Update documentation

oracle · Aug 23, 2021 · 30878ab · 30878ab
1 parent 066ed6d
commit 30878ab
Show file tree

Hide file tree

Showing 16 changed files with 46 additions and 16 deletions.
diff --git a/documentation/3.3/content/_index.md b/documentation/3.3/content/_index.md
@@ -30,8 +30,8 @@ using the operator to deploy and run a WebLogic domain container-packaged web ap
 ***
 #### Current production release
 
-The [current release of the operator](https://github.com/oracle/weblogic-kubernetes-operator/releases) is 3.3.0.
-This release was published on July 20, 2021. See the [operator prerequisites]({{< relref "/userguide/prerequisites/introduction.md" >}}) and [supported environments]({{< relref "/userguide/platforms/environments.md" >}}).
+The [current release of the operator](https://github.com/oracle/weblogic-kubernetes-operator/releases) is 3.3.1.
+This release was published on August 23, 2021. See the [operator prerequisites]({{< relref "/userguide/prerequisites/introduction.md" >}}) and [supported environments]({{< relref "/userguide/platforms/environments.md" >}}).
 
 ***
 

diff --git a/documentation/3.3/content/faq/namespace-management.md b/documentation/3.3/content/faq/namespace-management.md
@@ -45,7 +45,7 @@ elkIntegrationEnabled: false
 externalDebugHttpPort: 30999
 externalRestEnabled: false
 externalRestHttpsPort: 31001
-image: ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0
+image: ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1
 imagePullPolicy: IfNotPresent
 internalDebugHttpPort: 30999
 javaLoggingLevel: INFO

diff --git a/documentation/3.3/content/faq/security-validation.md b/documentation/3.3/content/faq/security-validation.md
@@ -0,0 +1,23 @@
+---
+title: "Handling security validations"
+date: 2020-06-30T08:55:00-05:00
+draft: false
+weight: 14
+description: "Why am I seeing these security warnings?"
+---
+
+> After applying the July2021 PSU, I'm now seeing security warnings, such as:
+>
+> Description: Production Mode is enabled but user lockout settings are not secure in realm: myrealm, i.e. LockoutThreshold should not be greater than 5, LockoutDuration should not be less than 30.
+>
+> SOLUTION: Update the user lockout settings (LockoutThreshold, LockoutDuration) to be secure.
+
+WebLogic Server has a new, important feature to ensure and help you secure your WLS domains when running in production. With the July 2021 PSU applied, WebLogic Server regularly validates your domain configuration settings against a set of security configuration guidelines to determine whether the domain meets key security guidelines recommended by Oracle. For more information and additional details, see [MOS Doc 2788605.1](https://support.oracle.com/rs?type=doc&id=2788605.1) "WebLogic Server Security Warnings Displayed Through the Admin Console" and [Review Potential Security Issues](https://docs.oracle.com/en/middleware/fusion-middleware/weblogic-server/12.2.1.4/lockd/secure.html#GUID-4148D1BE-2D54-4DA5-8E94-A35D48DCEF1D) in _Securing a Production Environment for Oracle WebLogic Server_.
+
+Warnings may be at the level of the JDK, or that SSL is not enabled. Some warnings may recommend updating your WebLogic configuration. You can make the recommended configuration changes using an approach that depends on your [domain home source type]({{< relref "/userguide/managing-domains/choosing-a-model/_index.md" >}}):
+
+- For Domain in PV, use the WebLogic Scripting Tool (WLST), WebLogic Server Administration Console, WebLogic Deploy Tooling (WDT), or [configuration overrides]({{< relref "/userguide/managing-domains/configoverrides/_index.md" >}}).
+
+- For Domain in Image, create a new image with the recommended changes or use [configuration overrides]({{< relref "/userguide/managing-domains/configoverrides/_index.md" >}}).
+
+- For Model in Image, supply model files with the recommended changes in its image's `modelHome` directory or use [runtime updates]({{< relref "/userguide/managing-domains/model-in-image/runtime-updates.md" >}}).
diff --git a/documentation/3.3/content/quickstart/get-images.md b/documentation/3.3/content/quickstart/get-images.md
@@ -10,7 +10,7 @@ weight: 3
 1. Pull the operator image:
 
     ```shell
-    $ docker pull ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0
+    $ docker pull ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1
     ```
 
