docs: add ztvp-certificates scenario documentation#130
Open
minmzzhang wants to merge 3 commits intovalidatedpatterns:mainfrom
Open
docs: add ztvp-certificates scenario documentation#130minmzzhang wants to merge 3 commits intovalidatedpatterns:mainfrom
minmzzhang wants to merge 3 commits intovalidatedpatterns:mainfrom
Conversation
Covers architecture, extraction phases, platform-specific handling (BareMetal/VSphere proxy CA, custom enterprise CAs, image pull trust), ACM Policy distribution, and automatic rollout strategies. Signed-off-by: Min Zhang <minzhang@redhat.com>
Collaborator
|
Very solid documentation. In theory you can combine Scenario 2 (BareMetal) and Scenario 3 (vSphere) into one use case, because both scenarios are almost identical, but it can stay as is as well. Great job @minmzzhang ! |
Merge Scenario 2 (BareMetal) and Scenario 3 (vSphere) into a single scenario since both platforms have identical self-signed ingress behavior and redundant proxyCA overrides. Renumber remaining scenarios accordingly. Signed-off-by: Min Zhang <minzhang@redhat.com>
Collaborator
Author
Good suggestion! I've pushed the update based on your suggestion, thank you @p-rog ! |
sabre1041
requested changes
May 8, 2026
Collaborator
sabre1041
left a comment
sabre1041
left a comment
There was a problem hiding this comment.
@minmzzhang this is very comprehensive. A few minor comments/suggestions
- Add link to the chart directory - Fix "ArgoCD" to "Argo CD" - Remove hardcoded sync-wave numbers to avoid staleness - Renumber phases 8.5/8.6 to 8.1/8.2 - Clarify service CA is read from within the Job Pod - Add "ConfigMap" qualifier to ztvp-trusted-ca references - Link to ACM fromConfigMap documentation - Replace wave numbers with relative ordering in sync table Signed-off-by: Min Zhang <minzhang@redhat.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Covers architecture, extraction phases, platform-specific handling (BareMetal/VSphere proxy CA, custom enterprise CAs, image pull trust), ACM Policy distribution, and automatic rollout strategies.