From dd6de0fbf7c259055771cac21af2b7f0c9a224b6 Mon Sep 17 00:00:00 2001 From: Rasheed Amir Date: Wed, 17 May 2023 16:42:04 +0200 Subject: [PATCH 1/5] update service definition --- content/about/cloud-providers/aws.md | 4 ++ content/about/cloud-providers/azure.md | 19 +++++++ content/about/cloud-providers/exoscale.md | 17 ++++-- content/about/cloud-providers/gcp.md | 19 +++++++ content/about/service-definition/logging.md | 14 +++++ .../about/service-definition/monitoring.md | 14 +++++ content/about/service-definition/overview.md | 12 +++-- content/about/service-definition/platform.md | 54 +++++++++++++++++++ .../service-definition/secrets-management.md | 4 ++ .../about/service-definition/service-mesh.md | 19 +++++++ 10 files changed, 168 insertions(+), 8 deletions(-) create mode 100644 content/about/service-definition/service-mesh.md diff --git a/content/about/cloud-providers/aws.md b/content/about/cloud-providers/aws.md index 7259eb2d..376678eb 100644 --- a/content/about/cloud-providers/aws.md +++ b/content/about/cloud-providers/aws.md @@ -42,6 +42,10 @@ SAAP offers the following worker node types and sizes on AWS: - c5.2xlarge (8 vCPU, 16 GiB) - c5.4xlarge (16 vCPU, 32 GiB) +### Autoscaling + +Node autoscaling is available on AWS. You can configure the autoscaler option to automatically scale the number of machines in a cluster. + ## Network usage TODO diff --git a/content/about/cloud-providers/azure.md b/content/about/cloud-providers/azure.md index c8e5d640..7446df5a 100644 --- a/content/about/cloud-providers/azure.md +++ b/content/about/cloud-providers/azure.md @@ -18,3 +18,22 @@ An azure subscription is needed to create and manage cluster on azure. The follo | StandardStorageSnapshots | 10000 (depends on how many disks are used) and backup duration | | Machine Specifications | 6 machines of 8x32x120G | | Region | Region will be identified by the customer | + +## Instance Types + +SAAP offers the following worker node types and sizes on Azure: + +### General Purpose + +- + +### Memory Optimized + +- + +### Compute Optimized + +- +### Autoscaling + +Node autoscaling is available on Azure. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file diff --git a/content/about/cloud-providers/exoscale.md b/content/about/cloud-providers/exoscale.md index 696ece68..6ecaabd0 100644 --- a/content/about/cloud-providers/exoscale.md +++ b/content/about/cloud-providers/exoscale.md @@ -1,17 +1,28 @@ # Exoscale +An account is needed to create and provision SAAP instance on Exoscale. The following criteria must be met + +| Type | Limit | +|---|---| +| Instances | 9 | + ## Instance Types SAAP offers the following worker node types and sizes on Exoscale: ### General Purpose -- ... +- EXTRA-LARGE (4x16) +- HUGE (8x32) +- MEGA (12x64) ### Memory Optimized -- ... +- HUGE (4x32) +- MEGA (8x64) +- TITAN (12x128) ### Compute Optimized -- .. +- EXTRA-LARGE (8x16) +- HUGE (16x32) diff --git a/content/about/cloud-providers/gcp.md b/content/about/cloud-providers/gcp.md index 0181898d..ec339470 100644 --- a/content/about/cloud-providers/gcp.md +++ b/content/about/cloud-providers/gcp.md @@ -22,3 +22,22 @@ A GCP account is needed to create and manage cluster on GCP. The following crite | Target Pools | 3| | Machine Specifications | 9 machines of 8x32x120G | | Region | Region will be identified by the customer | + +## Instance Types + +SAAP offers the following worker node types and sizes on GCP: + +### General Purpose + +- + +### Memory Optimized + +- + +### Compute Optimized + +- +### Autoscaling + +Node autoscaling is available on GCP. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file diff --git a/content/about/service-definition/logging.md b/content/about/service-definition/logging.md index b921bbe5..7aaf12ac 100644 --- a/content/about/service-definition/logging.md +++ b/content/about/service-definition/logging.md @@ -1 +1,15 @@ # Logging + +SAAP provides an optional integrated log forwarding to log store. + +## Cluster audit logging + +Cluster audit logs are available through log store, if the integration is enabled. If the integration is not enabled, you can request the audit logs by opening a support case. + +## Application logging + +Application logs sent to STDOUT are collected by log collector and forwarded to log store through the cluster logging stack, if it is installed. + +## Data retention + +By default only 7 days data is kept; and if you want to store for long term then open a support case. \ No newline at end of file diff --git a/content/about/service-definition/monitoring.md b/content/about/service-definition/monitoring.md index 31b5a704..ea69ebb8 100644 --- a/content/about/service-definition/monitoring.md +++ b/content/about/service-definition/monitoring.md @@ -1 +1,15 @@ # Monitoring + +This section provides information about the service definition for SAAP monitoring. + +## Cluster metrics + +SAAP instances come with an integrated Prometheus stack for cluster monitoring including CPU, memory, and network-based metrics. This is accessible through the web console. These metrics also allow for horizontal pod autoscaling based on CPU or memory metrics. + +## Application monitoring + +SAAP provides an optional application monitoring stack based on Prometheus to monitor business critical applications. This allows for adding scrape targets in user namespaces. + +## Data retention + +By default only 7 days data is kept; and if you want to store for long term then open a support case. \ No newline at end of file diff --git a/content/about/service-definition/overview.md b/content/about/service-definition/overview.md index 553358b2..c9df2532 100644 --- a/content/about/service-definition/overview.md +++ b/content/about/service-definition/overview.md @@ -1,12 +1,14 @@ # Overview -1. Managed Kubernetes (Red Hat OpenShift) -2. Managed Monitoring Stack (Prometheus, Grafana, Alert Manager) -3. Managed Logging Stack (Fluentd, Vector, ElasticSearch, Kibana) +This section outlines the service definition for the SAAP: + +1. [Managed Kubernetes (Red Hat OpenShift)](platform.md) +2. [Managed Monitoring Stack (Prometheus, Grafana, Alert Manager)](monitoring.md) +3. [Managed Logging Stack (Fluentd, Vector, ElasticSearch, Kibana)](logging.md) 4. Managed Container Registry (Nexus) 5. Managed Artifacts Store (Nexus) -6. Managed Backup Recovery (Velero) -7. Managed Secrets Management (Vault) +6. Managed Backup Restore (Velero) +7. [Managed Secrets Management (Vault)](secrets-management.md) 8. Managed Multi-tenancy (MTO) 9. Managed Service Mesh (Istio, Kiali, Jagaer) 10. Managed Certs diff --git a/content/about/service-definition/platform.md b/content/about/service-definition/platform.md index ca5f6cd0..3b82c09d 100644 --- a/content/about/service-definition/platform.md +++ b/content/about/service-definition/platform.md @@ -1 +1,55 @@ # Platform + +## Autoscaling + +Node autoscaling is available on few clouds; you can find details in the relevant cloud section. You can configure the autoscaler option to automatically scale the number of machines in a cluster. + +## Daemonsets + +Customers can create and run daemonsets on SAAP. To restrict daemonsets to only running on worker nodes, use the following nodeSelector: + +``` +... +spec: + nodeSelector: + role: worker +... +``` + +## Multiple availability zone + +In a multiple availability zone cluster, control plane nodes are distributed across availability zones and at least one worker node is required in each availability zone. + +## Node labels + +Custom node labels are created by Stakater during node creation and cannot be changed on SAAP at this time. However, custom labels are supported when creating new machine pools. + +## OpenShift version + +SAAP is run as a managed service and is kept up to date with the latest OpenShift Container Platform version. Upgrade scheduling to the latest version is available. + +## Container engine + +SAAP runs on OpenShift 4 and uses [CRI-O](https://www.redhat.com/en/blog/red-hat-openshift-container-platform-4-now-defaults-cri-o-underlying-container-engine) as the only available container engine. + +## Operating system + +SAAP runs on OpenShift 4 and uses Red Hat CoreOS as the operating system for all control plane and worker nodes. + +## Windows Containers + +Red Hat OpenShift support for Windows Containers is not available on SAAP at this time. + +## Upgrades + +Upgrades can be scheduled by opening a [support case](https://support.stakater.com/index.html). + +See the [SAAP Life Cycle](../update-lifecycle.md) for more information on the upgrade policy and procedures. + +## Kubernetes Operator support + +All Operators listed in the Operator Hub marketplace should be available for installation. These operators are considered customer workloads, and are not monitored by Stakater SRE. + +## Red Hat Operator support + +Red Hat workloads typically refer to Red Hat-provided Operators made available through Operator Hub. Red Hat workloads are not managed by the Stakater SRE team, and must be deployed on worker nodes and must be managed by the customer. \ No newline at end of file diff --git a/content/about/service-definition/secrets-management.md b/content/about/service-definition/secrets-management.md index d4da49dd..04a4492c 100644 --- a/content/about/service-definition/secrets-management.md +++ b/content/about/service-definition/secrets-management.md @@ -1 +1,5 @@ # Secrets Management + +SAAP provides an optional integration of HashiCorp Vault which enhances the security and secrets management capabilities of the platform. + +By integrating Vault, SAAP provides customers with a secure and centralized solution for storing and accessing sensitive information such as passwords, API keys, and certificates. It complements the default OpenShift secrets mechanism, providing additional features and capabilities that are critical for managing secrets in modern containerized environments. \ No newline at end of file diff --git a/content/about/service-definition/service-mesh.md b/content/about/service-definition/service-mesh.md new file mode 100644 index 00000000..5d0a54bf --- /dev/null +++ b/content/about/service-definition/service-mesh.md @@ -0,0 +1,19 @@ +# Service Mesh + +SAAP provides an optional one fully managed service mesh control instance, it means that SAAP provides a pre-configured and managed service mesh infrastructure for handling service-to-service communication within a microservices architecture. + +Here's an explanation of the managed service mesh instance within SAAP: + +1. Pre-configured Service Mesh Infrastructure: SAAP includes a pre-configured instance of a service mesh, which is a dedicated infrastructure layer for managing and securing communication between services in a microservices architecture. This instance is already set up and ready to use, eliminating the need for administrators to manually configure and deploy a service mesh from scratch. + +2. Simplified Service-to-Service Communication: The managed service mesh instance within SAAP simplifies the complexity of service-to-service communication. It provides a consistent and reliable mechanism for handling communication between services, abstracting away the underlying networking details and allowing developers to focus on building and deploying their microservices. + +3. Service Discovery and Load Balancing: The managed service mesh instance offers built-in service discovery and load balancing capabilities. It automatically discovers services within the mesh and routes traffic to the appropriate instances, distributing the load evenly to optimize performance and ensure high availability. + +4. Traffic Management and Resilience: SAAP's managed service mesh instance enables advanced traffic management techniques. It allows for fine-grained control over traffic routing, enabling features such as request routing, traffic splitting, and canary deployments. This allows organizations to implement various traffic management strategies and improve application resilience in the face of failures or traffic spikes. + +5. Security and Encryption: The managed service mesh instance within SAAP incorporates security features to secure communication between services. It includes built-in support for mutual TLS encryption, ensuring that all communication within the service mesh is encrypted and authenticated. This helps protect sensitive data and prevents unauthorized access to services within the mesh. + +6. Observability and Monitoring: SAAP's managed service mesh instance integrates with observability tools to provide insights into the performance and health of the microservices ecosystem. It offers monitoring and tracing functionalities, allowing organizations to track and analyze requests flowing through the service mesh, identify bottlenecks, and diagnose issues for troubleshooting and optimization. + +By including a managed service mesh instance, SAAP simplifies and streamlines the deployment, management, and security of service-to-service communication within a microservices architecture. It provides a ready-to-use service mesh infrastructure that abstracts away the complexities and offers essential features for reliable, secure, and observable microservices communication. \ No newline at end of file From b12c896a93045802f46739bb880d3e4f99dd6067 Mon Sep 17 00:00:00 2001 From: Rasheed Amir Date: Wed, 17 May 2023 16:58:26 +0200 Subject: [PATCH 2/5] fix pipeline feedback --- content/about/cloud-providers/azure.md | 5 ----- content/about/cloud-providers/gcp.md | 5 ----- content/about/service-definition/logging.md | 2 +- content/about/service-definition/overview.md | 2 +- content/about/service-definition/platform.md | 2 +- 5 files changed, 3 insertions(+), 13 deletions(-) diff --git a/content/about/cloud-providers/azure.md b/content/about/cloud-providers/azure.md index 7446df5a..589fede8 100644 --- a/content/about/cloud-providers/azure.md +++ b/content/about/cloud-providers/azure.md @@ -25,15 +25,10 @@ SAAP offers the following worker node types and sizes on Azure: ### General Purpose -- - ### Memory Optimized -- - ### Compute Optimized -- ### Autoscaling Node autoscaling is available on Azure. