Apply review comments

dwdougherty · dwdougherty · commit 6e2740df33be · 2024-12-20T06:39:11.000-08:00
diff --git a/content/integrate/redis-data-integration/data-pipelines/deploy.md b/content/integrate/redis-data-integration/data-pipelines/deploy.md
@@ -77,18 +77,36 @@ Where `<DB>` is either `source-db` for source secrets or `target-db` for target
 The specific command lines for source secrets are as follows:
 
 ```bash
-# Source username
+# Without source TLS
+# Create or update source-db secret
 kubectl create secret generic source-db --namespace=rdi \
 --from-literal=SOURCE_DB_USERNAME=yourUsername \
 --from-literal=SOURCE_DB_PASSWORD=yourPassword \
 --save-config --dry-run=client -o yaml | kubectl apply -f -
 
-# Source TLS
+# With source TLS
+# Create of update source-db secret
+kubectl create secret generic source-db --namespace=rdi \
+--from-literal=SOURCE_DB_USERNAME=yourUsername \
+--from-literal=SOURCE_DB_PASSWORD=yourPassword \
+--from-literal=SOURCE_DB_CACERT=/etc/certificates/source_db/ca.crt \
+--save-config --dry-run=client -o yaml | kubectl apply -f -
+# Create or update source-db-ssl secret
 kubectl create secret generic source-db-ssl --namespace=rdi \
 --from-file=ca.crt=/path/to/myca.crt \
 --save-config --dry-run=client -o yaml | kubectl apply -f -
 
-# Source mTLS
+# With source mTLS
+# Create or update source-db secret
+kubectl create secret generic source-db --namespace=rdi \
+--from-literal=SOURCE_DB_USERNAME=yourUsername \
+--from-literal=SOURCE_DB_PASSWORD=yourPassword \
+--from-literal=SOURCE_DB_CACERT=/etc/certificates/source_db/ca.crt \
+--from-literal=SOURCE_DB_CERT=/etc/certificates/source_db/client.crt \ 
+--from-literal=SOURCE_DB_KEY=/etc/certificates/source_db/client.key \
+--from-literal=SOURCE_DB_KEY_PASSWORD=yourKeyPassword \ # add this only if SOURCE_DB_KEY is password-protected
+--save-config --dry-run=client -o yaml | kubectl apply -f -
+# Create or update source-db-ssl secret
 kubectl create secret generic source-db-ssl --namespace=rdi \
 --from-file=ca.crt=/path/to/myca.crt \
 --from-file=client.crt=/path/to/myclient.crt \
@@ -99,18 +117,36 @@ kubectl create secret generic source-db-ssl --namespace=rdi \
 The corresponding command lines for target secrets are:
 
 ```bash
-# Target credentials
+# Without target TLS
+# Create or update target-db secret
 kubectl create secret generic target-db --namespace=rdi \
 --from-literal=TARGET_DB_USERNAME=yourUsername \
 --from-literal=TARGET_DB_PASSWORD=yourPassword \
 --save-config --dry-run=client -o yaml | kubectl apply -f -
 
-# Target TLS
+# With target TLS
+# Create of update target-db secret
+kubectl create secret generic target-db --namespace=rdi \
+--from-literal=TARGET_DB_USERNAME=yourUsername \
+--from-literal=TARGET_DB_PASSWORD=yourPassword \
+--from-literal=TARGET_DB_CACERT=/etc/certificates/target_db/ca.crt \
+--save-config --dry-run=client -o yaml | kubectl apply -f -
+# Create or update target-db-ssl secret
 kubectl create secret generic target-db-ssl --namespace=rdi \
 --from-file=ca.crt=/path/to/myca.crt \
 --save-config --dry-run=client -o yaml | kubectl apply -f -
 
-# Target mTLS
+# With target mTLS
+# Create or update target-db secret
+kubectl create secret generic target-db --namespace=rdi \
+--from-literal=TARGET_DB_USERNAME=yourUsername \
+--from-literal=TARGET_DB_PASSWORD=yourPassword \
+--from-literal=TARGET_DB_CACERT=/etc/certificates/target_db/ca.crt \
+--from-literal=TARGET_DB_CERT=/etc/certificates/target_db/client.crt \ 
+--from-literal=TARGET_DB_KEY=/etc/certificates/target_db/client.key \
+--from-literal=TARGET_DB_KEY_PASSWORD=yourKeyPassword \ # add this only if TARGET_DB_KEY is password-protected
+--save-config --dry-run=client -o yaml | kubectl apply -f -
+# Create or update target-db-ssl secret
 kubectl create secret generic target-db-ssl --namespace=rdi \
 --from-file=ca.crt=/path/to/myca.crt \
 --from-file=client.crt=/path/to/myclient.crt \
