[GCP] Update docs for private clusters and VPC service controls for 1.0 #1705
Comments
|
Issue-Label Bot is automatically applying the labels:
Please mark this comment with 👍 or 👎 to give our bot feedback! |
|
Related: #1769 |
sarahmaddox
changed the title
|
/assign @zhenghuiwang @zhenghuiwang I'm assigning this to you, as I understand you're working on a solution for the config of private clusters. Let me know when you're ready to work with me on the updating of the website docs. We'll take a look and decide whether we need more than one doc, based on your findings. |
|
Related: #1811 |
|
This PR proposes an update to the private clusters page too: #1563 |
* Add instructions for mirroring docker images to private repositories * Fix kubeflow/kubeflow#3210 * Delete instructions under private GKE and just link to the doc issue kubeflow#1705 * The instructions are outdated. Since managed certificates are used there should be no reason to need to update iap-ingress.yaml anymore. * Fix kubeflow#1811 * Most of the other instructions under the private GKE section are also very obsolete.
* Private GKE: Document image mirroring * Add instructions for mirroring docker images to private repositories * Fix kubeflow/kubeflow#3210 * Delete instructions under private GKE and just link to the doc issue #1705 * The instructions are outdated. Since managed certificates are used there should be no reason to need to update iap-ingress.yaml anymore. * Fix #1811 * Most of the other instructions under the private GKE section are also very obsolete. * Fix indentation. * Fix indetation. * Fix indentation. * Fix alert. * More formatting fixes. * Add comment about Tekton.
|
@zhenghuiwang Hi Zhenghui - We have two users (US Bank and Raymond James) who are tracking this development. Will this be available in Kubeflow 1.1? Should we set-up a meeting to discuss the status with the potential users? |
|
Issue-Label Bot is automatically applying the labels:
Please mark this comment with 👍 or 👎 to give our bot feedback! |
|
@zhenghuiwang isnt working on this. We are trying to get docs for using VPC-SC with blueprints ready for 1.1. I give it about 50% confidence that it will land for 1.1 |
|
Related issue: kubeflow/pipelines#3347 |
|
Updated docs are here: We either need to copy this over to the website or update the website to point at those docs. |
|
@jlewi I can assist with updating the site (Hugo). Copying it over makes sense, so there's less clicks/friction in terms of user experience. cc @sarahmaddox |
|
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
|
Guide: "How to secure Kubeflow clusters using VPC service controls and private GKE"
If you have time, can you help me figure our what needs to go and what can stay? Cheers!! |
* Replace the instructions for private GKE with the instructions from the repo: https://github.com/kubeflow/gcp-blueprints/blob/master/kubeflow/deploy_private.md * fix: kubeflow#1705
* Replace the instructions for private GKE with the instructions from the repo: https://github.com/kubeflow/gcp-blueprints/blob/master/kubeflow/deploy_private.md * fix: kubeflow#1705
The docs on using VPC Service controls to secure Kubeflow on GCP need to be updated.
https://www.kubeflow.org/docs/gke/private-clusters/#enable-vpc-service-controls-in-your-project
Related issues:
kubeflow/kubeflow#3210 - Replicating images to private GKE
kubeflow/kubeflow#3650 - ISTIO on private GKE
The text was updated successfully, but these errors were encountered: