(DOCSP-28872): Improve external connectivity docs for single cluster (replica sets) (#1289)

* Improve external connectivity for single cluster

* Apply copy review feedback

Author: davidhou17

source/includes/code-examples/yaml-files/example-replica-set.yaml

@@ -380,7 +380,7 @@ START-horizon-addcert-replset-random-ports
 ...
 END-horizon-addcert-replset-random-ports
 
-START-horizon-addcert-replset-lower-nodeports
+START-horizon-addcert-replset-lower-external-service
   security:
     tls:
       enabled: true
@@ -390,7 +390,7 @@ START-horizon-addcert-replset-lower-nodeports
       - "example-website": "web2.example.com:32350"
       - "example-website": "web3.example.com:31185"
 ...
-END-horizon-addcert-replset-lower-nodeports
+END-horizon-addcert-replset-lower-external-service
 
 START-tls-replset-full-custom
 ---

source/includes/steps-create-external-services.yaml

@@ -0,0 +1,75 @@
+---
+stepnum: 0
+level: 4
+ref: create-external-services
+title: "Create an external service for each of the Pods."
+content: |
+  To connect to your {{k8sResource}} from an external resource, configure the 
+  :ref:`spec.externalAccess <multi-spec-externalaccess>` setting:
+
+  .. code-block:: yaml
+
+    externalAccess: {}
+
+  This setting instructs the |k8s-op-short| to create an external :k8sdocs:`LoadBalancer 
+  </concepts/services-networking/service/#loadbalancer>` service for each Pod in your 
+  {{k8sResource}}. The external service provides an entry point for external connections.
+  Adding this setting with no values creates an external service with the following default
+  values:
+
+  .. include:: /includes/list-tables/external-service-default.rst
+
+  Optionally, if you need to add values to the service or override the default values,
+  specify:
+
+  - Annotations specific to your cloud provider, in {{annotations}}
+  
+  - Overrides for the service specification, in {{overrides}}.
+
+  For example, the following settings override the default values for the external service 
+  to configure your {{k8sResource}} to create a :k8sdocs:`NodePort service 
+  </concepts/services-networking/service/#type-nodeport>` that exposes the {{k8sResource}}:
+  
+  .. code-block:: yaml
+
+    externalAccess:
+      externalService: 
+        annotations:
+          # cloud-specific annotations for the service
+        spec:
+          type: NodePort # default is LoadBalancer
+          port: 27017
+          # you can specify other spec overrides if necessary
+
+  .. tip:: 
+
+    To learn more, see 
+    :k8sdocs:`Annotations </concepts/overview/working-with-objects/annotations/>` 
+    and :k8sdocs:`ServiceSpec </reference/kubernetes-api/service-resources/service-v1/#ServiceSpec>` 
+    in the |k8s| documentation.
+
+---
+stepnum: 0
+level: 4
+ref: verify-external-services
+title: "Verify the external services."
+content: |
+  In {{deployment}}, run the following command to verify that the external services
+  have been created.
+
+  .. code-block:: sh
+
+     $ kubectl get services
+
+  The command returns a list of services similar to the following output.
+  For each database Pod in the cluster, the |k8s-op-short| creates an external service 
+  named ``<pod-name>-svc-external``. This service is configured according to the values 
+  and overrides you provide in the :ref:`external service specification <k8s-specification>`.
+
+  .. code-block:: sh
+     :copyable: false
+
+     NAME                                  TYPE         CLUSTER-IP   EXTERNAL-IP       PORT(S)           AGE
+     {{example}}   LoadBalancer   10.102.27.116    1.2.3.4      27017:27017/TCP     8m30s
+  
+...

source/includes/steps-enable-split-horizon.yaml

@@ -14,48 +14,33 @@ content: |
   :setting:`spec.security.tls.ca`.
 
 ---
-title: "Add Subject Alternate Names to your |tls| certificates."
-level: 4
+ref: create-external-services-single-cluster
 stepnum: 2
-ref: add-san-to-cert
-content: |
-
-  Add each external |dns| name to the certificate |san-dns|.
-
+inherit:
+  file: steps-create-external-services.yaml
+  ref: create-external-services
+replacement:
+  k8sResource: replica set
+  annotations: :setting:`spec.externalAccess.externalService.annotations`
+  overrides: :setting:`spec.externalAccess.externalService.spec`
 ---
-title: "Create a NodePort for each |k8s-pod|."
+title: "Add Subject Alternate Names to your |tls| certificates."
 level: 4
 stepnum: 3
-ref: k8s-ext-rs-create-nodeports
+ref: add-san-to-cert
 content: |
 
-  Invoke the following commands to create the NodePorts:
-
-  .. code-block:: sh
-
-     kubectl expose pod/<my-replica-set>-0 --type="NodePort" --port 27017
-     kubectl expose pod/<my-replica-set>-1 --type="NodePort" --port 27017
-     kubectl expose pod/<my-replica-set>-2 --type="NodePort" --port 27017
+  Add each external |dns| name to the certificate |san-dns|.
 
