Manifests
Overview
Manifests are the centrepiece of how you control your deployment to enclaves in OBLV Deploy. They generally follow native Kubernetes manifests, with a few small tweaks to configure the nuances required for secure enclave deployments.
When writing an OBLV Deploy manifest, it's useful to keep in mind the general structure you'll be following:
Instance and Network Configuration: Specifies the AWS EC2 and network settings for the deployment.
Field | Description |
---|---|
instanceType | Type of AWS EC2 instance. |
subnetID | AWS subnet ID. |
keyName | AWS EC2 key pair name. |
securityGroupIDs | List of security group IDs. |
internetFacing | Boolean flag for internet exposure. |
Deployment Settings: Defines the scale and access settings for the enclave deployment.
Field | Description |
---|---|
replicaCount | Number of enclave replicas. |
serviceDomainName | Access domain for the cluster. |
tlsCertificate | TLS certificate details: includes secretName and secretKey . |
Enclave Configuration: Configures the specifics of the enclave, including containers and plugins.
Field | Description |
---|---|
containers | Configure properties like image, ports, environment variables, and volumes. |
outboundConnections | Settings for allowed outbound connections, including fqdn , redirects , port , tls . |
plugins | Setup functionalities like auth, logging, and proxy, including ports, volumes, outbound connections, and security settings. |