(DOCSP-26486) Updated release notes for 1.17.0 and removed info about upgrading old-style certs, because this support is fully removed in 1.17 (#1130)

* (DOCSP-26486) Updated release notes for 1.17.0 and removed info about upgrading old-style certs, because this support is fully removed in 1.17

* Fixing warnings in the build

* Added trailing slashes to all redirects that were missing them

* A few edits

* Fixed some old relnotes

Author: JuliaMongo

config/redirects

@@ -12,28 +12,32 @@ symlink: stable -> v1.17
 # Base URL
 raw: docs/kubernetes-operator/ -> ${base}/stable/
 
+# Add redirects for the complete removal of old-style tls certs and the EOL of MEKO # v1.11 that required special treatment of appdb version:
+[v1.17-*]: docs/kubernetes-operator/${version}/tutorial/migrate-to-ent-appdb-version -> ${base}/stable/release-notes/#k8s-op-full-1-11-0/
+[v1.17-*]: docs/kubernetes-operator/${version}/tutorial/migrate-to-new-tls-format -> ${base}/stable/release-notes/#k8s-op-full-1-13-0/
+
 # redirect for removal of multi-cluster quick start overview:
-[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-quick-start-overview -> ${base}/stable/multi-cluster
+[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-quick-start-overview -> ${base}/stable/multi-cluster/
 
 # Add redirects related to the addition of new topics for multi-cluster
 # beta security in the Operator v1.16.x, and single cluster LDAP:
 
-[*-v1.15]: docs/kubernetes-operator/${version}/multi-cluster-secure-client-connections -> ${base}/stable/multi-cluster-secure-client-connections
-[*-v1.15]: docs/kubernetes-operator/${version}/multi-cluster-secure-ldap-auth -> ${base}/stable/multi-cluster-secure-ldap-auth
-[*-v1.15]: docs/kubernetes-operator/${version}/tutorial/secure-client-connections -> ${base}/stable/tutorial/secure-client-connections
-[*-v1.15]: docs/kubernetes-operator/${version}/tutorial/secure-ldap-auth -> ${base}/tutorial/secure-ldap-auth
+[*-v1.15]: docs/kubernetes-operator/${version}/multi-cluster-secure-client-connections -> ${base}/stable/multi-cluster-secure-client-connections/
+[*-v1.15]: docs/kubernetes-operator/${version}/multi-cluster-secure-ldap-auth -> ${base}/stable/multi-cluster-secure-ldap-auth/
+[*-v1.15]: docs/kubernetes-operator/${version}/tutorial/secure-client-connections -> ${base}/stable/tutorial/secure-client-connections/
+[*-v1.15]: docs/kubernetes-operator/${version}/tutorial/secure-ldap-auth -> ${base}/tutorial/secure-ldap-auth/
 
 # Add redirects related to the addition of new topics for multi-cluster
 # beta in the Operator v1.13.
 
-[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster -> ${base}/stable/multi-cluster
-[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-quick-start -> ${base}/stable/multi-cluster
-[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-arch -> ${base}/stable/multi-cluster
+[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster -> ${base}/stable/multi-cluster/
+[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-quick-start -> ${base}/stable/multi-cluster/
+[*-v1.12]: docs/kubernetes-operator/${version}/multi-cluster-arch -> ${base}/stable/multi-cluster/
 
 # Add redirects related to the removal of
 # /tutorial/migrate-to-single-resource. This topic was added initially
 # for v1.3 that is now EOL.
-[v1.11-*]: docs/kubernetes-operator/${version}/tutorial/migrate-to-single-resource -> ${base}/stable/release-notes/#k8s-op-full-1-11-0
+[v1.11-*]: docs/kubernetes-operator/${version}/tutorial/migrate-to-single-resource -> ${base}/stable/release-notes/#k8s-op-full-1-11-0/
 
 
 # Fix problematic redirects that omitted /stable (DOCSP-4989)

source/includes/facts/fact-appdb-version-specified.rst

@@ -3,11 +3,8 @@
    The |k8s-op-short| uses :k8sdocs:`kubernetes.io/tls
    </concepts/configuration/secret/#tls-secrets>` secrets
    to store |tls| certificates and private keys for |onprem| and MongoDB
-   resources. Starting in |k8s-op-short| version 1.17, the 
-   |k8s-op-short| doesn't support concatenated |pem| files stored as    :k8sdocs:`Opaque secrets </concepts/configuration/secret/#opaque-secrets>`. 
-
-   To migrate your |pem| files stored as Opaque secrets |tls| secrets to :k8sdocs:`kubernetes.io/tls 
-   </concepts/configuration/secret/#tls-secrets>` secrets, see
-   :ref:`migrate-to-new-tls-format`.
+   resources. Starting in |k8s-op-short| version 1.17.0, the 
+   |k8s-op-short| doesn't support concatenated |pem| files stored as
+   :k8sdocs:`Opaque secrets </concepts/configuration/secret/#opaque-secrets>`.
 
    .. include:: /includes/fact-broken-appdb.rst

source/includes/prereqs/pem-format.rst

@@ -152,12 +152,19 @@ This release:
   A migration guide for existing users will be published soon.
 