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file diff --git a/content/about/cloud-providers/gcp.md b/content/about/cloud-providers/gcp.md index ec339470..163ab770 100644 --- a/content/about/cloud-providers/gcp.md +++ b/content/about/cloud-providers/gcp.md @@ -29,15 +29,10 @@ SAAP offers the following worker node types and sizes on GCP: ### General Purpose -- - ### Memory Optimized -- - ### Compute Optimized -- ### Autoscaling Node autoscaling is available on GCP. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file diff --git a/content/about/service-definition/logging.md b/content/about/service-definition/logging.md index 7aaf12ac..b8e18a13 100644 --- a/content/about/service-definition/logging.md +++ b/content/about/service-definition/logging.md @@ -8,7 +8,7 @@ Cluster audit logs are available through log store, if the integration is enable ## Application logging -Application logs sent to STDOUT are collected by log collector and forwarded to log store through the cluster logging stack, if it is installed. +Application logs sent to `STDOUT` are collected by log collector and forwarded to log store through the cluster logging stack, if it is installed. ## Data retention diff --git a/content/about/service-definition/overview.md b/content/about/service-definition/overview.md index c9df2532..c997ba8a 100644 --- a/content/about/service-definition/overview.md +++ b/content/about/service-definition/overview.md @@ -10,7 +10,7 @@ This section outlines the service definition for the SAAP: 6. Managed Backup Restore (Velero) 7. [Managed Secrets Management (Vault)](secrets-management.md) 8. Managed Multi-tenancy (MTO) -9. Managed Service Mesh (Istio, Kiali, Jagaer) +9. Managed Service Mesh (`Istio`, `Kiali`, `Jagaer`, `Prometheus`) 10. Managed Certs 11. Managed CD (ArgoCD) 12. Managed CI (Tekton) diff --git a/content/about/service-definition/platform.md b/content/about/service-definition/platform.md index 3b82c09d..61a3a7b9 100644 --- a/content/about/service-definition/platform.md +++ b/content/about/service-definition/platform.md @@ -6,7 +6,7 @@ Node autoscaling is available on few clouds; you can find details in the relevan ## Daemonsets -Customers can create and run daemonsets on SAAP. To restrict daemonsets to only running on worker nodes, use the following nodeSelector: +Customers can create and run daemonsets on SAAP. To restrict daemonsets to only running on worker nodes, use the following `nodeSelector`: ``` ... From 89281fc7958787087d6407d5f1b71cf83ef020cb Mon Sep 17 00:00:00 2001 From: Rasheed Amir Date: Wed, 17 May 2023 17:03:46 +0200 Subject: [PATCH 3/5] fix broken build and fix linting --- content/about/cloud-providers/azure.md | 2 +- content/about/cloud-providers/gcp.md | 2 +- content/about/service-definition/logging.md | 2 +- content/about/service-definition/monitoring.md | 2 +- content/about/service-definition/overview.md | 2 +- content/about/service-definition/platform.md | 2 +- content/about/service-definition/secrets-management.md | 2 +- content/about/service-definition/service-mesh.md | 2 +- mkdocs.yml | 1 - 9 files changed, 8 insertions(+), 9 deletions(-) diff --git a/content/about/cloud-providers/azure.md b/content/about/cloud-providers/azure.md index 589fede8..18a22b7d 100644 --- a/content/about/cloud-providers/azure.md +++ b/content/about/cloud-providers/azure.md @@ -31,4 +31,4 @@ SAAP offers the following worker node types and sizes on Azure: ### Autoscaling -Node autoscaling is available on Azure. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file +Node autoscaling is available on Azure. You can configure the autoscaler option to automatically scale the number of machines in a cluster. diff --git a/content/about/cloud-providers/gcp.md b/content/about/cloud-providers/gcp.md index 163ab770..bbcd9733 100644 --- a/content/about/cloud-providers/gcp.md +++ b/content/about/cloud-providers/gcp.md @@ -35,4 +35,4 @@ SAAP offers the following worker node types and sizes on GCP: ### Autoscaling -Node autoscaling is available on GCP. You can configure the autoscaler option to automatically scale the number of machines in a cluster. \ No newline at end of file +Node autoscaling is available on GCP. You can configure the autoscaler option to automatically scale the number of machines in a cluster. diff --git a/content/about/service-definition/logging.md b/content/about/service-definition/logging.md index b8e18a13..8cfa3978 100644 --- a/content/about/service-definition/logging.md +++ b/content/about/service-definition/logging.md @@ -12,4 +12,4 @@ Application logs sent to `STDOUT` are collected by log collector and forwarded t ## Data retention -By default only 7 days data is kept; and if you want to store for long term then open a support case. \ No newline at end of file +By default only 7 days data is kept; and if you want to store for long term then open a support case. diff --git a/content/about/service-definition/monitoring.md b/content/about/service-definition/monitoring.md index ea69ebb8..4a76c0a0 100644 --- a/content/about/service-definition/monitoring.md +++ b/content/about/service-definition/monitoring.md @@ -12,4 +12,4 @@ SAAP provides an optional application monitoring stack based on Prometheus to mo ## Data retention -By default only 7 days data is kept; and if you want to store for long term then open a support case. \ No newline at end of file +By default only 7 days data is kept; and if you want to store for long term then open a support case. diff --git a/content/about/service-definition/overview.md b/content/about/service-definition/overview.md index c997ba8a..93666750 100644 --- a/content/about/service-definition/overview.md +++ b/content/about/service-definition/overview.md @@ -17,4 +17,4 @@ This section outlines the service definition for the SAAP: 13. Managed Policy Enforcement (Gatekeeper, OPA) 14. Managed Downtime Alerting (IMC, UptimeRobot) 15. Managed Dynamic Environments (Tronador) -16. Managed Dynamic Application Reload (Reloader) \ No newline at end of file +16. Managed Dynamic Application Reload (Reloader) diff --git a/content/about/service-definition/platform.md b/content/about/service-definition/platform.md index 61a3a7b9..8096f3e8 100644 --- a/content/about/service-definition/platform.md +++ b/content/about/service-definition/platform.md @@ -52,4 +52,4 @@ All Operators listed in the Operator Hub marketplace should be available for ins ## Red Hat Operator support -Red Hat workloads typically refer to Red Hat-provided Operators made available through Operator Hub. Red Hat workloads are not managed by the Stakater SRE team, and must be deployed on worker nodes and must be managed by the customer. \ No newline at end of file +Red Hat workloads typically refer to Red Hat-provided Operators made available through Operator Hub. Red Hat workloads are not managed by the Stakater SRE team, and must be deployed on worker nodes and must be managed by the customer. diff --git a/content/about/service-definition/secrets-management.md b/content/about/service-definition/secrets-management.md index 04a4492c..e071bfdc 100644 --- a/content/about/service-definition/secrets-management.md +++ b/content/about/service-definition/secrets-management.md @@ -2,4 +2,4 @@ SAAP provides an optional integration of HashiCorp Vault which enhances the security and secrets management capabilities of the platform. -By integrating Vault, SAAP provides customers with a secure and centralized solution for storing and accessing sensitive information such as passwords, API keys, and certificates. It complements the default OpenShift secrets mechanism, providing additional features and capabilities that are critical for managing secrets in modern containerized environments. \ No newline at end of file +By integrating Vault, SAAP provides customers with a secure and centralized solution for storing and accessing sensitive information such as passwords, API keys, and certificates. It complements the default OpenShift secrets mechanism, providing additional features and capabilities that are critical for managing secrets in modern containerized environments. diff --git a/content/about/service-definition/service-mesh.md b/content/about/service-definition/service-mesh.md index 5d0a54bf..b1c3a5b5 100644 --- a/content/about/service-definition/service-mesh.md +++ b/content/about/service-definition/service-mesh.md @@ -16,4 +16,4 @@ Here's an explanation of the managed service mesh instance within SAAP: 6. Observability and Monitoring: SAAP's managed service mesh instance integrates with observability tools to provide insights into the performance and health of the microservices ecosystem. It offers monitoring and tracing functionalities, allowing organizations to track and analyze requests flowing through the service mesh, identify bottlenecks, and diagnose issues for troubleshooting and optimization. -By including a managed service mesh instance, SAAP simplifies and streamlines the deployment, management, and security of service-to-service