kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
51,867 Commits
70 Branches
73 Tags
967 MiB
Commit Graph

78 Commits (aae228c0377a677b59df6543f0b51cd21fcab176)

Author SHA1 Message Date
Qiming Teng e6855623c7 Fix some hyperlinks in the markdown files 2024-09-13 09:33:51 +08:00
Kubernetes Prow Robot 8901aa537e
Merge pull request #46113 from nilekhc/clarify-automatic-reloading 
docs: updates automatics reloading behaviour.
 2024-05-14 10:19:11 -07:00
Nilekh Chaudhari 87a912068c
docs: updates automatics reloading behaviour. 
Signed-off-by: Nilekh Chaudhari <1626598+nilekhc@users.noreply.github.com>
 2024-05-08 16:10:19 +00:00
Tim Bannister 085c4cd168 Reword advice about replicated encryption configuration 2024-05-01 12:29:11 +01:00
Tim Bannister 47f15991d9 Revise callouts in encryption-at-rest task page 2024-05-01 12:29:11 +01:00
Qiming Teng 6fa7b80ae3 Config API reference for v1.30 2024-04-18 19:57:27 +08:00
Tim Bannister 6d6b17abd1 Reword advice about encryption-at-rest opt outs 
Co-authored-by: Shannon Kularathna <ax3shannonkularathna@gmail.com>
 2024-01-31 15:59:25 +00:00
Kubernetes Prow Robot 6089916922
Merge pull request #44801 from sftim/20240118_revise_encryption_at_rest 
Revise introduction to encryption at rest page
 2024-01-26 17:27:42 +01:00
Kubernetes Prow Robot fbf9b4fd7c
Merge pull request #44776 from BRONSOLO/patch-1 
Update encrypt-data.md
 2024-01-19 23:22:41 +01:00
Tim Bannister dd7e3966ef Revise introduction to encryption at rest page 
Help readers check if they need to follow the task.
 2024-01-19 00:23:25 +00:00
Chuck Bronson b1929ab8a8
Update encrypt-data.md 
Fix as ---> at typo
 2024-01-17 10:40:02 -05:00
Tim Bannister 0e05396f1b Recommend replicating encryption key 
When using API encryption at rest without KMS, the same encryption key
must be securely replicated to all the hosts that run a kube-apiserver.

Document that.
 2024-01-12 14:38:25 +00:00
Tim Bannister bfbe2db97b Highlight initial comment 
Make the initial comment extra obvious to readers.
 2024-01-08 17:55:46 +00:00
Tim Bannister e17cd06c3d Revise guidance for rotating a decryption key 2024-01-02 11:14:30 +00:00
Tim Bannister b749f91f12 Document avoiding plain text retrieval 
When you have set up your cluster for encryption at rest, you can take
this defence in depth measure to make sure that anything held without
encryption causes a retrieval error (which is then more likely to flag
that there is a problem).
 2024-01-02 11:14:30 +00:00
Kubernetes Prow Robot 0f285fd32d
Merge pull request #44085 from sftim/20231125_explain_protection_encryption_keys 
Explain more about protection for encryption keys (API data encryption at rest)
 2023-12-26 07:18:49 +01:00
Tim Bannister ada845e5e1 Link to KMS setup doc 2023-12-22 11:33:36 +00:00
Tim Bannister 9f8b35d93f Redo API encryption at rest explanation 
- Explain importance of protecting keys and other material that can be
  used to decrypt data in etcd
- Revise the explanation for a non-KMS setup example
 2023-12-22 11:33:36 +00:00
Anish Ramasekar 8b9f3f84aa
review feedback 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-11-20 17:25:48 +00:00
Anish Ramasekar 8598729e5d
update docs for KMSv2 and KMSv2KDF stable 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-11-17 18:19:45 +00:00
Kubernetes Prow Robot bdf538c2cd
Merge pull request #42922 from sftim/20230906_document_decrypting_api_encryption_at_rest 
Split at-rest decryption into its own page
 2023-09-18 10:18:32 -07:00
Kubernetes Prow Robot 3613a659e0
Merge pull request #42882 from sftim/20220428_revise_encryption_at_rest_table_rework 
Update encryption-at-rest task page
 2023-09-06 12:52:52 -07:00
Tim Bannister e31c847e25
Split at-rest decryption into its own page 2023-09-06 20:41:31 +01:00
Tim Bannister 3aade83e13 List available API encryption providers 
Improve existing list of providers for API encryption at rest.

