docs: Clarify that encryption should not be in reconciler pipeline

Code Issues Proposed changes

UpgradeImpact
=============
Operators should verify that encryption is not enabled in their
reconciler pipelines; having it enabled there may harm data durability.
For more information, see https://launchpad.net/bugs/1910804
Change-Id: I1a1d78ed91d940ef0b4eba186dcafd714b4fb808
Closes-Bug: #1910804

This commit is contained in:

Tim Burke

2021年01月21日 11:53:09 -08:00

committed by Clay Gerrard

parent 4ee05c5ddc

commit 13c0980e71

2 changed files with 9 additions and 2 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

5
doc/source/overview_encryption.rst

View File

@@ -781,8 +781,9 @@ encrypted.

Encryption has no impact on the `container-reconciler` service. The

`container-reconciler` uses an internal client to move objects between

different policy rings. The destination object has the same URL as the source

object and the object is moved without re-encryption.

different policy rings. The reconciler's pipeline *MUST NOT* have encryption

enabled. The destination object has the same URL as the source object and the

object is moved without re-encryption.

Considerations for developers

docs: Clarify that encryption should not be in reconciler pipeline

5 doc/source/overview_encryption.rst Unescape Escape View File

5
doc/source/overview_encryption.rst

View File