|
| 1 | +// Module included in the following assemblies: |
| 2 | +// |
| 3 | +// * architecture/index.adoc |
| 4 | + |
| 5 | +:_content-type: REFERENCE |
| 6 | +[id="openshift-architecture-common-terms_{context}"] |
| 7 | += Common terms |
| 8 | + |
| 9 | +This glossary defines common terms that are used in the architecture content. These terms help you understand {product-title} architecture effectively. |
| 10 | + |
| 11 | +access policies:: |
| 12 | +A set of roles that dictate how users, applications, and entities within a cluster interacts with one another. An access policy increases cluster security. |
| 13 | + |
| 14 | +admission plug-ins:: |
| 15 | +Admission plug-ins enforce security policies, resource limitations, or configuration requirements. |
| 16 | + |
| 17 | +authentication:: |
| 18 | +To control access to an {product-title} cluster, a cluster administrator can configure user authentication and ensure only approved users access the cluster. To interact with an {product-title} cluster, you must authenticate to the {product-title} API. You can authenticate by providing an OAuth access token or an X.509 client certificate in your requests to the {product-title} API. |
| 19 | + |
| 20 | +bootstrap:: |
| 21 | +A temporary machine that runs minimal Kubernetes and deploys the {product-title} control plane. |
| 22 | + |
| 23 | +certificate signing requests (CSRs):: |
| 24 | +A resource requests a denoted signer to sign a certificate. This request might get approved or denied. |
| 25 | + |
| 26 | +Cluster Version Operator (CVO):: |
| 27 | +An Operator that checks with the {product-title} Update Service to see the valid updates and update paths based on current component versions and information in the graph. |
| 28 | + |
| 29 | +compute nodes:: |
| 30 | +Nodes that are responsible for executing workloads for cluster users. Compute nodes are also known as worker nodes. |
| 31 | + |
| 32 | +configuration drift:: |
| 33 | +A situation where the configuration on a node does not match what the machine config specifies. |
| 34 | + |
| 35 | +containers:: |
| 36 | +Lightweight and executable images that consist software and all its dependencies. Because containers virtualize the operating system, you can run containers anywhere, from a data center to a public or private cloud to your local host. |
| 37 | + |
| 38 | +container orchestration engine:: |
| 39 | +Software that automates the deployment, management, scaling, and networking of containers. |
| 40 | + |
| 41 | +container workloads:: |
| 42 | +Applications that are packaged and deployed in containers. |
| 43 | + |
| 44 | +control groups (cgroups):: |
| 45 | +Partitions sets of processes into groups to manage and limit the resources processes consume. |
| 46 | + |
| 47 | +control plane:: |
| 48 | +A container orchestration layer that exposes the API and interfaces to define, deploy, and manage the life cycle of containers. Control planes are also known as control plane machines. |
| 49 | + |
| 50 | +CRI-O:: |
| 51 | +A Kubernetes native container runtime implementation that integrates with the operating system to deliver an efficient Kubernetes experience. |
| 52 | + |
| 53 | +deployment:: |
| 54 | +A Kubernetes resource object that maintains the life cycle of an application. |
| 55 | + |
| 56 | +Dockerfile:: |
| 57 | +A text file that contains the user commands to perform on a terminal to assemble the image. |
| 58 | + |
| 59 | +hosted control planes:: |
| 60 | +A {product-title} feature that enables hosting a control plane on the {product-title} cluster from its data plane and workers. This model performs following actions: |
| 61 | + |
| 62 | +* Optimize infrastructure costs required for the control planes. |
| 63 | +* Improve the cluster creation time. |
| 64 | +* Enable hosting the control plane using the Kubernetes native high level primitives. For example, deployments, stateful sets. |
| 65 | +* Allow a strong network segmentation between the control plane and workloads. |
| 66 | +
|
| 67 | +hybrid cloud deployments:: |
| 68 | +Deployments that deliver a consistent platform across bare metal, virtual, private, and public cloud environments. This offers speed, agility, and portability. |
| 69 | + |
| 70 | +Ignition:: |
| 71 | +A utility that {op-system} uses to manipulate disks during initial configuration. It completes common disk tasks, including partitioning disks, formatting partitions, writing files, and configuring users. |
| 72 | + |
| 73 | +installer-provisioned infrastructure:: |
| 74 | +The installation program deploys and configures the infrastructure that the cluster runs on. |
| 75 | + |
| 76 | +kubelet:: |
| 77 | +A primary node agent that runs on each node in the cluster to ensure that containers are running in a pod. |
| 78 | + |
| 79 | +kubernetes manifest:: |
| 80 | +Specifications of a Kubernetes API object in a JSON or YAML format. A configuration file can include deployments, config maps, secrets, daemon sets. |
| 81 | + |
| 82 | +Machine Config Daemon (MCD):: |
| 83 | +A daemon that regularly checks the nodes for configuration drift. |
| 84 | + |
| 85 | +Machine Config Operator (MCO):: |
| 86 | +An Operator that applies the new configuration to your cluster machines. |
| 87 | + |
| 88 | +machine config pools (MCP):: |
| 89 | +A group of machines, such as control plane components or user workloads, that are based on the resources that they handle. |
| 90 | + |
| 91 | +metadata:: |
| 92 | +Additional information about cluster deployment artifacts. |
| 93 | + |
| 94 | +microservices:: |
| 95 | +An approach to writing software. Applications can be separated into the smallest components, independent from each other by using microservices. |
| 96 | + |
| 97 | +mirror registry:: |
| 98 | +A registry that holds the mirror of {product-title} images. |
| 99 | + |
| 100 | +monolithic applications:: |
| 101 | +Applications that are self-contained, built, and packaged as a single piece. |
| 102 | + |
| 103 | +namespaces:: |
| 104 | +A namespace isolates specific system resources that are visible to all processes. Inside a namespace, only processes that are members of that namespace can see those resources. |
| 105 | + |
| 106 | +networking:: |
| 107 | +Network information of {product-title} cluster. |
| 108 | + |
| 109 | +node:: |
| 110 | +A worker machine in the {product-title} cluster. A node is either a virtual machine (VM) or a physical machine. |
| 111 | + |
| 112 | +{product-title} Update Service (OSUS):: |
| 113 | +For clusters with internet access, {op-system-base-full} provides over-the-air updates by using an {product-title} update service as a hosted service located behind public APIs. |
| 114 | + |
| 115 | +OpenShift CLI (`oc`):: |
| 116 | +A command line tool to run {product-title} commands on the terminal. |
| 117 | + |
| 118 | +OpenShift Dedicated:: |
| 119 | +A managed {op-system-base} {product-title} offering on Amazon Web Services (AWS) and Google Cloud Platform (GCP). OpenShift Dedicated focuses on building and scaling applications. |
| 120 | + |
| 121 | +{product-title} registry:: |
| 122 | +A registry provided by {product-title} to manage images. |
| 123 | + |
| 124 | +Operator:: |
| 125 | +The preferred method of packaging, deploying, and managing a Kubernetes application in an {product-title} cluster. An Operator takes human operational knowledge and encodes it into software that is packaged and shared with customers. |
| 126 | + |
| 127 | +OperatorHub:: |
| 128 | +A platform that contains various {product-title} Operators to install. |
| 129 | + |
| 130 | +Operator Lifecycle Manager (OLM):: |
| 131 | +OLM helps you to install, update, and manage the lifecycle of Kubernetes native applications. OLM is an open source toolkit designed to manage Operators in an effective, automated, and scalable way. |
| 132 | + |
| 133 | +over-the-air (OTA) updates:: |
| 134 | +The {product-title} Update Service (OSUS) provides over-the-air updates to {product-title}, including {op-system-first}. |
| 135 | + |
| 136 | +pod:: |
| 137 | +One or more containers with shared resources, such as volume and IP addresses, running in your {product-title} cluster. |
| 138 | +A pod is the smallest compute unit defined, deployed, and managed. |
| 139 | + |
| 140 | +private registry:: |
| 141 | +{product-title} can use any server implementing the container image registry API as a source of the image which allows the developers to push and pull their private container images. |
| 142 | + |
| 143 | +public registry:: |
| 144 | +{product-title} can use any server implementing the container image registry API as a source of the the image which allows the developers to push and pull their public container images. |
| 145 | + |
| 146 | +{op-system-base} {product-title} Cluster Manager:: |
| 147 | +A managed service where you can install, modify, operate, and upgrade your {product-title} clusters. |
| 148 | + |
| 149 | +{op-system-base} Quay Container Registry:: |
| 150 | +A Quay.io container registry that serves most of the container images and Operators to {product-title} clusters. |
| 151 | + |
| 152 | +replication controllers:: |
| 153 | +An asset that indicates how many pod replicas are required to run at a time. |
| 154 | + |
| 155 | +role-based access control (RBAC):: |
| 156 | +A key security control to ensure that cluster users and workloads have only access to resources required to execute their roles. |
| 157 | + |
| 158 | +route:: |
| 159 | +Routes expose a service to allow for network access to pods from users and applications outside the {product-title} instance. |
| 160 | + |
| 161 | +scaling:: |
| 162 | +The increasing or decreasing of resource capacity. |
| 163 | + |
| 164 | +service:: |
| 165 | +A service exposes a running application on a set of pods. |
| 166 | + |
| 167 | +Source-to-Image (S2I) image:: |
| 168 | +An image created based on the programming language of the application source code in {product-title} to deploy applications. |
| 169 | + |
| 170 | +storage:: |
| 171 | +{product-title} supports many types of storage, both for on-premise and cloud providers. You can manage container storage for persistent and non-persistent data in an {product-title} cluster. |
| 172 | + |
| 173 | +Telemetry:: |
| 174 | +A component to collect information such as size, health, and status of {product-title}. |
| 175 | + |
| 176 | +template:: |
| 177 | +A template describes a set of objects that can be parameterized and processed to produce a list of objects for creation by {product-title}. |
| 178 | + |
| 179 | +user-provisioned infrastructure:: |
| 180 | +You can install {product-title} on the infrastructure that you provide. You can use the installation program to generate the assets required to provision the cluster infrastructure, create the cluster infrastructure, and then deploy the cluster to the infrastructure that you provided. |
| 181 | + |
| 182 | +web console:: |
| 183 | +A user interface (UI) to manage {product-title}. |
| 184 | + |
| 185 | +worker node:: |
| 186 | +Nodes that are responsible for executing workloads for cluster users. Worker nodes are also known as compute nodes. |
0 commit comments