From 7d9298e3de74e91db116c79a7087f559464ae52d Mon Sep 17 00:00:00 2001
From: Zac Dover <zac.dover@proton.me>
Date: Tue, 18 Feb 2025 23:44:15 +1000
Subject: [PATCH] doc/mgr: edit grammar and formatting of rgw.rst

Improve the grammar and correct the formatting of the "Upgrading root ca
certificates" procedure that was added to the documentation in https://github.com/ceph/ceph/pull/61867

Fixes: https://tracker.ceph.com/issues/70014

Signed-off-by: Zac Dover <zac.dover@proton.me>
---
 doc/mgr/rgw.rst | 42 ++++++++++++++++++++++--------------------
 1 file changed, 22 insertions(+), 20 deletions(-)

diff --git a/doc/mgr/rgw.rst b/doc/mgr/rgw.rst
index 8ad02c312f494..9f00c7da03f40 100644
--- a/doc/mgr/rgw.rst
+++ b/doc/mgr/rgw.rst
@@ -143,37 +143,39 @@ RGW admin command
 Upgrading root ca certificates
 ------------------------------
 
+#. Make sure that the RGW service is running.
+#. Make sure that the RGW service is up.
+#. Make sure that the RGW service has been upgraded to the latest release.
+#. From the Primary cluster on the Manager node, run the following command:
 
-To upgrade root ca certificate, make sure rgw serives is upgraded. Make sure the rgw service is up and running.
-On Primary cluster on manger node run command:
+   .. prompt:: bash #
 
-::
+      ceph orch cert-store get cert cephadm_root_ca_cert
 
-  ceph orch cert-store get cert cephadm_root_ca_cert
+#. On the node where the RGW service is running, store the certificate on the
+   following path::
 
-Store the certificate on node where rgw service is running on path
-::
+      /etc/pki/ca-trust/source/anchors/<cert_name>.crt
 
-   /etc/pki/ca-trust/source/anchors/<cert_name>.crt
+#. Verify the certificate by running the following command:
 
-Verify certificate using command:
+   .. prompt:: bash #
 
-::
+      openssl x509 -in <cert_name>.crt -noout -text
 
-  openssl x509 -in <cert_name>.crt -noout -text
+#. Perform the above steps on the MGR node and on the RGW node of all secondary
+   clusters.
 
-Perform above steps on mgr node and rgw node of secondary clusters.
+#. After the certificates have been validated on all clusters, run the
+   following command on all clusters that generate certificates: 
 
-Once certificates are validated on all the sites. Run:
+   .. prompt:: bash #
 
-::
+      update-ca-trust
 
-  update-ca-trust
+#. From the primary node, ensure that the ``curl`` command can be run by the
+   user:
 
-on all the nodes where certificates are generated.
-
-Check from primary node if the curl command works for the user:
-
-::
+   .. prompt:: bash [root@primary-node]# 
 
-  [root@ceph-pri-node-0 anchors]# curl https://<host_ip>:443
\ No newline at end of file
+      curl https://<host_ip>:443
-- 
2.39.5