@@ -12,6 +12,149 @@ Release Notes for |k8s-op-full|
1212 :depth: 1
1313 :class: singlecol
1414
15+ .. _ent-op-1.13.x:
16+
17+ |k8s-op-full| 1.13 Series
18+ -------------------------
19+
20+ .. _ent_op-1.13.0:
21+
22+ |k8s-op-full| 1.13.0
23+ ~~~~~~~~~~~~~~~~~~~~
24+
25+ *Released 2021-10-21*
26+
27+ |k8s-op-short|
28+ ``````````````
29+
30+ .. warning:: **Breaking Changes**
31+
32+ The |k8s-op-short| no longer generates |tls| certificates for
33+ ``MongoDB`` and ``MongoDBOpsManager`` resources.
34+
35+ Changes
36+ +++++++
37+
38+ - The |k8s-op-short| can now watch a list of namespaces. To learn more,
39+ see :ref:`ns-scope-different-ns`.
40+
41+ - When deploying resources to :ref:`more than one namespace
42+ <ns-scope-different-ns>`, create ``imagePullSecrets`` only in the
43+ namespace where you installed the |k8s-op-short|. The |k8s-op-short|
44+ synchronizes this secret across all watched namespaces.
45+
46+ - The :setting:`spec.credentials` secret :ref:`now accepts
47+ <create-k8s-secret>` fields named
48+ ``publicKey`` and ``privateKey``. Use these fields instead of the
49+ ``user`` and ``publicApiKey`` fields supported in previous releases.
50+
51+ .. important:: **Deprecation Notice**
52+
53+ This release deprecates :k8sdocs:`generic type secrets
54+ </concepts/configuration/secret/#opaque-secrets>` for
55+ |tls| certificates.
56+
57+ - The |k8s-op-short| now supports |tls| secrets of the
58+ :k8sdocs:`kubernetes.io/tls
59+ </concepts/configuration/secret/#tls-secrets>` type.
60+
61+ - The |k8s-op-short| reads these secrets and automatically generates
62+ new ``.pem`` files that contain the concatenated ``tls.crt`` and
63+ ``tls.key`` fields when you update these secrets.
64+ - This removes the need to manually concatenate these vales to create
65+ ``.pem`` files and enables you to natively reference secrets
66+ that |k8s|-native tools, such as `cert-manager
67+ <https://cert-manager.io/docs/>`__, generate.
68+
69+ - For |tls|\-enabled resources, the operator now watches the ConfigMap
70+ that contains the |certauth| and the secrets that contain |tls|
71+ certificates. Changes to these ConfigMaps and secrets now trigger a
72+ reconciliation of the related resource.
73+
74+ ``MongoDB`` Resource
75+ ````````````````````
76+
77+ .. warning:: **Breaking Changes**
78+
79+ This release removes the :setting:`spec.project` setting from the
80+ :ref:`k8s-specification`.
81+
82+ If your ``MongoDB`` resource specifications use the
83+ :setting:`spec.project` setting, update your specifications to instead
84+ use :setting:`spec.opsManager.configMapRef.name` or
85+ :setting:`spec.cloudManager.configMapRef.name` before you upgrade the
86+ |k8s-op-short| to 1.13.0 or later.
87+
88+ Changes
89+ +++++++
90+
91+ - This release adds several new fields that determine the names that you
92+ must give the secrets that contain your |tls| and X.509 certificates
93+ for MongoDB resources.
94+
95+ To learn more, see :setting:`spec.security.certsSecretPrefix` and the
96+ :ref:`k8s-secure-resources` tutorials.
97+
98+ Bug Fixes
99+ +++++++++
100+
101+ - Fixes an issue where Sharded Cluster backups could not be correctly
102+ configured using ``MongoDB`` resource specifications.
103+ - Fixes an issue where Backup Daemon fails to start after you update an
104+ |onprem| deployment by updating :opsmgrkube:`spec.version`.
105+
106+ ``MongoDBOpsManager`` Resource
107+ ``````````````````````````````
108+
109+ - The |k8s-op-short| now reports the status of file system snapshot
110+ stores that you configure in the ``spec.backup.fileSystemStores``
111+ setting in the ``MongoDBOpsManager`` resource specification.
112+
113+ You must manually configure the file system snapshot stores.
114+
115+ - This release adds a new field, ``spec.backup.externalServiceEnabled``,
116+ to the ``MongoDBOpsManager`` resource specification.
117+
118+ By default, the |k8s-op-short| creates a :k8sdocs:`LoadBalancer
119+ </concepts/services-networking/service/#loadbalancer>` service when
120+ you :ref:`enable queryable backups <configure-om-queryable-backups>`.
121+
122+ Set ``spec.backup.externalServiceEnabled`` to ``false`` before you
123+ enable queryable backups to prevent the |k8s-op-short| from creating a
124+ LoadBalancer service.
125+
126+ - The |k8s-op-short| now automatically upgrades personal API keys to
127+ programmatic API keys when you upgrade an |onprem| deployment to
128+ version 5.0.0 or later. You no longer must change the keys manually to
129+ upgrade your deployment.
130+
131+ - This release adds the :opsmgrkube:`spec.security.certSecretPrefix` field to
132+ determine the name that you must give the secret that contains your
133+ |tls| certificate for ``MongoDBOpsManager`` resources.
134+
135+ To learn more, see :opsmgrkube:`spec.security.certsSecretPrefix` and
136+ the **HTTPS** tab in the :ref:`deploy-om-container` tutorial.
137+
138+ ``MongoDBUser`` Resource
139+ ````````````````````````
140+
141+ .. warning:: **Breaking Changes**
142+
143+ This release removes the spec.project setting from the ``MongoDBUser``
144+ CustomResourceDefinition.
145+
146+ If your ``MongoDBUser`` resource specifications use the
147+ spec.project setting, update your specifications to instead
148+ use ``spec.MongoDBResourceRef.name`` before you upgrade the
149+ |k8s-op-short| to 1.13.0 or later.
150+
151+ Miscellaneous
152+ `````````````
153+
154+ - |onprem| 4.4.7, 4.4.9, 4.4.10, 4.4.11, 4.4.12 and 4.4.13 base images
155+ have been updated to Ubuntu 20.04.
156+ - |onprem| versions 4.4.16 and 5.0.1 are now supported.
157+
15158.. _ent-op-1.12.x:
16159
17160|k8s-op-full| 1.12 Series
@@ -1313,7 +1456,7 @@ Specification Schema Changes
13131456Ops Manager Resource Changes (Alpha Release)
13141457````````````````````````````````````````````
13151458
1316- This release introduces signficant changes to the |onprem| resource's
1459+ This release introduces significant changes to the |onprem| resource's
13171460architecture. The |onprem| application database is now managed by
13181461the |k8s-op-short|, not by |onprem|.
13191462
0 commit comments