communication within a microservices architecture. It provides a ready-to-use service mesh infrastructure that abstracts away the complexities and offers essential features for reliable, secure, and observable microservices communication. \ No newline at end of file +By including a managed service mesh instance, SAAP simplifies and streamlines the deployment, management, and security of service-to-service communication within a microservices architecture. It provides a ready-to-use service mesh infrastructure that abstracts away the complexities and offers essential features for reliable, secure, and observable microservices communication. diff --git a/mkdocs.yml b/mkdocs.yml index 04a65a99..f2c58af6 100644 --- a/mkdocs.yml +++ b/mkdocs.yml @@ -216,7 +216,6 @@ nav: - managed-addons/monitoring-stack/stack.md - managed-addons/monitoring-stack/app-uptime.md - managed-addons/monitoring-stack/app-alerts.md - - managed-addons/monitoring-stack/goldilocks.md - managed-addons/monitoring-stack/grafana-dashboard.md - managed-addons/monitoring-stack/downtime-notifications-uptimerobot.md - managed-addons/monitoring-stack/log-alerts.md From b4ea01beceeebc510c6590af77b87f602329f6f5 Mon Sep 17 00:00:00 2001 From: Rasheed Amir Date: Wed, 17 May 2023 17:08:34 +0200 Subject: [PATCH 4/5] fix lint --- content/about/service-definition/monitoring.md | 2 +- content/about/service-definition/platform.md | 2 +- content/about/service-definition/service-mesh.md | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/content/about/service-definition/monitoring.md b/content/about/service-definition/monitoring.md index 4a76c0a0..921cacea 100644 --- a/content/about/service-definition/monitoring.md +++ b/content/about/service-definition/monitoring.md @@ -12,4 +12,4 @@ SAAP provides an optional application monitoring stack based on Prometheus to mo ## Data retention -By default only 7 days data is kept; and if you want to store for long term then open a support case. +By default only 7 days data is kept; and if you want to store for long term then open a support case. diff --git a/content/about/service-definition/platform.md b/content/about/service-definition/platform.md index 8096f3e8..e14a2767 100644 --- a/content/about/service-definition/platform.md +++ b/content/about/service-definition/platform.md @@ -8,7 +8,7 @@ Node autoscaling is available on few clouds; you can find details in the relevan Customers can create and run daemonsets on SAAP. To restrict daemonsets to only running on worker nodes, use the following `nodeSelector`: -``` +```yaml ... spec: nodeSelector: diff --git a/content/about/service-definition/service-mesh.md b/content/about/service-definition/service-mesh.md index b1c3a5b5..66e56a0d 100644 --- a/content/about/service-definition/service-mesh.md +++ b/content/about/service-definition/service-mesh.md @@ -1,6 +1,6 @@ # Service Mesh -SAAP provides an optional one fully managed service mesh control instance, it means that SAAP provides a pre-configured and managed service mesh infrastructure for handling service-to-service communication within a microservices architecture. +SAAP provides an optional one fully managed service mesh control instance, it means that SAAP provides a pre-configured and managed service mesh infrastructure for handling service-to-service communication within a microservices architecture. Here's an explanation of the managed service mesh instance within SAAP: From e234c79b7043e317e73e7dc59a4fe45ba3099575 Mon Sep 17 00:00:00 2001 From: Rasheed Amir Date: Wed, 17 May 2023 17:11:13 +0200 Subject: [PATCH 5/5] fix linting --- content/about/service-definition/secrets-management.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/about/service-definition/secrets-management.md b/content/about/service-definition/secrets-management.md index e071bfdc..605ddba0 100644 --- a/content/about/service-definition/secrets-management.md +++ b/content/about/service-definition/secrets-management.md @@ -1,5 +1,5 @@ # Secrets Management -SAAP provides an optional integration of HashiCorp Vault which enhances the security and secrets management capabilities of the platform. +SAAP provides an optional integration of HashiCorp Vault which enhances the security and secrets management capabilities of the platform. By integrating Vault, SAAP provides customers with a secure and centralized solution for storing and accessing sensitive information such as passwords, API keys, and certificates. It complements the default OpenShift secrets mechanism, providing additional features and capabilities that are critical for managing secrets in modern containerized environments.