Skip to content

Commit

Permalink
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Adds cert-manager documentation for kubernetes outputs
Browse files Browse the repository at this point in the history
Closes #1245

Partially addresses #1273
djwfyi committed Sep 17, 2024
1 parent 9c608e6 commit 8257798
Showing 7 changed files with 1,430 additions and 365 deletions.
373 changes: 373 additions & 0 deletions source/images/k8s/cert-manager-cluster.svg
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
530 changes: 530 additions & 0 deletions source/images/k8s/cert-manager-namespaces.svg
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
2 changes: 1 addition & 1 deletion source/includes/k8s/file-transfer-protocol-k8s.rst
Original file line number Diff line number Diff line change
@@ -164,7 +164,7 @@ If SFTP is enabled, the output resembles the following:
enableSFTP: true
.. _minio-certificate-key-file-sftp-k8s
.. _minio-certificate-key-file-sftp-k8s:

Connect to MinIO Using SFTP with a Certificate Key File
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
1 change: 1 addition & 0 deletions source/index.rst
Original file line number Diff line number Diff line change
@@ -106,6 +106,7 @@ For more about connecting to ``play``, see :ref:`MinIO Console play Login <minio
/operations/external-iam
/operations/server-side-encryption
/operations/network-encryption
/operations/cert-manager
/operations/checklists
/operations/data-recovery
/operations/troubleshooting
881 changes: 517 additions & 364 deletions source/operations/cert-manager.rst

Large diffs are not rendered by default.

2 changes: 2 additions & 0 deletions source/operations/monitoring/healthcheck-probe.rst
Original file line number Diff line number Diff line change
@@ -39,6 +39,8 @@ a Prometheus :ref:`alert <minio-metrics-and-alerts>` using the
``minio_cluster_nodes_offline_total`` metric to detect whether one or
more MinIO nodes are offline.

.. _minio-cluster-write-quorum:

Cluster Write Quorum
--------------------

6 changes: 6 additions & 0 deletions source/operations/network-encryption.rst
Original file line number Diff line number Diff line change
@@ -64,6 +64,12 @@ Enabling TLS
If you have a custom Subject Alternative Name (SAN) certificate that is *not* also a wildcard cert, the TLS certificate SAN **must** apply to the hostname for its parent node.
Without a wildcard, the SAN must match exactly to be able to connect to the tenant.

Certificate Management with cert-manager
----------------------------------------

Rather than then MinIO Operator managing certificates, you can configure the deployment to use `cert-manager <https://cert-manager.io/>`__.
For instructions for deploying the MinIO Operator and tenants using cert-manager, refer to the :ref:`cert-manager page <minio-certmanager>`.


.. cond:: linux

0 comments on commit 8257798

Please sign in to comment.