You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This is the reviewable content delta PR, set to merge into the "big copy" pr (#940), which will merge into master.
Page previews
PR Type
Documentation
Description
Update Kubernetes Operator documentation from v1.4.3 to v1.5.0
Add comprehensive features for v1.5.0 including Archiver nodes, TLS certificate management, user configuration, and 5-node cluster support
Expand configuration reference with new fields for archiver, users, service accounts, telemetry, and manual restart triggers
Add new deployment examples for archiving and secure clusters with user management
Update installation instructions and version references throughout documentation
Diagram Walkthrough
flowchart LR
A["v1.4.3 Docs"] -->|Version Update| B["v1.5.0 Docs"]
B -->|Add Features| C["Archiver Nodes"]
B -->|Add Features| D["User Management"]
B -->|Add Features| E["TLS Auto-reload"]
B -->|Add Features| F["5-node Clusters"]
B -->|Add Features| G["Manual Restart Keys"]
C -->|Example| H["Archiving Deployment"]
D -->|Example| I["Secure Cluster with Users"]
E -->|Config| J["Certificate Authority Updates"]
Update the CertificateSecret table to mark keyName as optional and clarify its requirement context, resolving a contradiction with the field's description.
#### CertificateSecret
-| Field | Required | Description |-|---------------------------|----------|------------------------------------------------------------------|-| `name` _string_ | Yes | Name of the secret holding the certificate details |-| `keyName` _string_ | Yes | Key within the secret containing the TLS certificate |-| `privateKeyName` _string_ | No | Key within the secret containing the TLS certificate private key |+| Field | Required | Description |+|---------------------------|----------|-----------------------------------------------------------------------------|+| `name` _string_ | Yes | Name of the secret holding the certificate details |+| `keyName` _string_ | No | Key within the secret containing the TLS certificate (required for leaf certs; optional for CA bundles) |+| `privateKeyName` _string_ | No | Key within the secret containing the TLS certificate private key |
Apply / Chat
Suggestion importance[1-10]: 7
__
Why: The suggestion correctly identifies a contradiction in the documentation where a field is described as optional but defined as required, and the proposed fix resolves this inconsistency, improving documentation correctness.
Medium
Organization best practice
Align product naming by version
The 23.10–24.10 image is an EventStoreDB image, so the prose/table should use EventStoreDB naming for those versions and KurrentDB for 25.0+ to avoid confusing readers.
## Selecting an Image
-When selecting a KurrentDB image, you may choose from one of Kurrent's standard images:+Choose an image that matches your database major version:-| Versions | Image | Link |-|--------------------|----------------------------------------------------------|-------------|-| 23.10.x to 24.10.x | `docker.eventstore.com/eventstore/eventstoredb-ee:X.Y.Z` | [link][old] |-| 25.0.0 and greater | `docker.kurrent.io/kurrent-latest/kurrentdb:X.Y.Z` | [link][std] |+| Versions | Product name | Image | Link |+|----------------------|--------------|----------------------------------------------------------|-------------|+| 23.10.x to 24.10.x | EventStoreDB | `docker.eventstore.com/eventstore/eventstoredb-ee:X.Y.Z` | [link][old] |+| 25.0.0 and greater | KurrentDB | `docker.kurrent.io/kurrent-latest/kurrentdb:X.Y.Z` | [link][std] |
Apply / Chat
Suggestion importance[1-10]: 6
__
Why:
Relevant best practice - Ensure version-specific docs preserve legacy product naming for older versions while introducing new names for current releases.
Low
Fix incorrect markdown anchor
Fix the new anchor reference to match the generated lowercase heading id (or remove it if unused) to prevent a broken in-page link.
Why:
Relevant best practice - When adding or changing links/anchors, ensure references resolve correctly to avoid broken navigation.
Low
General
Fix broken table formatting
Fix markdown formatting by adding missing backticks around field names in the KurrentDBUsersSpec table and correcting the inline code for the default password.
#### KurrentDBUsersSpec
-| Field | Required | Description |-|------------------------------------------------|----------|------------------------------------------------------|-| adminPasswordSecret _[SecretKeySelector][u1]_ | Yes | Secret containing initial password for `admin` user. |-| opsPasswordSecret _[SecretKeySelector][u1]_ | Yes | Secret containing initial password for `ops` user. |-| customUsers _[KurrentDBUserSpec][u2] array_ | No | Custom users to add to the database. |+| Field | Required | Description |+|----------------------------------------------------|----------|------------------------------------------------------|+| `adminPasswordSecret` _[SecretKeySelector][u1]_ | Yes | Secret containing initial password for `admin` user. |+| `opsPasswordSecret` _[SecretKeySelector][u1]_ | Yes | Secret containing initial password for `ops` user. |+| `customUsers` _[KurrentDBUserSpec][u2]_ array | No | Custom users to add to the database. |
The `admin` and `ops` passwords are required if users are configured at all. Those paswords are set
by initial database creation; when set, the database will never accept the default password
-(`changeit)`. No deployment should be considered secure without configuring these two passwords.+(`changeit`). No deployment should be considered secure without configuring these two passwords.