 ---
-title: "Discover the dynamically assigned NodePorts."
-level: 4
 stepnum: 4
-ref: k8s-ext-rs-discover-nodeports
-content: |
-
-  Discover the dynamically assigned NodePorts:
-
-  .. code-block:: sh
-     :copyable: false
-
-     $ kubectl get svc | grep <my-replica-set>
-     <my-replica-set>-0     NodePort   172.30.39.228   <none>  27017:30907/TCP  16m
-     <my-replica-set>-1     NodePort   172.30.185.136  <none>  27017:32350/TCP  16m
-     <my-replica-set>-2     NodePort   172.30.84.192   <none>  27017:31185/TCP  17m
-     <my-replica-set>-svc   ClusterIP  None            <none>  27017/TCP        38m
-
-  NodePorts range from 30000 to 32767, inclusive.
+ref: verify-external-services-single-cluster
+inherit:
+  file: steps-create-external-services.yaml
+  ref: verify-external-services
+replacement:
+  deployment: your replica set
+  example: my-replica-set-0-svc-external   
 ---
 title: "Open your replica set resource |yaml| file."
 level: 4
@@ -107,7 +92,7 @@ content: |
   .. include:: /includes/list-tables/resource-keys-split-horizons.rst
 
 ---
-title: "Confirm the external hostnames and NodePort values in your replica set resource."
+title: "Confirm the external hostnames and external service values in your replica set resource."
 level: 4
 stepnum: 9
 ref: k8s-ext-rs-confirm-hostnames
@@ -121,14 +106,14 @@ content: |
   routing if the pod runs on another node.
 
   Set the ports in :setting:`spec.connectivity.replicaSetHorizons` to
-  the NodePort values that you discovered.
+  the external service values.
 
   .. example::
 
      .. literalinclude:: /includes/code-examples/yaml-files/example-replica-set.yaml
         :language: yaml
-        :start-after: START-horizon-addcert-replset-lower-nodeports
-        :end-before: END-horizon-addcert-replset-lower-nodeports
+        :start-after: START-horizon-addcert-replset-lower-external-service
+        :end-before: END-horizon-addcert-replset-lower-external-service
         :linenos:
         :lineno-start: 15
         :emphasize-lines: 6-8

source/includes/steps-multi-cluster-enable-split-horizon.yaml

@@ -18,58 +18,15 @@ content: |
   - The custom |certauth| certificate in :setting:`spec.security.tls.ca`.
 
 ---
-title: "Create an external service for each of the Pods in different clusters."
-level: 4
+ref: create-external-services-multi-cluster
 stepnum: 3
-ref: external-services-replicaset
-content: |
-
-  To connect to your |multi-cluster| from an external resource, configure the 
-  :ref:`spec.externalAccess <multi-spec-externalaccess>` setting:
-
-  .. code-block:: yaml
-
-     externalAccess: {}
- 
-  This setting instructs the |k8s-op-short| to create an external :k8sdocs:`LoadBalancer 
-  </concepts/services-networking/service/#loadbalancer>` service for each Pod in your 
-  |multi-cluster|. The external service provides an entry point for external connections.
-  Adding this setting with no values creates an external service with the following default
-  values:
-
-  .. include:: /includes/list-tables/external-service-default.rst
-
-  Optionally, if you need to add values to the service or override the default values,
-  specify:
-
-  - Annotations specific to your cloud provider, in :ref:`spec.externalAccess.externalService.annotations 
-    <multi-spec-externalaccess-externalservice-annotations>`.
-  
-  - Overrides for the service specification, in :ref:`spec.externalAccess.externalService.spec
-    <multi-spec-externalaccess-externalservice-spec>`.
-  
-  For example, the following settings override the default values for the external service 
-  to configure your |multi-cluster| to create a :k8sdocs:`NodePort service 
-  </concepts/services-networking/service/#type-nodeport>` that exposes the |multi-cluster|:
-  
-  .. code-block:: yaml
-
-     externalAccess:
-       externalService: 
-         annotations:
-           # cloud-specific annotations for the service
-         spec:
-           type: NodePort # default is LoadBalancer
-           port: 27017
-           # you can specify other spec overrides if necessary
-
-  .. tip:: 
-
-     To learn more, see 
-     :k8sdocs:`Annotations </concepts/overview/working-with-objects/annotations/>` 
-     and :k8sdocs:`ServiceSpec </reference/kubernetes-api/service-resources/service-v1/#ServiceSpec>` 
-     in the |k8s| documentation.
-
+inherit:
+  file: steps-create-external-services.yaml
+  ref: create-external-services
+replacement:
+  k8sResource: multi-Kubernetes-cluster deployment
+  annotations: :ref:`spec.externalAccess.externalService.annotations <multi-spec-externalaccess-externalservice-annotations>`
+  overrides: :ref:`spec.externalAccess.externalService.spec <multi-spec-externalaccess-externalservice-spec>`
 ---
 title: "Configure an external service for cluster members."
 level: 4
@@ -132,30 +89,14 @@ content: |
   Add each external |dns| name to the certificate |san-dns|.
 
