Update the documentation about importing external certificates

[davidfestal]

What does this PR do?

This PR Updates the documentation about importing additional certificates in a Ce installation, to reflect the current status of Che on this Topic.

What issues does this PR fix or reference?

This PR refers to issue https://issues.redhat.com/browse/RHDEVDOCS-2089

Specify the version of the product this PR applies to.

This PR applies to the last Upstream release (7.18.2) and to the 2.4 downstream release.

PR Checklist

As the author of this Pull Request I made sure that:

• vale has been run successfully against the PR branch
• Link checker has been run successfully against the PR branch
• Documentation describes a scenario that is already covered by QE tests, otherwise an issue has been created and acknowledged by Che QE team
• Changed article references are updated where they are used (or a redirect has been set up on the docs side):
  • Dashboard branding.constant.ts + product.json
  • Chectl constants.ts

[themr0c]

Can you also update the id and all xref statements pointing to this id?

[davidfestal]

Done

[tolusha]

I think that checking /public-certs folder is not enough.
when ca-certs configmap is updated then k8s automatically refreshes /public-certs.
but those certificates won't be added to java trust store of the che-server and keycloak.

[themr0c]

It seems this procedure is turning into a collection of 2 distinct procedures depending on the method used to install the Che instance.

We have a similar case Upgrading Che. We make there the distinction between these 2 deployment flows: using OperatorHub vs. using the CLI management tool.

For consistency purposes, using the same presentation here would be awesome, but is it relevant?

[davidfestal]

@themr0c I don't know why the vale tests fail during CI while I have no vale error on my file in the Che workspace. Maybe rules have changed ?

@l0rd Since the PR comes from my fork, the result automatically pushed on netlify is not the right one.
So to ease the review I added the resulting page for preview as a PDF printed from the Web page

[davidfestal]

It seems this procedure is turning into a collection of 2 distinct procedures depending on the method used to install the Che instance.

We have a similar case Upgrading Che. We make there the distinction between these 2 deployment flows: using OperatorHub vs. using the CLI management tool.

For consistency purposes, using the same presentation here would be awesome, but is it relevant?

@themr0c

In fact we thought if would be more beneficial to split the documentation into 2 sub-section according to the use-case:

• Configuration at installation time
• Configuration on already-running installation.

So I assume we would not also split according to the underlying installation method (operator or helm).

[l0rd]

The document is much clearer now. Good job @davidfestal. But there are still some points to review.

[l0rd]

The paragraph above is repeated multiple times in this article. Can we move it to a different doc component and reference it multiple times?

[davidfestal]

Fixed in commit 3f481ae

[themr0c]

@davidfestal Any chance you can include the proposed changes and rebase soon?

[davidfestal]

@davidfestal Any chance you can include the proposed changes and rebase soon?

I'll try to work on it tomorrow

[davidfestal]

@l0rd Could you please review again after the last commit: 96614f0 ?

[l0rd]

LGTM Great job @davidfestal

[yhontyk]

LGTM