 1. Pull the Traefik ingress controller image:

diff --git a/documentation/3.3/content/quickstart/install.md b/documentation/3.3/content/quickstart/install.md
@@ -50,7 +50,7 @@ $ helm install traefik-operator traefik/traefik \
     ```shell
     $ helm install sample-weblogic-operator kubernetes/charts/weblogic-operator \
       --namespace sample-weblogic-operator-ns \
-      --set image=ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0 \
+      --set image=ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1 \
       --set serviceAccount=sample-weblogic-operator-sa \
       --set "enableClusterRoleBinding=true" \
       --set "domainNamespaceSelectionStrategy=LabelSelector" \

diff --git a/documentation/3.3/content/release-notes.md b/documentation/3.3/content/release-notes.md
@@ -8,6 +8,7 @@ draft: false
 
 | Date | Version | Introduces backward incompatibilities? | Change |
 | --- | --- | --- | --- |
+| August 23, 2021 | v3.3.1 | no | Resolved an issue related to managed Coherence cluster formation when using Istio and another issue related to Secret and ConfigMap validation. |
 | July 20, 2021 | v3.3.0 | no | Auxiliary image support. |
 | June 21, 2021 | v3.2.5 | no | Updated Oracle Linux libraries and resolved an issue related to repeated introspection. |
 | June 18, 2021 | v3.2.4 | no | Resolved several issues related to Istio, diagnostics, and recovery. |
@@ -43,6 +44,12 @@ draft: false
 
 ### Change log
 
+#### Operator 3.3.1
+
+* Resolved an issue related to managed Coherence cluster formation when using Istio ([#2499](https://github.com/oracle/weblogic-kubernetes-operator/pull/2499)).
+* Resolved an issue related to generating the internal certificate when using Istio ([#2486](https://github.com/oracle/weblogic-kubernetes-operator/pull/2486)).
+* Resolved an issue related to validating Secrets and ConfigMaps referenced by a Domain when the namespace has a larger number of such resources ([#2500](https://github.com/oracle/weblogic-kubernetes-operator/pull/2500)).
+
 #### Operator 3.3.0
 
 * [Auxiliary images support](https://oracle.github.io/weblogic-kubernetes-operator/userguide/managing-domains/model-in-image/auxiliary-images/).

diff --git a/documentation/3.3/content/samples/azure-kubernetes-service/domain-on-pv.md b/documentation/3.3/content/samples/azure-kubernetes-service/domain-on-pv.md
@@ -29,7 +29,7 @@ This sample demonstrates how to use the [WebLogic Kubernetes Operator](/weblogic
 Clone the [WebLogic Kubernetes Operator repository](https://github.com/oracle/weblogic-kubernetes-operator) to your machine. We will use several scripts in this repository to create a WebLogic domain. This sample was tested with v3.1.1, but should work with the latest release.
 
 ```shell
-$ git clone --branch v3.3.0 https://github.com/oracle/weblogic-kubernetes-operator.git
+$ git clone --branch v3.3.1 https://github.com/oracle/weblogic-kubernetes-operator.git
 ```
 
 {{% notice info %}} The following sections of the sample instructions will guide you, step-by-step, through the process of setting up a WebLogic cluster on AKS - remaining as close as possible to a native Kubernetes experience. This lets you understand and customize each step. If you wish to have a more automated experience that abstracts some lower level details, you can skip to the [Automation](#automation) section.

diff --git a/documentation/3.3/content/samples/azure-kubernetes-service/model-in-image.md b/documentation/3.3/content/samples/azure-kubernetes-service/model-in-image.md
@@ -30,7 +30,7 @@ This sample demonstrates how to use the [WebLogic Kubernetes Operator](/weblogic
 Clone the [WebLogic Kubernetes Operator repository](https://github.com/oracle/weblogic-kubernetes-operator) to your machine. We will use several scripts in this repository to create a WebLogic domain. This sample was tested with v3.1.1, but should work with the latest release.
 
 ```shell
-$ git clone --branch v3.3.0 https://github.com/oracle/weblogic-kubernetes-operator.git
+$ git clone --branch v3.3.1 https://github.com/oracle/weblogic-kubernetes-operator.git
 ```
 ```shell
 $ cd weblogic-kubernetes-operator

diff --git a/documentation/3.3/content/samples/domains/model-in-image/prerequisites.md b/documentation/3.3/content/samples/domains/model-in-image/prerequisites.md
@@ -23,7 +23,7 @@ weight: 1
    $ cd /tmp
    ```
    ```shell
-   $ git clone --branch v3.3.0 https://github.com/oracle/weblogic-kubernetes-operator.git
+   $ git clone --branch v3.3.1 https://github.com/oracle/weblogic-kubernetes-operator.git
    ```
 
    > **Note**: We will refer to the top directory of the operator source tree as `/tmp/weblogic-kubernetes-operator`; however, you can use a different location.

diff --git a/documentation/3.3/content/samples/tanzu-kubernetes-service/_index.md b/documentation/3.3/content/samples/tanzu-kubernetes-service/_index.md
@@ -63,7 +63,7 @@ Kubernetes Operators use [Helm](https://helm.sh/) to manage Kubernetes applicati
 Clone the repository.
 