Apply / Chat
Suggestion importance[1-10]: 4
__
Why: The suggestion correctly points out and fixes multiple markdown formatting errors, improving the readability and consistency of the documentation.
Why: The suggestion correctly identifies that the ServiceAccount example is missing a namespace, which would cause the example deployment to fail as written.
Medium
Advise against deleting initial user secrets
Revise the documentation to strongly recommend retaining initial user configuration secrets for disaster recovery, instead of stating they can be safely deleted.
-The Operator does not currently support updates to the intial user configuration. The Secrets-referenced here are not read after the first time the KurrentDB cluster reaches a healhty state,-and may safely be deleted.+The Operator does not currently support updates to the initial user configuration. The Secrets+referenced here are used for initial setup and are not read again after the KurrentDB cluster+first reaches a healthy state. However, it is strongly recommended to retain these secrets, as+they may be required for disaster recovery scenarios, such as restoring from a backup or+recreating the cluster.
Suggestion importance[1-10]: 7
__
Why: The suggestion correctly identifies that advising users to delete secrets is risky, as they may be needed for disaster recovery, preventing potential future operational failures.
Medium
Organization best practice
Fix inconsistent field naming
Use the correct, consistently-cased spec field name (this page elsewhere references .spec.environmentSecret), and keep wording consistent to prevent users from configuring a non-existent field.
-| `EnvironmentSecret` _string_ | No | The name of a Secret to populate environment variables. If the secret changes a rolling restart occurs. |+| `environmentSecret` _string_ | No | The name of a Secret to populate environment variables. If the Secret changes, a rolling restart occurs. |
Suggestion importance[1-10]: 6
__
Why:
Relevant best practice - Ensure versioned docs use correct, consistent field names/terminology (avoid mismatches that mislead users).
Low
Normalize capitalization and fix typos
Normalize heading capitalization and fix newly introduced spelling/grammar issues in the surrounding new text (e.g., “privileged”, “passwords”, “additional”, “initial”, “healthy”, “archiving”) to keep the reference clear and professional.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
rb-kurrent
force-pushed
the
operator-v1-5-0-content
branch
from
User description
Description
This is the reviewable content delta PR, set to merge into the "big copy" pr (#940), which will merge into master.
Page previews
PR Type
Documentation
Description
Update Kubernetes Operator documentation from v1.4.3 to v1.5.0
Add comprehensive features for v1.5.0 including Archiver nodes, TLS certificate management, user configuration, and 5-node cluster support
Expand configuration reference with new fields for archiver, users, service accounts, telemetry, and manual restart triggers
Add new deployment examples for archiving and secure clusters with user management
Update installation instructions and version references throughout documentation
Diagram Walkthrough
File Walkthrough
README.md
Update version in page titledocs/server/kubernetes-operator/v1.5.0/README.md
README.md
Add v1.5.0 release notes with major featuresdocs/server/kubernetes-operator/v1.5.0/getting-started/README.md
list
manual restart triggers
installation.md
Update version references in installation guidedocs/server/kubernetes-operator/v1.5.0/getting-started/installation.md
resource-types.md
Expand configuration reference with v1.5.0 featuresdocs/server/kubernetes-operator/v1.5.0/getting-started/resource-types.md
Reference"
replicasfield documentationEnvironmentSecret,archiver,serviceAccountName,telemetryOptOut,users, and restart trigger keysKurrentDBArchiverSpecsection with archiver node configurationoptions
KurrentDBUsersSpecandKurrentDBUserSpecsections for usermanagement
loadBalancerClassfield toKurrentDBLoadBalancersectionKurrentDBSecuritydocumentation for automatic TLS certificateupdates and multiple CA support
nodePort,replicationPort, andnodeTcpPortfields toKurrentDBNetworksectionRed Hat certified images
suffix
database-deployment.md
Add archiving and user configuration deployment examplesdocs/server/kubernetes-operator/v1.5.0/operations/database-deployment.md
modify-deployments.md
Add manual restart trigger documentationdocs/server/kubernetes-operator/v1.5.0/operations/modify-deployments.md
manual restart keys
configReloadKey,rollingRestartKey, andfullRestartKeyfieldsevaluation scenarios
read-only replicas
versions.json
Add v1.5.0 to version registrydocs/server/kubernetes-operator/versions.json