Deployed 62cb4e7 to dev with MkDocs 1.6.1 and mike 2.1.3

Author: github-actions[bot]

dev/404.html

@@ -1008,7 +1008,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/advanced-administration/limitador-persistence/index.html

@@ -1035,7 +1035,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/advanced-administration/observability/index.html

@@ -1035,7 +1035,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/advanced-administration/storage-configuration/index.html

@@ -1035,7 +1035,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/architecture/index.html

@@ -1196,7 +1196,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/configuration-and-management/group-membership-known-issues/index.html

@@ -1035,7 +1035,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 

dev/configuration-and-management/maas-controller-overview/index.html

@@ -1015,7 +1015,7 @@
   <span class="md-ellipsis">
 
 
-    MaaSModel Kinds (future)
+    MaaSModelRef Kinds (future)
 
 
 
@@ -1579,7 +1579,7 @@ <h1 id="maas-controller-overview">MaaS Controller Overview</h1>
 <h2 id="1-what-is-the-maas-controller">1. What Is the MaaS Controller?</h2>
 <p>The <strong>MaaS Controller</strong> is a Kubernetes controller that provides a <strong>subscription-style control plane</strong> for Models-as-a-Service. It lets platform operators define:</p>
 <ul>
-<li><strong>Which models</strong> are exposed through MaaS (via <strong>MaaSModel</strong>).</li>
+<li><strong>Which models</strong> are exposed through MaaS (via <strong>MaaSModelRef</strong>).</li>
 <li><strong>Who can access</strong> those models (via <strong>MaaSAuthPolicy</strong>).</li>
 <li><strong>Per-user/per-group token rate limits</strong> for those models (via <strong>MaaSSubscription</strong>).</li>
 </ul>
@@ -1588,13 +1588,13 @@ <h2 id="1-what-is-the-maas-controller">1. What Is the MaaS Controller?</h2>
 <h2 id="2-high-level-architecture">2. High-Level Architecture</h2>
 <pre class="mermaid"><code>flowchart TB
     subgraph Operator["Platform operator"]
-        MaaSModel["MaaSModel"]
+        MaaSModelRef["MaaSModelRef"]
         MaaSAuthPolicy["MaaSAuthPolicy"]
         MaaSSubscription["MaaSSubscription"]
     end
 
     subgraph Controller["maas-controller"]
-        ModelReconciler["MaaSModel\nReconciler"]
+        ModelReconciler["MaaSModelRef\nReconciler"]
         AuthReconciler["MaaSAuthPolicy\nReconciler"]
         SubReconciler["MaaSSubscription\nReconciler"]
     end
@@ -1609,7 +1609,7 @@ <h2 id="2-high-level-architecture">2. High-Level Architecture</h2>
         LLMIS["LLMInferenceService\n(KServe)"]
     end
 
-    MaaSModel --&gt; ModelReconciler
+    MaaSModelRef --&gt; ModelReconciler
     MaaSAuthPolicy --&gt; AuthReconciler
     MaaSSubscription --&gt; SubReconciler
 
@@ -1621,7 +1621,7 @@ <h2 id="2-high-level-architecture">2. High-Level Architecture</h2>
     HTTPRoute --&gt; TokenRateLimitPolicy
     HTTPRoute --&gt; LLMIS</code></pre>
 <p><strong>Summary:</strong> You declare intent with MaaS CRs; the controller turns that into Gateway/Kuadrant resources that attach to the same HTTPRoute and backend (e.g. KServe LLMInferenceService).</p>
-<p>The <strong>MaaS API</strong> GET /v1/models endpoint uses MaaSModel CRs as its primary source: it lists them in the API namespace, then <strong>validates access</strong> by probing each model’s <code>/v1/models</code> endpoint with the client’s <strong>Authorization header</strong> (passed through as-is). Only models that return 2xx or 405 are included. So the catalogue returned to the client is the set of MaaSModel objects the controller reconciles, filtered to those the client can actually access. No token exchange is performed; the header is forwarded as-is. (Once minting is in place, this may be revisited.)</p>
+<p>The <strong>MaaS API</strong> GET /v1/models endpoint uses MaaSModelRef CRs as its primary source: it lists them in the API namespace, then <strong>validates access</strong> by probing each model’s <code>/v1/models</code> endpoint with the client’s <strong>Authorization header</strong> (passed through as-is). Only models that return 2xx or 405 are included. So the catalogue returned to the client is the set of MaaSModelRef objects the controller reconciles, filtered to those the client can actually access. No token exchange is performed; the header is forwarded as-is. (Once minting is in place, this may be revisited.)</p>
 <hr />
 <h2 id="3-request-flow-end-to-end">3. Request Flow (End-to-End)</h2>
 <pre class="mermaid"><code>sequenceDiagram
@@ -1667,7 +1667,7 @@ <h2 id="4-the-string-trick-authpolicy-tokenratelimitpolicy">4. The “String Tri
 <h2 id="5-what-the-controller-creates-runtime-view">5. What the Controller Creates (Runtime View)</h2>
 <pre class="mermaid"><code>flowchart LR
     subgraph MaaS["MaaS CRs (your intent)"]
-        MM["MaaSModel\n(model ref)"]
+        MM["MaaSModelRef\n(model ref)"]
         MAP["MaaSAuthPolicy\n(modelRefs + subjects)"]
         MS["MaaSSubscription\n(owner + modelRefs + limits)"]
     end
@@ -1692,7 +1692,7 @@ <h2 id="5-what-the-controller-creates-runtime-view">5. What the Controller Creat
 </thead>
 <tbody>
 <tr>
-<td><strong>MaaSModel</strong></td>
+<td><strong>MaaSModelRef</strong></td>
 <td><strong>HTTPRoute</strong> (or validates KServe-created route for llmisvc)</td>
 </tr>
 <tr>
@@ -1712,12 +1712,12 @@ <h2 id="6-component-diagram-controller-internals">6. Component Diagram (Controll
     subgraph Cluster["Kubernetes cluster"]
         subgraph maas_controller["maas-controller (Deployment)"]
             Manager["Controller Manager"]
-            ModelReconciler["MaaSModel\nReconciler"]
+            ModelReconciler["MaaSModelRef\nReconciler"]
             AuthReconciler["MaaSAuthPolicy\nReconciler"]
             SubReconciler["MaaSSubscription\nReconciler"]
         end
 