 ---
-title: "Verify the external services."
-level: 4
 stepnum: 5
-ref: k8s-verify-external-services
-content: |
-
-  In each cluster, run the following command to verify that the external services
-  have been created.
-
-  .. code-block:: sh
-
-     $ kubectl get services
-
-  The command returns a list of services similar to the following output.
-  For each database Pod in the cluster, the |k8s-op-short| creates an external service 
-  named ``<pod-name>-svc-external``. This service is configured according to the values 
-  and overrides you provide in the external service specification.
-
-  .. code-block:: sh
-     :copyable: false
-
-     NAME                                  TYPE         CLUSTER-IP   EXTERNAL-IP       PORT(S)           AGE
-     my-replica-set-0-0-svc-external   LoadBalancer   10.102.27.116    1.2.3.4      27017:27017/TCP     8m30s
-
+ref: verify-external-services-multi-cluster
+inherit:
+  file: steps-create-external-services.yaml
+  ref: verify-external-services
+replacement:
+  deployment: each cluster
+  example: my-replica-set-0-0-svc-external
 ---
 title: "Update your replica set resource |yaml| file."
 level: 4
@@ -164,7 +105,7 @@ ref: update-replset-resource-mc-split-horizon
 content: |
 
   Set the hostnames and ports in :setting:`spec.connectivity.replicaSetHorizons`
-  to the LoadBalancer values that you created in the previous step.
+  to the external service values that you created in the previous step.
 
   Confirm that you specified the correct external hostnames. External
   hostnames should match the |dns| names of |k8s| worker nodes.

source/release-notes.txt

@@ -72,7 +72,8 @@ MongoDBMultiCluster Resource
   :ref:`spec.clusterSpecList.externalAccess.externalService.annotations <multi-spec-clusterspeclist-annotations>`,
   :ref:`spec.clusterSpecList.externalAccess.externalService <multi-spec-clusterspeclist-externalservice>`,
   and :ref:`spec.clusterSpecList.externalAccess.externalDomain <multi-spec-clusterspeclist-externaldomain>`
-  settings to configure external connectivity settings for |mongodb-multis|.
+  settings to configure external connectivity settings for |mongodb-multis|. Use these settings to
+  :ref:`connect to a Multi-Cluster Resource from outside Kubernetes <multi-cluster-connect-from-outside-k8s>`.
 
 - Adds the :ref:`spec.memberOptions.memberConfig.votes <multi-spec-clusterspeclist-memberconfig-votes>`
   and :ref:`spec.memberOptions.memberConfig.priority <multi-spec-clusterspeclist-memberconfig-priority>`
@@ -98,8 +99,9 @@ MongoDB Resource
 - Adds the ``spec.externalAccess`` setting for configuring external
   connectivity for MongoDB resources.
 - Deprecates the :setting:`spec.exposedExternally` setting. This setting
-  will be removed in the |k8s-op-short| 1.22.0 release. Use the
-  ``spec.externalAccess`` setting instead.
+  will be removed in the |k8s-op-short| 1.22.0 release. To 
+  :ref:`connect to a MongoDB Resource from outside Kubernetes 
+  <connect-from-outside-k8s>`, use the ``spec.externalAccess`` setting instead.
 
 Bug Fixes
 `````````

source/tutorial/connect-from-outside-k8s.txt

@@ -72,6 +72,8 @@ from outside of the |k8s| cluster depends on the resource.
             To connect to your |k8s-op-short|-deployed MongoDB replica 
             set resource from outside of the |k8s| cluster:
 
+            .. |external-domain| replace:: :setting:`spec.externalAccess.externalDomain`
+
             .. include:: /includes/steps/enable-split-horizon.rst
 
          .. tab:: OpenShift