DOCS-2549: Update CC L7 logs to use deployment-patch method

[ctauchen]

Summary

• Replace outdated service-annotation method (kubectl annotate svc) with the deployment-patch approach (kubectl patch deployment) matching CE 3.22-2
• Add comprehensive limitations: service mesh incompatibility, K8s 1.29+ requirement, pod restart warning, and log storage note
• Add quickstart walkthrough using Google Microservices Demo with enable/disable patch commands
• Improve heading hierarchy from bold-text headings to proper markdown headings

Test plan

• yarn build passes with no errors
• Verify rendered page at /calico-cloud/observability/elastic/l7/configure
• Confirm internal links resolve correctly (Log Storage, Felix Configuration, ApplicationLayer API ref)

🤖 Generated with Claude Code

[netlify]

❌ Deploy Preview for calico-docs-preview-next failed. Why did it fail? →

Name	Link
🔨 Latest commit	415e8fa
🔍 Latest deploy log	https://app.netlify.com/projects/calico-docs-preview-next/deploys/69b0506a4f98ce0008e84934

[netlify]

✅ Deploy Preview succeeded!

Built without sensitive environment variables

Name	Link
🔨 Latest commit	415e8fa
🔍 Latest deploy log	https://app.netlify.com/projects/tigera/deploys/69b0506a681ed1000816828f
😎 Deploy Preview	https://deploy-preview-2582--tigera.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
Lighthouse	1 paths audited Performance: 68 (🔴 down 3 from production) Accessibility: 98 (no change from production) Best Practices: 92 (no change from production) SEO: 100 (no change from production) PWA: - View the detailed breakdown and full score reports

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[Copilot]

Pull request overview

Updates the Calico Cloud “Configure L7 logs” documentation to align with the newer deployment-patch workflow (instead of service annotations), while expanding prerequisites/limitations and adding a quickstart example.

Changes:

• Replaces the service-annotation enable/disable instructions with kubectl patch deployment examples.
• Adds/expands limitations and operational notes (mesh incompatibility, K8s version requirement, pod restarts, storage impact).
• Improves section structure by converting bold “headings” into proper Markdown headings and adding a quickstart walkthrough.

[Copilot]

The disable command kubectl patch deployment frontend --type='json' ... also omits -n <namespace>, even though the preceding note says to use it for non-default installs. Please include the namespace flag here as well (or explicitly state these commands assume the default namespace).

[Copilot]

The "Log Storage" link target appears to be invalid in Calico Cloud docs: calico-cloud/operations/logstorage/adjust-log-storage-size.mdx doesn't exist (there is no operations/logstorage/ section under calico-cloud/operations/). Please update this to an existing Calico Cloud page (or a stable cross-link that exists in this doc set), otherwise the rendered page will contain a broken link.

Suggested change

	L7 logs require a minimum of 1 additional GB of log storage per node, per one-day retention period. Adjust your [Log Storage](../../../operations/logstorage/adjust-log-storage-size.mdx) before you start tasks in the next section.
	L7 logs require a minimum of 1 additional GB of log storage per node, per one-day retention period. Adjust your [Log Storage](../../../operations/) before you start tasks in the next section.

[Copilot]

This heading is still using bold text (**Not supported**) rather than a Markdown heading, which is inconsistent with the rest of the page after the heading-hierarchy updates. Consider converting it to a proper heading (for example ### Not supported) so it appears in the TOC and has consistent styling.

Suggested change

	**Not supported**
	### Not supported

[Copilot]

The explanatory sentence starts with lowercase "without"/"if" and reads like a run-on sentence. Please capitalize and split into clearer sentences (and consider calling out explicitly that subsequent commands need -n <namespace> if not using default).

Suggested change

	without the `-n <namespace>` flag, it is going to be installed in the `default` namespace. if you wish to install in a different namespace, specify the `-n <namespace>` flag on all other commands in this tutorial from this point on.
	Without the `-n <namespace>` flag, this command installs the demo in the `default` namespace. If you want to use a different namespace, add the `-n <namespace>` flag to this command and to all subsequent `kubectl` commands in this tutorial.

[Copilot]

This quickstart notes using -n <namespace> when not installing into default, but the kubectl patch deployment frontend ... example doesn’t include a namespace. Please add -n <namespace> (or explicitly state the command assumes default) to prevent users patching the wrong deployment or hitting "not found" errors.

[Copilot]

The ordered list explaining the patch is hard to read and has grammar issues (e.g., "ensures pods ... has" and lowercase sentence starts). Consider rewriting to refer to the Deployment's pod template (singular) and capitalizing the list items so the explanation is unambiguous.

Suggested change

	The above command applies the following patch:
	1. ensures pods in your `frontend` deployment pod template spec has the label `applicationlayer.projectcalico.org/sidecar: true`
	1. ensures pods in your `frontend` deployment pod template spec has the following annotations:
	- `applicationlayer.projectcalico.org/logging: Enabled`
	The above command patches the `frontend` Deployment's pod template to:
	1. Add the label `applicationlayer.projectcalico.org/sidecar: true`.
	1. Add the annotation `applicationlayer.projectcalico.org/logging: Enabled`.

[Copilot]

If the demo is installed into a non-default namespace, kubectl rollout status deployment frontend also needs -n <namespace> to match the earlier guidance. Please update the example (or state it assumes default).