 ```shell
-$ git clone --branch v3.3.0 https://github.com/oracle/weblogic-kubernetes-operator.git
+$ git clone --branch v3.3.1 https://github.com/oracle/weblogic-kubernetes-operator.git
 ```
 ```shell
 $ cd weblogic-kubernetes-operator

diff --git a/documentation/3.3/content/userguide/introduction/architecture.md b/documentation/3.3/content/userguide/introduction/architecture.md
@@ -37,7 +37,7 @@ The operator consists of the following parts:
 The operator is packaged in a [container image](https://github.com/orgs/oracle/packages/container/package/weblogic-kubernetes-operator) which you can access using the following `docker pull` commands:  
 
 ```shell
-$ docker pull ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0
+$ docker pull ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1
 ```
 
 For more details on acquiring the operator image and prerequisites for installing the operator, consult the [Quick Start guide]({{< relref "/quickstart/_index.md" >}}).

diff --git a/...mentation/3.3/content/userguide/managing-domains/domain-lifecycle/restarting.md b/...mentation/3.3/content/userguide/managing-domains/domain-lifecycle/restarting.md
@@ -185,7 +185,7 @@ d. Update the `image` field of the Domain YAML file, specifying the new image na
      ```yaml
      domain:
        spec:
-         image: ghcr.io/oracle/weblogic-updated:3.3.0
+         image: ghcr.io/oracle/weblogic-updated:3.3.1
      ```
 e. The operator will now initiate a rolling restart, which will apply the updated image, for all the servers in the domain.
 

diff --git a/documentation/3.3/content/userguide/managing-operators/installation.md b/documentation/3.3/content/userguide/managing-operators/installation.md
@@ -119,7 +119,7 @@ the `helm upgrade` command requires that you supply a new Helm chart and image.
 ```shell
 $ helm upgrade \
   --reuse-values \
-  --set image=ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0 \
+  --set image=ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1 \
   --namespace weblogic-operator-namespace \
   --wait \
   weblogic-operator \

diff --git a/documentation/3.3/content/userguide/managing-operators/using-helm.md b/documentation/3.3/content/userguide/managing-operators/using-helm.md
@@ -101,7 +101,7 @@ javaLoggingLevel:  "FINE"
 ##### `image`
 Specifies the container image containing the operator code.
 
-Defaults to `ghcr.io/oracle/weblogic-kubernetes-operator:3.3.0`.
+Defaults to `ghcr.io/oracle/weblogic-kubernetes-operator:3.3.1`.
 
 Example:
 ```yaml

diff --git a/documentation/3.3/content/userguide/platforms/environments.md b/documentation/3.3/content/userguide/platforms/environments.md
@@ -25,7 +25,7 @@ Container Services for use with Kubernetes* on OCI Compute, and on "Authorized C
 
 WebLogic Server and the WebLogic Kubernetes Operator are certified and supported on Oracle Linux Cloud Native Environment:
 - Operator v2.6.0 is certified on OLCNE 1.1 and v3.2.5 is certified on OLCNE 1.3.
-- Operator v3.2.5 provides certified support of OLCNE 1.3 with Kubernetes 1.20.6 and CRI-O 1.20.6.
+- Operator v3.2.5 provides certified support of OLCNE 1.3 with Kubernetes 1.20.6 and CRI-O 1.20.2.
 
 ### Microsoft Azure Kubernetes Service
 

diff --git a/documentation/3.3/content/userguide/prerequisites/introduction.md b/documentation/3.3/content/userguide/prerequisites/introduction.md
@@ -5,12 +5,12 @@ description: "Review the prerequisites for the current release of the operator."
 weight: 2
 ---
 
-For the current production release 3.3.0:
+For the current production release 3.3.1:
 
 * Kubernetes 1.16.15+, 1.17.13+, 1.18.10+, 1.19.7+, and 1.20.6+  (check with `kubectl version`).
 * Flannel networking v0.9.1-amd64 or later (check with `docker images | grep flannel`), Calico networking v3.16.1 or later,
  *or* OpenShift SDN on OpenShift 4.3 systems.
-* Docker 18.9.1 or 19.03.1+ (check with `docker version`) *or* CRI-O 1.20.6+ (check with `crictl version | grep RuntimeVersion`).
+* Docker 18.9.1 or 19.03.1+ (check with `docker version`) *or* CRI-O 1.20.2+ (check with `crictl version | grep RuntimeVersion`).
 * Helm 3.3.4+ (check with `helm version --client --short`).
 * For domain home source type `Model in Image`, WebLogic Deploy Tooling 1.9.11.
 * Either Oracle WebLogic Server 12.2.1.3.0 with patch 29135930, Oracle WebLogic Server 12.2.1.4.0, or Oracle WebLogic Server 14.1.1.0.0.
-Original file line number
+Diff line change
@@ Expand Up @@
          ```yaml
          domain:
            spec:
-             image: ghcr.io/oracle/weblogic-updated:3.3.0
+             image: ghcr.io/oracle/weblogic-updated:3.3.1
          ```
     e. The operator will now initiate a rolling restart, which will apply the updated image, for all the servers in the domain.
@@ Expand Down @@