[3.5] Secure vs insecure image pruning#5535

Merged

bmcelvee merged 1 commit intoopenshift:enterprise-3.5-stagefrom

miminar:secure-image-pruning-3.5

Oct 5, 2017

miminar commented Oct 5, 2017

Document new options related to secure connection to integrated docker
registry and a mechanism that decides whether to fall-back to insecure
connection.

Backports #4471

bparees requested changes

View reviewed changes

Contributor

bparees left a comment

a few nits, but you'll probably want to wait for @openshift/team-documentation to review as well and then make all the same changes to your 3.4 PR.

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

a secure connection

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

recommended

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

"then your registry is not secured and the oadm prune images client
will attempt to use secure connection"

should be

"then your registry is not secured and the oadm prune images client
attempted to use secure connection" ?

Author

miminar Oct 5, 2017

yes

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

recommended

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

we probably shouldn't be documenting bugs (especially ones that are fixed) in our official documentation.

Author

miminar Oct 5, 2017

removing

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

s/this/a standard prune/

admin_guide/pruning_resources.adoc Outdated

Contributor

bparees Oct 5, 2017

the registry's service account name

Contributor

bparees commented Oct 5, 2017

@openshift/team-documentation ptal

bparees self-assigned this

bmcelvee self-assigned this

bmcelvee reviewed

View reviewed changes

admin_guide/pruning_resources.adoc Outdated

Contributor

bmcelvee Oct 5, 2017

We may want to add an additional warning for this option following the table. @bparees what do you think?

Contributor

bparees Oct 5, 2017

sure.

Author

miminar Oct 5, 2017

I believe I've covered the danger in the [pruning-images-secure-or-insecure] section which is already recommended to read. I would rather refrain from clogging the doc with redundant information.

bmcelvee reviewed

View reviewed changes

admin_guide/pruning_resources.adoc Outdated

Contributor

bmcelvee Oct 5, 2017

s/an alternative route that works needs to be provided using this flag/use this flag to provide an alternate route.


          Secure vs insecure image pruning

683cc46

Document new options related to secure connection to integrated docker
registry and a mechanism that decides whether to fall-back to insecure
connection.

Signed-off-by: Michal Minář <miminar@redhat.com>

miminar force-pushed the secure-image-pruning-3.5 branch from a1ae9d4 to 683cc46 Compare

October 5, 2017 14:10

Author

miminar commented Oct 5, 2017

Thank you! Comments addressed. If approved, I'll apply the changes to 3.4 as well.

Contributor

bmcelvee commented Oct 5, 2017

Thanks, @miminar! LGTM. @bparees do you have any additional changes?

Contributor

bparees commented Oct 5, 2017

Contributor

bmcelvee commented Oct 5, 2017

[rev_history]
|xref:../admin_guide/pruning_resources.adoc#admin-guide-pruning-resources[Pruning Objects]
|Added details on secure versus insecure image pruning, and hard pruning the registry.
%

bmcelvee merged commit 1145d37 into openshift:enterprise-3.5-stage

bmcelvee added this to the Next Release milestone

miminar mentioned this pull request

[3.4] Secure vs insecure image pruning #5536

Merged

adellape modified the milestones: Next Release, Staging

vikram-redhat modified the milestones: Staging, Published - 10/11/2017

miminar deleted the secure-image-pruning-3.5 branch

April 9, 2018 12:22

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet