From 80d11e66d4c7fbb4efd2f6413e9b601e94e669ba Mon Sep 17 00:00:00 2001 From: Blaine Gardner Date: Mon, 16 Dec 2024 16:08:22 -0700 Subject: [PATCH] doc: add object advanced config and vol mount example Add a sample to the CephObjectStore Advanced configuration section which shows how the new `rgwConfig` option can be used with the `additionalVolumeMounts` setting. Signed-off-by: Blaine Gardner (cherry picked from commit c845d36b2089e055f89370e8b341823d323da2f4) --- .../Object-Storage/ceph-object-store-crd.md | 30 +++++++++++++++++++ 1 file changed, 30 insertions(+) diff --git a/Documentation/CRDs/Object-Storage/ceph-object-store-crd.md b/Documentation/CRDs/Object-Storage/ceph-object-store-crd.md index ec1f60a4f242..3ff43d5fa68b 100644 --- a/Documentation/CRDs/Object-Storage/ceph-object-store-crd.md +++ b/Documentation/CRDs/Object-Storage/ceph-object-store-crd.md @@ -407,6 +407,36 @@ spec: Once RGW debug logging is no longer needed, the values can simply be removed from the spec. +### Example - usage with `additionalVolumeMounts` + +This sample configuration below demonstrates how advanced configuration can be used alongside +`additionalVolumeMounts`. This hypothetical scenario shows how a Kubernetes secret containing an +LDAP secret might be mounted to the RGW pod and how RGW would be configured to reference the mounted +secret file. + +```yaml + # ... + gateway: + # ... + rgwConfig: + rgw_ldap_secret: /var/rgw/ldap/bindpass.secret + additionalVolumeMounts: + - subPath: ldap + volumeSource: + secret: + secretName: rgw-ldap + defaultMode: 0600 +--- +apiVersion: v1 +kind: Secret +metadata: + name: rgw-ldap + namespace: rook-ceph +type: Opaque +data: + "bindpass.secret": aGVsbG8ud29ybGQK # hello.world +``` + ## Deleting a CephObjectStore During deletion of a CephObjectStore resource, Rook protects against accidental or premature