Manifests
Overview
Manifests are the centrepiece of how you control your deployment to enclaves in OBLV Deploy. They generally follow native Kubernetes manifests, with a few small tweaks to configure the nuances required for secure enclave deployments.
When writing an OBLV Deploy manifest, it's useful to keep in mind the general structure you'll be following:
Instance and Network Configuration: Specifies the AWS EC2 and network settings for the deployment.
| Field | Description |
|---|---|
instanceType | Type of AWS EC2 instance. |
subnetID | AWS subnet ID. |
keyName | AWS EC2 key pair name. |
securityGroupIDs | List of security group IDs. |
internetFacing | Boolean flag for internet exposure. |
Deployment Settings: Defines the scale and access settings for the enclave deployment.
| Field | Description |
|---|---|
replicaCount | Number of enclave replicas. |
serviceDomainName | Access domain for the cluster. |
tlsCertificate | TLS certificate details: includes secretName and secretKey. |
Enclave Configuration: Configures the specifics of the enclave, including containers and plugins.
| Field | Description |
|---|---|
containers | Configure properties like image, ports, environment variables, and volumes. |
outboundConnections | Settings for allowed outbound connections, including fqdn, redirects, port, tls. |
plugins | Setup functionalities like auth, logging, and proxy, including ports, volumes, outbound connections, and security settings. |