Skip to content

Commit d59f3da

Browse files
jwilliams-mongojwilliams-mongo
committed
(DOCSP-13890): TLS/x509 Cert Generation & Handling (#756)
1 parent 4df0efc commit d59f3da

File tree

51 files changed

+653
-2710
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

51 files changed

+653
-2710
lines changed

source/includes/admonitions/deprecate-cert-generation.rst

Lines changed: 0 additions & 7 deletions
This file was deleted.

source/includes/admonitions/deprecate-secret-ref-name.rst

Lines changed: 13 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -1,29 +1,26 @@
11
.. important:: Deprecation Notice
22

3-
The :setting:`spec.security.tls.secretRef.name`
4-
and
5-
:opsmgrkube:`spec.applicationDatabase.security.tls.secretRef.name`
6-
fields are deprecated for the MongoDB resources and for the
7-
application database in the |onprem| resources. You can continue
8-
using :opsmgrkube:`spec.security.tls.secretRef.name`
9-
for the |onprem| resources other than the application database.
3+
The :setting:`spec.security.tls.secretRef.name`,
4+
:opsmgrkube:`spec.applicationDatabase.security.tls.secretRef.name`,
5+
and :opsmgrkube:`spec.security.tls.secretRef.name`
6+
settings are deprecated.
107

11-
This field will remain in future releases to maintain backwards
8+
These fields will remain in future releases to maintain backwards
129
compatibility.
1310

14-
If you omit
15-
:opsmgrkube:`spec.applicationDatabase.security.tls.secretRef.name`,
11+
If you omit these settings,
1612
the |k8s-op-short| expects the secrets that contain your
17-
|tls| certificates for database resources to follow this naming
18-
convention: ``<metadata.name>-cert``, where ``<metadata.name>``
13+
|tls| certificates to begin with:
14+
``<metadata.name>``, where ``<metadata.name>``
1915
specifies the name of one of the following resources:
2016

21-
- |onprem| resource for application database deployments
17+
- |onprem| resource for application database deployments and |onprem| resources
2218
- Database resource for other database deployments
2319

24-
For information about pre-pending an optional prefix to the secret
20+
To learn more about adding an optional prefix to the secret
2521
name, see:
2622

27-
- :opsmgrkube:`spec.applicationDatabase.security.tls.secretRef.prefix`
23+
- :opsmgrkube:`spec.applicationDatabase.security.certsSecretPrefix`
2824
for the application database in your |onprem| resources.
29-
- :setting:`spec.security.tls.secretRef.prefix` for MongoDB resources.
25+
- :opsmgrkube:`spec.security.certsSecretPrefix` for |onprem| resources.
26+
- :setting:`spec.security.certsSecretPrefix` for MongoDB resources.

source/includes/code-examples/requests/k8s-cert-input.sh

Lines changed: 0 additions & 101 deletions
This file was deleted.

0 commit comments

Comments
 (0)