Co-authored-by: Qiming Teng <tengqm@outlook.com>
 2023-09-05 17:46:40 +01:00
Tim Bannister 55d5b54937 Make a section for writing the config file 
Promote creating the encryption configuration file to have its own page
heading.
 2023-09-05 17:46:40 +01:00
Kubernetes Prow Robot 2b973a9c96
Merge pull request #42883 from sftim/20220428_revise_encryption_at_rest_table_rework_2 
Update encryption-at-rest task page
 2023-09-04 17:45:48 -07:00
Andrii Abramov 8f4cb28d94
Fix typo in encrypt-data.md 2023-09-05 00:30:52 +02:00
Tim Bannister eaf4c4e913 Clarify how to ensure objects are encrypted 2023-09-04 18:15:58 +01:00
gerardo romero niño a203814740
Update encrypt-data.md 
Fix typo on new encryption config file example
 2023-08-17 08:28:18 -06:00
Monis Khan 7fb0cf6924
KMS doc updates for v1.28 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2023-08-09 15:00:11 -04:00
Tim Bannister 78bb456b96 Revise API encryption at rest task intro 
Co-authored-by: Mo Khan <theenjeru@gmail.com>
 2023-07-25 14:33:37 +01:00
Tim Bannister 163fd2769a
Update example YAML in encryption-at-rest topic 2023-06-10 09:53:36 +01:00
Kubernetes Prow Robot 792a63ef7a
Merge pull request #41196 from sftim/20230517_revise_encryption_at_rest 
Replace ASCII art arrows in comments
 2023-05-17 15:24:33 -07:00
Tim Bannister 49d0568a06 Split out advice about config reloads for encryption at rest 2023-05-17 21:33:29 +01:00
Tim Bannister 1f762d0403 Replace ASCII art arrows in comments 
Plain comments work just as well.
 2023-05-17 20:10:05 +01:00
Tim Bannister aec678e64a Revise API resource encryption at rest introduction 
- Change page title (you can encrypt more than Secrets)
- Revise prerequisites
 2023-05-10 13:20:33 +01:00
Tim Bannister fac97a1947 Fix sort order for at-rest API encryption providers 
List "identity" first, then other providers alphabetically.
 2023-04-29 21:47:14 +01:00
Tim Bannister e3720c7fd3 Switch to HTML table 
Replace the existing Markdown table with a more complex table that is
not easy to express in Markdown - and for that reason, use HTML.

This relies on custom style support to render well, but can work OK even
with default Docsy styling.
 2023-04-29 21:47:09 +01:00
Kubernetes Prow Robot 2da2c6c277
Merge pull request #40407 from mickeyboxell/merged-main-dev-1.27 
Merged main dev 1.27
 2023-03-31 21:49:49 -07:00
Rita Zhang cb656b40c2
Add docs to accompany KMS v2beta1 changes (#39110) 
* Tracking commit for v1.27 docs

* feat: KMS v2beta1

Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>

---------

Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
Co-authored-by: carolina valencia <krol3@users.noreply.github.com>
 2023-03-30 23:21:49 -07:00
Mickey Boxell a15fa4ae31 Merge remote-tracking branch 'upstream/main' into dev-1.27 2023-03-29 15:54:33 -05:00
Kubernetes Prow Robot f0c2c17e4b
Merge pull request #39897 from nilekhc/encrypt-all-docs 
[KMSv2] docs: updates EncryptionConfiguration doc to add wildcard support to encrypt all resources.
 2023-03-23 12:08:31 -07:00
Kubernetes Prow Robot d63f7618a1
Merge pull request #39876 from bradreelee/patch-1 
Update encrypt-data.md
 2023-03-23 03:00:32 -07:00
Nilekh Chaudhari 1054d0bcc7 docs: updates EncryptionConfiguration doc to add wildcard support to encrypt all resources. 
Signed-off-by: Nilekh Chaudhari <1626598+nilekhc@users.noreply.github.com>
 2023-03-13 23:39:06 +00:00
bradreelee d6b5d843c3
Update encrypt-data.md 2023-03-13 20:07:39 +09:00
bradreelee 2774ec1ffe
Update content/en/docs/tasks/administer-cluster/encrypt-data.md 
Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>
 2023-03-13 10:29:10 +09:00
Craig Box 46bf59d941 Shortcode fixes for en 2023-03-13 10:50:13 +13:00
bradreelee 00078b40dc
Update encrypt-data.md 
Added missing closing parentheses in line 70
 2023-03-09 20:19:21 +09:00
Abigail McCarthy b1202c78ff Update page weights in /tasks/administer-cluster section 2023-01-11 11:12:34 -05:00
Michael d8e90b4c6b Fix punctuations in headings of encrypt-data.md 2022-12-19 09:34:59 +08:00