Bug 1413729
Summary: | [DOCS] Service Serving Certificate primary usecase is for "re-encrypt routes" | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Eric Rich <erich> |
Component: | Documentation | Assignee: | Brandi Munilla <bmcelvee> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Yan Du <yadu> |
Severity: | medium | Docs Contact: | Vikram Goyal <vigoyal> |
Priority: | low | ||
Version: | 3.4.0 | CC: | aos-bugs, bmeng, ccoleman, jokerman, mmccomas |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-02-22 15:01:43 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Eric Rich
2017-01-16 20:20:12 UTC
Well, the primary use is for intracluster or intraservice communication. But absolutely the next most primary use is reencrypt. Anyone generating a cert using oadm create-cert for the service name + public route name should probably be using service serving certs + reencrypt (includes registry, router, etc) Hi Eric, Clayton, and Yan, I opened PR#3660[1] with a note clarifying the use of <service.name>.<service.namespace>.svc in the Service Serving Certificates section. Please take a look when you have a chance. Thanks! [1] https://github.com/openshift/openshift-docs/pull/3660 The changes look good, verify the bug. Commits pushed to master at https://github.com/openshift/openshift-docs https://github.com/openshift/openshift-docs/commit/14bf9cb104011b4faeacff3dfa1862d31d3608a4 Bug 1413729 Added a note clarifying the use of <service.name>.<service.namespace>.svc. https://github.com/openshift/openshift-docs/commit/f29155a2315b7bfbc57840df2402f45274581ba0 Merge pull request #3660 from bmcelvee/BZ1413729 Bug 1413729 Added a note clarifying the use of `<service.name>.<service.namespace>.svc` Thanks, Meng! Link to documentation on the Customer Portal: https://access.redhat.com/documentation/en-us/openshift_container_platform/3.4/html-single/developer_guide/#service-serving-certificate-secrets |