-        CRDs["CRDs: MaaSModel,\nMaaSAuthPolicy,\nMaaSSubscription"]
+        CRDs["CRDs: MaaSModelRef,\nMaaSAuthPolicy,\nMaaSSubscription"]
         RBAC["RBAC: ClusterRole,\nServiceAccount, etc."]
     end
 
@@ -1738,17 +1738,17 @@ <h2 id="6-component-diagram-controller-internals">6. Component Diagram (Controll
 <hr />
 <h2 id="7-data-model-simplified">7. Data Model (Simplified)</h2>
 <pre class="mermaid"><code>erDiagram
-    MaaSModel ||--o{ HTTPRoute : "creates or validates"
-    MaaSModel }o--|| LLMInferenceService : "references (llmisvc)"
+    MaaSModelRef ||--o{ HTTPRoute : "creates or validates"
+    MaaSModelRef }o--|| LLMInferenceService : "references (llmisvc)"
     MaaSAuthPolicy ||--o{ AuthPolicy : "one per model"
-    MaaSAuthPolicy }o--o{ MaaSModel : "modelRefs"
+    MaaSAuthPolicy }o--o{ MaaSModelRef : "modelRefs"
     MaaSSubscription ||--o{ TokenRateLimitPolicy : "one per model"
-    MaaSSubscription }o--o{ MaaSModel : "modelRefs"
+    MaaSSubscription }o--o{ MaaSModelRef : "modelRefs"
     AuthPolicy }o--|| HTTPRoute : "targetRef"
     TokenRateLimitPolicy }o--|| HTTPRoute : "targetRef"
     HTTPRoute }o--|| Gateway : "parentRef"</code></pre>
 <ul>
-<li><strong>MaaSModel</strong>: <code>spec.modelRef</code> = llmisvc or ExternalModel (name, namespace).</li>
+<li><strong>MaaSModelRef</strong>: <code>spec.modelRef</code> = llmisvc or ExternalModel (name, namespace).</li>
 <li><strong>MaaSAuthPolicy</strong>: <code>spec.modelRefs</code> (list of model names), <code>spec.subjects</code> (groups, users).</li>
 <li><strong>MaaSSubscription</strong>: <code>spec.owner</code> (groups, users), <code>spec.modelRefs</code> (model name + token rate limits per model).</li>
 </ul>
@@ -1771,7 +1771,7 @@ <h2 id="8-deployment-and-prerequisites">8. Deployment and Prerequisites</h2>
     Deploy --&gt; Examples</code></pre>
 <ul>
 <li><strong>Namespace</strong>: Controller and default MaaS CRs live in <strong>opendatahub</strong> (configurable).</li>
-<li><strong>Install</strong>: <code>./scripts/deploy.sh</code> installs the full stack including the controller. Optionally run <code>./scripts/install-examples.sh</code> for sample MaaSModel, MaaSAuthPolicy, and MaaSSubscription.</li>
+<li><strong>Install</strong>: <code>./scripts/deploy.sh</code> installs the full stack including the controller. Optionally run <code>./scripts/install-examples.sh</code> for sample MaaSModelRef, MaaSAuthPolicy, and MaaSSubscription.</li>
 </ul>
 <hr />
 <h2 id="9-authentication-current-behavior">9. Authentication (Current Behavior)</h2>
@@ -1792,7 +1792,7 @@ <h2 id="10-summary">10. Summary</h2>
 <tbody>
 <tr>
 <td><strong>What</strong></td>
-<td>MaaS Controller = control plane that reconciles MaaSModel, MaaSAuthPolicy, and MaaSSubscription into Gateway API and Kuadrant resources.</td>
+<td>MaaS Controller = control plane that reconciles MaaSModelRef, MaaSAuthPolicy, and MaaSSubscription into Gateway API and Kuadrant resources.</td>
 </tr>
 <tr>
 <td><strong>Where</strong></td>
@@ -1835,7 +1835,7 @@ <h2 id="10-summary">10. Summary</h2>
     <span class="md-icon" title="Last update">
       <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M21 13.1c-.1 0-.3.1-.4.2l-1 1 2.1 2.1 1-1c.2-.2.2-.6 0-.8l-1.3-1.3c-.1-.1-.2-.2-.4-.2m-1.9 1.8-6.1 6V23h2.1l6.1-6.1zM12.5 7v5.2l4 2.4-1 1L11 13V7zM11 21.9c-5.1-.5-9-4.8-9-9.9C2 6.5 6.5 2 12 2c5.3 0 9.6 4.1 10 9.3-.3-.1-.6-.2-1-.2s-.7.1-1 .2C19.6 7.2 16.2 4 12 4c-4.4 0-8 3.6-8 8 0 4.1 3.1 7.5 7.1 7.9l-.1.2z"/></svg>
     </span>
-    <span class="git-revision-date-localized-plugin git-revision-date-localized-plugin-date" title="February 27, 2026 17:58:09 UTC">February 27, 2026</span>
+    <span class="git-revision-date-localized-plugin git-revision-date-localized-plugin-date" title="March 3, 2026 21:33:09 UTC">March 3, 2026</span>
   </span>