Merge pull request #44732 from rh-max/srvls-fix-ossm-attribute-usage-2

More OSSM attribute fixes in Serverless docs

Author: kalexand-rh

modules/serverless-ossm-enable-sidecar-injection-with-kourier.adoc

@@ -13,7 +13,7 @@ You can add the `sidecar.istio.io/inject="true"` annotation to a Knative service
 Adding sidecar injection to pods in system namespaces, such as `knative-serving` and `knative-serving-ingress`, is not supported when Kourier is enabled.
 
 ifdef::openshift-enterprise[]
-If you require sidecar injection for pods in these namespaces, see the {ServerlessProductName} documentation on _Integrating {ProductShortName} with {ServerlessProductName} natively_.
+If you require sidecar injection for pods in these namespaces, see the {ServerlessProductName} documentation on _Integrating {SMProductShortName} with {ServerlessProductName} natively_.
 endif::[]
 ====
 

modules/serverlesss-ossm-external-certs.adoc renamed to modules/serverless-ossm-external-certs.adoc

@@ -6,7 +6,7 @@
 [id="serverlesss-ossm-external-certs_{context}"]
 = Creating a certificate to encrypt incoming external traffic
 
-By default, the {ProductShortName} mTLS feature only secures traffic inside of the {ProductShortName} itself, between the ingress gateway and individual pods that have sidecars. To encrypt traffic as it flows into the {product-title} cluster, you must generate a certificate before you enable the {ServerlessProductName} and {ProductShortName} integration.
+By default, the {SMProductShortName} mTLS feature only secures traffic inside of the {SMProductShortName} itself, between the ingress gateway and individual pods that have sidecars. To encrypt traffic as it flows into the {product-title} cluster, you must generate a certificate before you enable the {ServerlessProductName} and {SMProductShortName} integration.
 
 .Prerequisites
 
@@ -61,4 +61,4 @@ $ oc create -n istio-system secret tls wildcard-certs \
     --cert=wildcard.crt
 ----
 +
-This certificate is picked up by the gateways created when you integrate {ServerlessProductName} with {ProductShortName}, so that the ingress gateway serves traffic with this certificate.
+This certificate is picked up by the gateways created when you integrate {ServerlessProductName} with {SMProductShortName}, so that the ingress gateway serves traffic with this certificate.

modules/serverless-ossm-setup-with-kourier.adoc

@@ -4,7 +4,7 @@
 
 :_content-type: PROCEDURE
 [id="serverless-ossm-setup-with-kourier_{context}"]
-= Integrating {ProductShortName} with {ServerlessProductName} when Kourier is enabled
+= Integrating {SMProductShortName} with {ServerlessProductName} when Kourier is enabled
 
 .Prerequisites
 
@@ -23,7 +23,7 @@ endif::[]
 
 .Procedure
 
-. Add the namespaces that you would like to integrate with {ProductShortName} to the `ServiceMeshMemberRoll` object as members:
+. Add the namespaces that you would like to integrate with {SMProductShortName} to the `ServiceMeshMemberRoll` object as members:
 +
 [source,yaml]
 ----
@@ -37,7 +37,7 @@ spec:
     - <namespace> <1>
 ...
 ----
-<1> A list of namespaces to be integrated with {ProductShortName}.
+<1> A list of namespaces to be integrated with {SMProductShortName}.
 . Apply the `ServiceMeshMemberRoll` resource:
 +
 [source,terminal]
@@ -58,7 +58,7 @@ $ oc label namespace knative-serving serving.knative.openshift.io/system-namespa
 ----
 $ oc label namespace knative-serving-ingress serving.knative.openshift.io/system-namespace=true
 ----
-.. For each namespace that you want to integrate with {ProductShortName}, create a `NetworkPolicy` resource:
+.. For each namespace that you want to integrate with {SMProductShortName}, create a `NetworkPolicy` resource:
 +
 [source,yaml]
 ----
@@ -78,7 +78,7 @@ spec:
   - Ingress
 ...
 ----
-<1> Add the namespace that you want to integrate with {ProductShortName}.
+<1> Add the namespace that you want to integrate with {SMProductShortName}.
 .. Apply the `NetworkPolicy` resource:
 +
 [source,terminal]

modules/serverless-ossm-setup.adoc

@@ -4,9 +4,9 @@
 
 :_content-type: PROCEDURE
 [id="serverless-ossm-setup_{context}"]
-= Integrating {ProductShortName} with {ServerlessProductName}
+= Integrating {SMProductShortName} with {ServerlessProductName}
 
-You can integrate {ProductShortName} with {ServerlessProductName} without using Kourier by completing the following procedure.
+You can integrate {SMProductShortName} with {ServerlessProductName} without using Kourier by completing the following procedure.
 
