Skip to content

docs: update examples in documentation #31

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Oct 21, 2025
Merged

docs: update examples in documentation #31

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
46 changes: 35 additions & 11 deletions docs/config/dns-service-config.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -126,14 +126,13 @@ Matches all `Cluster` resources that do not have `foo` in their purpose list.

All examples below use a purpose selector that matches all `Cluster` resources which have `test` among their purposes.

###### Example 1 - Git Repo with DNS Secret
###### Example 1 - Git Repo

```yaml
apiVersion: dns.openmcp.cloud/v1alpha1
kind: DNSServiceConfig
metadata:
name: dns
namespace: openmcp-system
spec:
secretsToCopy:
toTargetCluster:
Expand All @@ -153,11 +152,19 @@ spec:
purposeSelector:
name: test
helmValues:
policy: sync
txtOwnerId: '<environment>.<cluster.namespace>.<cluster.name>'
sources:
- service
- gateway-httproute
- gateway-tlsroute
provider:
name: aws
env:
- name: AWS_DEFAULT_REGION
value: eu-central-1
- name: AWS_SHARED_CREDENTIALS_FILE
value: /.aws/credentials
extraVolumes:
- name: aws-credentials
secret:
Expand All @@ -168,6 +175,21 @@ spec:
readOnly: true
```

The AWS secret for this example is expected to look like this:
```yaml
apiVersion: v1
kind: Secret
metadata:
name: route53-access
namespace: openmcp-system
stringData:
credentials: |
[default]
aws_access_key_id=<access-key-id>
aws_secret_access_key=<secret-access-key>
type: Opaque
```

###### Example 2 - OCI Repo with Auth Secret

```yaml
Expand All @@ -178,9 +200,12 @@ metadata:
namespace: openmcp-system
spec:
secretsToCopy:
toTargetCluster:
- source:
name: route53-access
toPlatformCluster:
- source:
name: ghcr-access
name: ghcr-access # pull secret for OCI registry holding the helm chart

externalDNSSource:
oci:
Expand All @@ -192,10 +217,7 @@ spec:
name: ghcr-access

externalDNSForPurposes:
- name: test
purposeSelector:
name: test
helmValues: {}
# similar to example 1
```

###### Example 3 - Helm Repo
Expand All @@ -207,15 +229,17 @@ metadata:
name: dns
namespace: openmcp-system
spec:
secretsToCopy:
toTargetCluster:
- source:
name: route53-access

externalDNSSource:
chartName: [email protected]
helm:
url: https://kubernetes-sigs.github.io/external-dns/
interval: 1h

externalDNSForPurposes:
- name: test
purposeSelector:
name: test
helmValues: {}
# similar to example 1
```