Using Kubernetes Operator: cosmetics

michaelklishin · michaelklishin · commit b717ecf39259 · 2021-03-31T23:36:54.000+03:00
diff --git a/site/kubernetes/operator/using-operator.md b/site/kubernetes/operator/using-operator.md
@@ -8,20 +8,20 @@ If RabbitMQ Cluster Kubernetes Operator is not installed,
 see the [installation guide](/kubernetes/operator/install-operator.html). For instructions on getting started quickly, see the [quickstart guide](/kubernetes/operator/quickstart-operator.html).
 This guide is structured in the following sections:
 
-* [Confirm Service Availability](#service-availability).
-* [Apply Pod Security Policies](#psp).
-* [Create a RabbitMQ Instance](#create).
-* [Existing examples](#examples).
-* [Configure a RabbitMQ Instance](#configure).
-* [Update a RabbitMQ Instance](#update).
-* [Set a Pod Disruption Budget](#set-pdb).
-* [Configure TLS](#tls).
-* [Find Your RabbitmqCluster Service Name and Admin Credentials](#find).
-* [Verify the Instance is Running](#verify-instance).
-* [Use the RabbitMQ Service in Your App](#use).
-* [Monitor RabbitMQ Clusters](#monitoring).
-* [Delete a RabbitMQ Instance](#delete).
-* [Pause Reconciliation for a RabbitMQ Instance](#pause).
+* [Confirm Service Availability](#service-availability)
+* [Apply Pod Security Policies](#psp)
+* [Create a RabbitMQ Instance](#create)
+* [Existing examples](#examples)
+* [Configure a RabbitMQ Instance](#configure)
+* [Update a RabbitMQ Instance](#update)
+* [Set a Pod Disruption Budget](#set-pdb)
+* [Configure TLS](#tls)
+* [Find Your RabbitmqCluster Service Name and Admin Credentials](#find)
+* [Verify the Instance is Running](#verify-instance)
+* [Use the RabbitMQ Service in Your App](#use)
+* [Monitor RabbitMQ Clusters](#monitoring)
+* [Delete a RabbitMQ Instance](#delete)
+* [Pause Reconciliation for a RabbitMQ Instance](#pause)
 
 ## <a id='service-availability' class='anchor' href='#service-availability'>Confirm Service Availability</a>
 
@@ -943,7 +943,10 @@ For more information about concepts mentioned above, see:
 
 ## <a id='tls' class='anchor' href='#tls'>(Optional) Configure TLS</a>
 
-Transport Layer Security (TLS) is a protocol for encrypting network traffic. <a href="/ssl.html">RabbitMQ supports TLS</a>, and the cluster operator simplifies the process of configuring a RabbitMQ cluster with <a href="#one-way-tls">TLS</a> or <a href="#mutual-tls">mutual TLS (mTLS)</a> encrypted traffic between clients and the cluter, as well as supporting <a href="https://github.com/rabbitmq/cluster-operator/tree/main/docs/examples/mtls-inter-node">encrypting RabbitMQ inter-node traffic with mTLS</a>. A <a href="/ssl.html#certificates-and-keys">basic overview of TLS</a> is helpful for understanding this guide.
+Transport Layer Security (TLS) is a protocol for encrypting network traffic. <a href="/ssl.html">RabbitMQ supports TLS</a>, and the cluster operator simplifies the process of configuring a RabbitMQ cluster with [TLS](#one-way-tls) or
+[mutual TLS (mTLS)](#mutual-tls) encrypted traffic between clients and the cluter, as well
+as supporting [encrypting RabbitMQ inter-node traffic with mTLS](https://github.com/rabbitmq/cluster-operator/tree/main/docs/examples/mtls-inter-node).
+A [basic overview of TLS](/ssl.html#certificates-and-keys) is helpful for understanding this guide.
 
 ### <a id='one-way-tls' class='anchor' href='#one-way-tls'>TLS encrypting traffic between clients and RabbitMQ</a>
 
@@ -991,15 +994,16 @@ Mutual TLS (mTLS) enhances TLS by requiring that the server verify the identity
 
 <img src="/img/mTLS.png"/>
 
-In addition to the <a href="#one-way-tls">configuration required to support TLS</a>, configuring mutual TLS requires the RabbitMQ cluster to be configured with the CA certificate used to sign the client certificate and key pair, `ca.pem`. Create a Kuberntes secret with key `ca.crt` containing this secret
+In addition to the [configuration required to support TLS](#one-way-tls), configuring mutual TLS requires the RabbitMQ cluster to be configured with the CA certificate
+used to sign the client certificate and key pair, `ca.pem`. Create a Kuberntes secret with key `ca.crt` containing this secret
 
 <pre class='lang-bash'>
 kubectl create secret generic ca-secret --from-file=ca.crt=ca.pem
 </pre>
 
 or create this secret using a tool such as <a href="https://cert-manager.io/">Cert Manager</a>.
 
-Once this secret and the `tls-secret` exist, a RabbitMQ cluster cluster can be deployed following the <a href="https://github.com/rabbitmq/cluster-operator/tree/main/docs/examples/mtls">mTLS example</a>.
+Once this secret and the `tls-secret` exist, a RabbitMQ cluster cluster can be deployed following the [mTLS example](https://github.com/rabbitmq/cluster-operator/tree/main/docs/examples/mtls).
 
 <pre class="lang-yaml">
 apiVersion: rabbitmq.com/v1beta1
@@ -1013,7 +1017,8 @@ spec:
     caSecretName: ca-secret
 </pre>
 
-In order to enforce client verification, RabbitMQ must be configured to reject clients that do not present certificates. This can be done by enabling <a href="/ssl.html#peer-verification">TLS peer verification</a> using the `ssl_options.fail_if_no_peer_cert` option in the additional config:
+In order to enforce client verification, RabbitMQ must be configured to reject clients that do not present certificates. This can be done by enabling [TLS peer verification](ssl.html#peer-verification) using
+the `ssl_options.fail_if_no_peer_cert` option in the additional config:
 
 <pre class="lang-yaml">
 spec:
