crypto.ymlfile can be found here. - Update
osis.security.keys.cipherwith a 32 byte password
- A sample
-
To run the Docker image locally using a local build image, or from either the dev namespace (using the hash) or the production namespace (with the
application.propertiesenvironment file):Local build image:
$ docker run \ -it \ -p 8443:8443 \ -v <absolute_path_to_.p12_file>:/app/lib/osis.p12:ro,z \ -v <absolute_path_to_crypto.yml_file>:/conf/crypto.yml:ro,z \ -v <absolute_path_to_application.properties_file>:/conf/application.properties:ro,z \ <local_image_name>
dev:
$ docker run \ --env-file application.properties \ -it \ -p 8443:8443 \ -v <absolute_path_to_.p12_file>:/app/lib/osis.p12:ro,z \ -v <absolute_path_to_crypto.yml_file>:/conf/crypto.yml:ro,z \ -v <absolute_path_to_application.properties_file>:/conf/application.properties:ro,z \ ghcr.io/scality/osis:<short SHA-1 commit hash>
Production image:
$ docker run \ --env-file application.properties \ -it \ -p 8443:8443 \ -v <absolute_path_to_.p12_file>:/app/lib/osis.p12:ro,z \ -v <absolute_path_to_crypto.yml_file>:/conf/crypto.yml:ro,z \ -v <absolute_path_to_application.properties_file>:/conf/application.properties:ro,z \ ghcr.io/scality/osis:<tag>
Generate a .p12 format file with self-signed SSL certificate using Keytool.
keytool \
-genkeypair \
-keyalg RSA \
-alias <alias_name> \
-keystore <key-store_file>.p12 \
-storepass <key-store_password> \
-validity <days> \
-keysize <size_in_bytes> \
-dname "CN=<common_name>, OU=<organization_unit>, O=<organization>, L=<city>, ST=<state>, C=<country>" \
-storetype pkcs12Example:
keytool \
-genkeypair \
-keyalg RSA \
-alias osis.dev.eng.scality.com \
-keystore keyStore.p12 \
-storepass scality \
-validity 3650 \
-keysize 2048 \
-dname "CN=scality-osis-app, OU=Scality, O=Scality, L=SanFrancisco, ST=California, C=US" -storetype pkcs12- Run
docker exec -it <Container_ID> /bin/bash - Access log files can be found under
/tomcat/logs
./gradlew clean build./gradlew bootJarjava -jar -Dserver.tomcat.basedir=tomcat -Dserver.tomcat.accesslog.directory=logs -Dserver.tomcat.accesslog.enabled=true build/libs/osis-scality-[CURRENT_VERSION].jar
./gradlew dependencyCheckAnalyze: Runs dependency-check against the project and generates a report underbuild/reports./gradlew dependencyCheckUpdate: Updates the local cache of the NVD data from NIST../gradlew dependencyCheckPurge: Deletes the local copy of the NVD. This is used to force a refresh of the data.- More configuration options: https://jeremylong.github.io/DependencyCheck/dependency-check-gradle/configuration.html
Install and run vmware-ose-osis-verifier for each API.