Merge pull request #101 from stakater/SA-5407-update-ic-docs

Update IntegrationConfig related docs
stakater · Mar 11, 2024 · cdaa76b · cdaa76b
2 parents d936b17 + e969578
commit cdaa76b
Show file tree

Hide file tree

Showing 8 changed files with 488 additions and 418 deletions.
diff --git a/content/explanation/console.md b/content/explanation/console.md
@@ -11,20 +11,18 @@ The dashboard serves as a centralized monitoring hub, offering insights into the
 By default, MTO Console will be disabled and has to be enabled by setting the below configuration in IntegrationConfig.
 
 ```yaml
-provision:
+components:
     console: true
     ingress:
+      ingressClassName: <ingress-class-name>
       console:
         host: tenant-operator-console.<hostname>
-        ingressClassName: <ingress-class-name>
         tlsSecretName: <tls-secret-name>
       gateway:
         host: tenant-operator-gateway.<hostname>
-        ingressClassName: <ingress-class-name>
         tlsSecretName: <tls-secret-name>
       keycloak:
         host: tenant-operator-keycloak.<hostname>
-        ingressClassName: <ingress-class-name>
         tlsSecretName: <tls-secret-name>
     showback: true
     trustedRootCert: <root-ca-secret-name>

diff --git a/content/faq.md b/content/faq.md
@@ -8,7 +8,7 @@
 unable to find annotation openshift.io/sa.scc.uid-range
 ```
 
-**Answer.** OpenShift recently updated its process of handling SCC, and it's now managed by annotations like `openshift.io/sa.scc.uid-range` on the namespaces. Absence  of them wont let pods schedule. The fix for the above error is to make sure ServiceAccount `system:serviceaccount:openshift-infra.` regex is always mentioned in `PrivilegedServiceAccounts` section of `IntegrationConfig`. This regex will allow operations from all `ServiceAccounts` present in `openshift-infra` namespace. More info at [Privileged Service Accounts](./how-to-guides/integration-config.md#privileged-serviceaccounts)
+**Answer.** OpenShift recently updated its process of handling SCC, and it's now managed by annotations like `openshift.io/sa.scc.uid-range` on the namespaces. Absence  of them wont let pods schedule. The fix for the above error is to make sure ServiceAccount `system:serviceaccount:openshift-infra.` regex is always mentioned in `Privileged.serviceAccounts` section of `IntegrationConfig`. This regex will allow operations from all `ServiceAccounts` present in `openshift-infra` namespace. More info at [Privileged Service Accounts](./how-to-guides/integration-config.md#privileged-serviceaccounts)
 
 ## Namespace Admission Webhook
 
@@ -47,11 +47,11 @@ The fix is to create namespaces with `kubectl create` instead.
 
 ### Q. How do I deploy cluster-scoped resource via the ArgoCD integration?
 
-**Answer.** Multi-Tenant Operator's ArgoCD Integration allows configuration of which cluster-scoped resources can be deployed, both globally and on a per-tenant basis. For a global allow-list that applies to all tenants, you can add both resource `group` and  `kind` to the [IntegrationConfig's](./how-to-guides/integration-config.md#argocd) `spec.argocd.clusterResourceWhitelist` field. Alternatively, you can set this up on a tenant level by configuring the same details within a [Tenant's](./how-to-guides/tenant.md) `spec.argocd.appProject.clusterResourceWhitelist` field. For more details, check out the [ArgoCD integration use cases](./tutorials/argocd/enabling-multi-tenancy-argocd.md#allow-argocd-to-sync-certain-cluster-wide-resources)
+**Answer.** Multi-Tenant Operator's ArgoCD Integration allows configuration of which cluster-scoped resources can be deployed, both globally and on a per-tenant basis. For a global allow-list that applies to all tenants, you can add both resource `group` and  `kind` to the [IntegrationConfig's](./how-to-guides/integration-config.md#argocd) `spec.integrations.argocd.clusterResourceWhitelist` field. Alternatively, you can set this up on a tenant level by configuring the same details within a [Tenant's](./how-to-guides/tenant.md) `spec.integrations.argocd.appProject.clusterResourceWhitelist` field. For more details, check out the [ArgoCD integration use cases](./tutorials/argocd/enabling-multi-tenancy-argocd.md#allow-argocd-to-sync-certain-cluster-wide-resources)
 
 ## Q. InvalidSpecError: application repo \<repo\> is not permitted in project \<project\>
 
-**Answer.** The above error can occur if the ArgoCD Application is syncing from a source that is not allowed the referenced AppProject. To solve this, verify that you have referred to the correct project in the given ArgoCD Application, and that the repoURL used for the Application's source is valid. If the error still appears, you can add the URL to the relevant Tenant's `spec.argocd.sourceRepos` array.
+**Answer.** The above error can occur if the ArgoCD Application is syncing from a source that is not allowed the referenced AppProject. To solve this, verify that you have referred to the correct project in the given ArgoCD Application, and that the repoURL used for the Application's source is valid. If the error still appears, you can add the URL to the relevant Tenant's `spec.integrations.argocd.sourceRepos` array.
 
 ## Q. Why are there `mto-showback-*` pods failing in my cluster?