 - Removes support for |tls| certificates in concatenated |pem| format.
-  These certificates were deprecated in |k8s-op-short| 1.13.0. Before
-  upgrading to |k8s-op-short| 1.17.0, migrate your |pem| files stored as
-  :k8sdocs:`Opaque secrets </concepts/configuration/secret/#opaque-secrets>`
-  to :k8sdocs:`kubernetes.io/tls </concepts/configuration/secret/#tls-secrets>`
-  secrets. For detailed instructions, see
-  :ref:`Upgrade from Kubernetes Operator 1.12 with TLS Enabled <migrate-to-new-tls-format>`.
+  These certificates were deprecated in |k8s-op-short| 1.13.0.
+  If you want to use these certificates, the last version to which you
+  can upgrade is |k8s-op-short| 1.16.4.
+
+  Starting with the |k8s-op-short| 1.17.0 release, you must manually
+  migrate old-style |tls| secrets from opaque to
+  :k8sdocs:`kubernetes.io/tls </concepts/configuration/secret/#tls-secrets>`
+  type secrets by creating new secrets that contain the relevant
+  certificates and signing keys. To learn how to create these secrets,
+  see the following resources:
+
+  - :ref:`secure-tls`
+  - :ref:`secure-internal-auth`
 
 .. _ent-op-1.16.x:
 
@@ -187,18 +194,17 @@ MongoDB Resource
 MongoDB Resource
 ````````````````
 
-- Fixed a bug where `securityContext defined at the Pod level wouldn't
-  be respected as the operator would override it with a 
-  `securityContext` at the container level. See the
-  `description <https://docs-mongodbcom-staging.corp.mongodb.com/docs-k8s-operator/docsworker-xlarge/DOCSP-23623/reference/k8s-operator-specification.html#spec.persistent>`__
-  of the `spec.persistent` setting for more information.
+- Fixed a bug where ``securityContext`` defined at the Pod level is not
+  respected as the |k8s-op-short| overrides it with a 
+  ``securityContext`` at the container level. To learn more, see the
+  description of the :setting:`spec.persistent` setting.
 
-- Adds `timeoutMS`, and `userCacheInvalidationInterval` fields to the 
-  `spec.security.authentication.ldap` object.
+- Adds ``timeoutMS``, and ``userCacheInvalidationInterval`` fields to the 
+  ``spec.security.authentication.ldap`` object.
 
-- Fixes behavior where the `additionalMongodConfig.net.tls.mode` setting
-  was ignored for `mongos`, `configSrv`, and `shard` objects when 
-  configuring `ShardedCluster` resources.
+- Fixes behavior where the ``additionalMongodConfig.net.tls.mode`` setting
+  was ignored for ``mongos``, ``configSrv``, and ``shard`` objects when 
+  configuring ``ShardedCluster`` resources.
 
 .. _ent_op-1.16.2:
 
@@ -790,12 +796,12 @@ New Images
 
    - Beginning with this release, you can use any version of MongoDB
      for the Application Database. You must specify this version
-     explicitly when you deploy the ``MongoDBOpsManager`` resource.
-     
-     .. include:: /includes/facts/fact-which-appdb-version.rst
+     explicitly when you deploy the ``MongoDBOpsManager`` resource. 
 
    - To upgrade the |k8s-op-short|, you must specify the Application
-     Database's version. For more information, see :ref:`migrate-to-ent-appdb-version`.
+     Database's version. Check that the :opsmgrkube:`spec.applicationDatabase.version`
+     has a value in your configuration files for the ``MongoDBOpsManager``
+     custom resource deployment.
 
    - Each Application Database Pod consists of the following containers
      (instead of one container with a bundled MongoDB version, as in previous

source/release-notes.txt

@@ -32,11 +32,6 @@ Prerequisites
 
 .. include:: /includes/prereqs-deploy-resource.rst
 
-Considerations
---------------
-
-.. include:: /includes/facts/fact-appdb-version-specified.rst
-
 Procedure
 ---------
 

source/tutorial/deploy-standalone.txt

@@ -20,9 +20,4 @@ to its latest version.
 
    .. include:: /includes/fact-broken-appdb.rst
 
-.. admonition:: Upgrading to version 1.11.0 and later
-   :class: warning
-
-   .. include:: /includes/facts/fact-appdb-version-specified.rst
-
 .. include:: /includes/install/upgrade-k8s-operator.rst

source/tutorial/migrate-to-ent-appdb-version.txt

@@ -17,13 +17,6 @@ Upgrade the |k8s-op-short| from Prior Versions
 :ref:`upgrade-k8s-operator`
   Upgrade the |k8s-op-short| to its latest version.
 
-:ref:`migrate-to-ent-appdb-version`
-  Migrate the Application Database to the latest MongoDB version.
-
-:ref:`migrate-to-new-tls-format`
-  Migrate opaque |tls| secrets from |k8s-op-short| 1.12 or earlier to 
-  secrets of the :k8sdocs:`kubernetes.io/tls
-  </concepts/configuration/secret/#tls-secrets>` type.
 
 :ref:`migrate-k8s-images`
   Migrate your |k8s-op-short| deployments from Ubuntu-based container
@@ -35,6 +28,4 @@ Upgrade the |k8s-op-short| from Prior Versions
       :titlesonly:
 
       /tutorial/upgrade-k8s-operator
-      /tutorial/migrate-to-ent-appdb-version
-      /tutorial/migrate-to-new-tls-format
       /tutorial/migrate-k8s-images