 .Prerequisites
 
@@ -24,7 +24,7 @@ endif::[]
 +
 [IMPORTANT]
 ====
-Do not install the Knative Serving component before completing the following procedures. There are additional steps required when creating the `KnativeServing` custom resource defintion (CRD) to integrate Knative Serving with {ProductShortName}, which are not covered in the general Knative Serving installation procedure of the _Administration guide_.
+Do not install the Knative Serving component before completing the following procedures. There are additional steps required when creating the `KnativeServing` custom resource defintion (CRD) to integrate Knative Serving with {SMProductShortName}, which are not covered in the general Knative Serving installation procedure of the _Administration guide_.
 ====
 * Install the OpenShift CLI (`oc`).
 * You have created a project or have access to a project with the appropriate roles and permissions to create applications and other workloads in {product-title}.
@@ -33,7 +33,7 @@ Do not install the Knative Serving component before completing the following pro
 
 . Create a `ServiceMeshControlPlane` object in the `istio-system` namespace. If you want to use the mTLS functionality, this must be enabled for the `istio-system` namespace.
 
-. Add the namespaces that you would like to integrate with {ProductShortName} to the `ServiceMeshMemberRoll` object as members:
+. Add the namespaces that you would like to integrate with {SMProductShortName} to the `ServiceMeshMemberRoll` object as members:
 +
 [source,yaml]
 ----
@@ -47,7 +47,7 @@ spec:
     - knative-serving
     - <namespace>
 ----
-<1> A list of namespaces to be integrated with {ProductShortName}.
+<1> A list of namespaces to be integrated with {SMProductShortName}.
 +
 [IMPORTANT]
 ====
@@ -61,7 +61,7 @@ This list of namespaces must include the `knative-serving` namespace.
 $ oc apply -f <filename>
 ----
 
-. Create the necessary gateways so that {ProductShortName} can accept traffic:
+. Create the necessary gateways so that {SMProductShortName} can accept traffic:
 +
 .Example `knative-local-gateway` object using HTTP
 [source,yaml]
@@ -118,7 +118,7 @@ spec:
      targetPort: 8081
 ----
 <1> Add the name of your wildcard certificate.
-<2> The `knative-local-gateway` serves HTTP traffic. Using HTTP means that traffic coming from outside of {ProductShortName}, but using an internal hostname, such as `example.default.svc.cluster.local`, is not encrypted. You can set up encryption for this path by creating another wildcard certificate and an additional gateway that uses a different `protocol` spec.
+<2> The `knative-local-gateway` serves HTTP traffic. Using HTTP means that traffic coming from outside of {SMProductShortName}, but using an internal hostname, such as `example.default.svc.cluster.local`, is not encrypted. You can set up encryption for this path by creating another wildcard certificate and an additional gateway that uses a different `protocol` spec.
 +
 .Example `knative-local-gateway` object using HTTPS
 [source,yaml]
@@ -206,7 +206,7 @@ spec:
 ----
 <1> A namespace that is part of the Service Mesh member roll.
 <2> Instructs Knative Serving to generate an {product-title} pass-through enabled route, so that the certificates you have generated are served through the ingress gateway directly.
-<3> Injects {ProductShortName} sidecars into the Knative service pods.
+<3> Injects {SMProductShortName} sidecars into the Knative service pods.
 
 . Apply the `Service` resource:
 +

modules/serverless-ossm-v1x-jwt.adoc

@@ -4,9 +4,9 @@
 
 :_content-type: PROCEDURE
 [id="serverless-ossm-v1x-jwt_{context}"]
-= Using JSON Web Token authentication with {ProductShortName} 1.x and {ServerlessProductName}
+= Using JSON Web Token authentication with {SMProductShortName} 1.x and {ServerlessProductName}
 
-You can use the following procedure to enable using JSON Web Token authentication with {ProductShortName} 1.x and {ServerlessProductName}.
+You can use the following procedure to enable using JSON Web Token authentication with {SMProductShortName} 1.x and {ServerlessProductName}.
 
 .Prerequisites
 

modules/serverless-ossm-v2x-jwt.adoc

@@ -4,9 +4,9 @@
 
 :_content-type: PROCEDURE
 [id="serverless-ossm-v2x-jwt_{context}"]
-= Using JSON Web Token authentication with {ProductShortName} 2.x and {ServerlessProductName}
+= Using JSON Web Token authentication with {SMProductShortName} 2.x and {ServerlessProductName}
 
-You can use the following procedure to enable using JSON Web Token authentication with {ProductShortName} 2.x and {ServerlessProductName}.
+You can use the following procedure to enable using JSON Web Token authentication with {SMProductShortName} 2.x and {ServerlessProductName}.
 
 .Prerequisites
 

serverless/admin_guide/serverless-ossm-setup.adoc

@@ -29,7 +29,7 @@ You must configure the wildcard certificate to match the domain of your {product
 
 If you want to use any domain name, including those which are not subdomains of the default {product-title} cluster domain, you must set up domain mapping for those domains. For more information, see the {ServerlessProductName} documentation about xref:../../serverless/security/serverless-custom-domains.adoc#serverless-create-domain-mapping_serverless-custom-domains[Creating a custom domain mapping].
 
-include::modules/serverlesss-ossm-external-certs.adoc[leveloffset=+2]
+include::modules/serverless-ossm-external-certs.adoc[leveloffset=+2]
 include::modules/serverless-ossm-setup.adoc[leveloffset=+2]
 include::modules/serverless-ossm-enabling-serving-metrics.adoc[leveloffset=+2]